Cybersecurity
CISA’s Newest Advisor Could Soon Have Agencies Asking: 'Does This Spark Joy?'
Another CISA advisor has referred to Bob Lord as a “digital Marie Kondo,” tidying up the Democratic National Committee by throwing out old software and unused tech.
Emerging Tech
Lawmaker Argues for Quantum-Level Security in a Pre-Quantum World
New legislation advocates safeguarding U.S. online networks with quantum-resistant encryption as a preemptive cybersecurity measure.
Cybersecurity
Cybersecurity Pros Signal Regulatory Challenge for Securing Industrial Control Systems
A studious adversary may be hellbent on destruction, and a comprehensive approach is needed to successfully govern the protection of critical infrastructure, specialists say.
Cybersecurity
GSA plans to publish zero trust playbooks
The General Services Administration is focusing on how to take the concept of zero trust into the implementation phase in a series of new playbooks set for release in the coming months, according to a senior IT official.
Cybersecurity
Energy to Fund Development of Climate-Friendly Grid Security and Resilience
The effort reflects a commitment to clean energy while aiming to mitigate supply-chain threats.
Emerging Tech
Bipartisan Legislation Calls for Implementing Post-Quantum Security Practices
The new Quantum Computing Cybersecurity Preparedness Act would prepare for stronger quantum algorithms that pose a threat to traditionally-encrypted data.
Cybersecurity
CISA Adds Industrial Control System Specialists to Joint Cyber Defense Collaborative
Companies in the space are trying to shape public policy and push for money agencies can use to—among other things—track their devices and other assets.
Cybersecurity
CISA expands Joint Cyber Defense Collaborative
The JCDC is gaining over a dozen new experts focused on enhancing the cybersecurity posture for industrial control systems and operational technology as CISA ramps up security efforts around critical infrastructure.
Cybersecurity
CISA Seeks Comment on Visibility Effort Being Piloted with Cloud Service Providers
The agency is starting to spend the $690 million it got through the American Rescue Act to monitor security and respond to incidents across federal civilian networks.
Cybersecurity
Federal Law Enforcement Warns Against Hackers Targeting Crypto Companies
Three agencies warned that North Korean-sponsored Lazarus Group and subsidiaries are targeting companies linked to blockchain technology and working with crypto and NFTs.
Cybersecurity
Lawmakers Weighing Critical Infrastructure Designation for Major Cloud Service Providers
Rep. Jim Langevin and others are working on bipartisan legislation to be introduced this summer that truly reflects the Solarium Commission’s agreement on benefits and burdens for systemically important private-sector entities.
Cybersecurity
Coming ID order should focus on digital credentials, say trade groups
Standards for mobile driver's licenses top the wish list of groups looking to steer the direction of the administration’s action on combating identity theft and fraud.
Cybersecurity
What CISA Wants Critical Infrastructure Partners to Report on Cyber Incidents
A new guide provides clues into how the agency might be thinking of crucial details, such as what should count as an “incident” under a new law.
Cybersecurity
Report Finds Identity Fraud Up 167% In USPS Change Of Address Requests
The USPS Office of the Inspector General recommends stricter identity verification controls online, while management disagrees.
Cybersecurity
Industry Groups Butt Heads on SEC’s Incident Reporting Rules
A major trade association for relevant financial-sector entities is asking the regulatory agency to hold off in favor of incident reporting rules being implemented at the non-regulatory Cybersecurity and Infrastructure Security Agency.
Cybersecurity
Joint Alert Warns Advanced Hackers Have Developed Tool Targeting Industrial Control Systems
The design of the tool, which allows full system access to certain operational technology in environments such as power plants and water treatment facilities, can also be used by less sophisticated attackers.
Cybersecurity
New cybersecurity bill authorizes DHS to ramp up incident response efforts nationwide
The National Cybersecurity Preparedness Consortium Act gives the Department of Homeland Security a range of opportunities to bolster cybersecurity preparedness at the state and local level, including and technical assistance services.
Cybersecurity
FCC Chair Claims Cybersecurity Role Congress Crafted for CISA
The commission is joining the fray in a budding turf fight at the Cybersecurity and Infrastructure Security Agency that also involves sector risk management agencies like the Department of Energy.
Cybersecurity
Jury: Former DHS watchdog official stole software, employees’ personal info
The verdict is in for the last holdout in a scandalous scheme to defraud the government.
Digital Government