Cybersecurity
China’s Disinformation Warriors May Be Coming for Your Company
A recent attack on a rare-earths processor shows a new facet of information warfare: weaponized NIMBYism.
Cybersecurity
CISA Recommends Immediate Action for Microsoft Exchange Online Users
The recommendation is in line with Executive Order 14028, which requires federal agencies to implement multi factor authentication.
Cybersecurity
Historic NATO Meeting Extends Cybersecurity Collaboration to Asia-Pacific Allies
The security alliance is squaring off against Russia and China by building a coordination capability for rapidly responding to cyber attacks.
Cybersecurity
Federal Government Gets Serious About Post-Quantum Encryption Protection
A Phase III PQE contractor talks about getting federal quantum protection deployed quickly.
Cybersecurity
Congresswoman Promotes Cyber Insurance Amid Shifting Policy Landscape
The jury is still out on how using insurance policies to pay ransoms and re-establish systems after a cyberattack affects critical infrastructure organizations’ individual and collective resilience.
Cybersecurity
Trade groups seek changes to SEC’s breach disclosure plan
Defense contractors may be subject to conflicting cyber rules of the road if a proposed financial reporting rule takes effect without changes, trade associations say.
Cybersecurity
Key State Official Warns of ‘Peril’ as US Pursues Cybersecurity Goals at G7
The State Department would oversee $200 billion in aid and financing the administration wants to invest in developing countries, under a new agreement from world leaders that promises a prioritization of cybersecurity.
Cybersecurity
GAO: HHS Needs Improved Data Breach Reporting
Data breaches have increased each year since 2015.
Cybersecurity
Allied Cybersecurity Agencies Advise Against Disabling Popular Tool for Cyberattackers
The Microsoft program—PowerShell—has granted malicious actors in major hacks remote command and control ability over victims, but, by the same token, it can improve cybersecurity management across an enterprise.
Cybersecurity
House Panel Passes RANSOMWARE Act to Get FTC Reports on Cross-Border Work
The Energy and Commerce subcommittee also forwarded a bipartisan privacy and data security bill to the full committee but—lacking support from Senate leadership—that legislation appears dead in the water.
Cybersecurity
Microsoft: Russia Stepping Up Hacking, Cyber Penetration Efforts on 42 Ukraine Allies
Almost one in three detected Russian attacks are successful, Microsoft said.
Cybersecurity
Big Tech Pushes for Harmonized Global Policy Amid Emerging Regulations from Allies
The Information Technology Industry Council is maintaining its call for a voluntary approach as Canada, the United Kingdom and Europe all signal strict new cybersecurity requirements.
Cybersecurity
GAO: Potential Federal Cyber Insurance Program Should Avoid Moral Hazard
The government watchdog highlighted the need for specific security requirements in recommending other relevant agencies explore the possibility of providing federal assistance to private sector entities following a catastrophic event.
Cybersecurity
CISA Seeks Public Feedback on TIC 3.0 Cloud Use Case
Trusted Internet Connections use cases provide guidance on secure implementations of specific platforms, services and environments.
Cybersecurity
CISA Plans to Hire Chief People Officer to Boost Cyber Workforce
Agency advisors are set to vote on a host of draft recommendations which include reviewing the security clearance process for inefficiency.
Cybersecurity
DOJ Ramps Up Efforts To Halt Cybercrime
Through new enforcement and reporting efforts, the Justice Department is attempting to curb online harassment, especially related to vulnerable populations.
Emerging Tech
DARPA Report Finds Vulnerabilities in Blockchain Tech, Non-secure Crypto Transactions
A holistic research paper documents the security concerns within decentralized ledger technologies, prompting concerns over the security of cryptocurrency transactions.
Cybersecurity
Credit Rating Agency: New EU Laws Will Improve Firms’ Cyber Resilience Globally
The Digital Operational Resilience Act would force non-EU companies with a significant presence in member states to create subsidiaries that can be regulated under their jurisdiction.
Ideas
Closing the Gap on Cyber Policy by Focusing on FISMA
When it comes to federal cybersecurity policy, the executive branch is far ahead of Congress.
Cybersecurity