Cybersecurity
A Cyber Workforce Strategy is Coming From the White House, Along with an Implementation Body to Make Sure it Works
The Office of the National Cyber Director has a workforce plan in development that looks to address public sector and private sector gaps in the cybersecurity profession.
Cybersecurity
CISA Requests Input on Terms Already Defined by Incident Reporting Law
The agency is embarking on a rulemaking process to implement the law, which requires those who make ransomware payments to report them to the government.
Cybersecurity
Maritime cybersecurity is front and center in Coast Guard reauthorization bill
A new Coast Guard reauthorization bill would provide some of the first cybersecurity protections and data management requirements for the U.S. Marine Transportation System in federal law.
Cybersecurity
Sharing secrets has been ‘effective’ against Russia, but the tactic has limits, CIA chief says
It’s just one of the new areas for a spy agency grappling with tech-driven changes.
Cybersecurity
U.S. Sanctions Iran—Under New Treasury Rules—for Attack on Albania
The new rules elaborate on what kinds of cyber activities warrant sanctions designation.
Cybersecurity
How Simple Claims of Election Interference Can be Enough to Prompt Real-World Threats
Federal officials remain on guard against foreign meddling in U.S. elections, as CISA and other agencies work to strengthen partnerships and intelligence sharing efforts with state and local election administrators.
Cybersecurity
CISA seeks public input on cybersecurity incident reporting rules
The nation’s cyber defense agency will embark on a cross-country listening tour to better understand what key stakeholders are hoping to see in new mandatory cyber incident reporting requirements featured in the recently-passed Cyber Incident Reporting for Critical Infrastructure Act of 2022.
Cybersecurity
High-Tech Financial Crimes Warrant Coordinated Digital Identity Efforts, FinCEN Warns
Leaders at the Financial Crimes Enforcement Network noted that stronger authentication measures are critical and spurred by emerging technologies.
Cybersecurity
Commerce revises export rules to boost U.S. standards development on critical tech
The original rule—which banned certain entities from receiving U.S. exports—endangered U.S. participation in international standards bodies where such entities are present, opponents said.
Cybersecurity
How NSA plans to shield high-impact systems against quantum threats
The National Security Agency started the clock on a long-planned transition to quantum-resistant algorithms in key national security systems.
Cybersecurity
Traffic Safety Agency Issues Final Guidelines for Vehicle Cybersecurity
The National Highway Traffic Safety Administration will announce its final cybersecurity guidelines draft Friday as modern vehicles become more technologically-integrated.
Cybersecurity
NSA Releases Post-Quantum Algorithms, Aims for Full Implementation by 2035
The National Security Agency worked in conjunction with NIST to prepare stakeholders for upcoming quantum cryptographic requirements.
Cybersecurity
Iranian hacker group posed as journalists to hunt dissidents
Group spent weeks trying to fool specific targets with intricate appeals—including U.S campaign staff.
Cybersecurity
CISA teases strategy to protect critical infrastructure
The Cybersecurity and Infrastructure Security Agency will soon release a sweeping plan to bolster cybersecurity protections for the nation's critical infrastructure industries.
Cybersecurity
White House Attributes Attack on Albania’s Critical Infrastructure to Iran
A statement from the National Security Council noted the potential for deviations from international norms to escalate conflict and promised accountability.
Cybersecurity
Army Updates Cyber Training After Some Graduates Weren’t Ready for Their Jobs
New classes and updated curriculum reflect evolving threats and lessons from the Ukraine war.
Cybersecurity
Treasury Reissues Rules to Enforce Cyber Sanctions on Foreign Adversaries
The rules could apply to any new executive order related to the national security emergency President Obama declared in 2015, in advance of a cybersecurity agreement with China.
Cybersecurity
NTSB Only Federal Agency Lacking a CISA-Mandated Vulnerability Disclosure Policy
CISA’s 2020 directive required that federal agencies under its authority develop policies allowing researchers to report bugs and flaws in public-facing systems.
Cybersecurity
New Guide to Secure Software Development Passes on Content but Fails on Communication, Industry Official Says
The lengthy document may miss its target audience altogether, one industry observer notes.
Cybersecurity