Cybersecurity
CISA launches new initiative to combat ransomware
The Joint Cyber Defense Collaborative (JCDC) will allow the federal government and corporate partners share information to combat ransomware.
Cybersecurity
Senate Homeland Security Committee Advances Workforce, Supply Chain Bills
Lawmakers look to grow an already lengthy to-do list at the Cybersecurity and Infrastructure Security Agency.
Cybersecurity
Labor Department moves toward zero trust
Labor Department CISO Paul Blahusch detailed how his agency ramped up its implementation efforts around zero trust in recent months, from establishing an entirely new team to proposing a project for the Technology Modernization Fund.
Ideas
How the Energy Department Can Improve Cybersecurity in the Energy Industry
The Energy Department has an obligation to protect both public and private energy interests on critical infrastructure.
Cybersecurity
Advisory Details How to Defend Container Tech from Crypto Miners
Old fashioned data theft is still the main reason adversaries are targeting a popular open-source application management system.
Cybersecurity
National cyber director backs new Bureau of Cyber Statistics
The White House is still considering whether to support the Cyberspace Solarium Commission's recommendation to establish a Bureau of Cyber Statistics, National Cyber Director Chris Inglis said on Monday, while stressing the urgent need for the federal government to begin assessing and publishing data on cybersecurity incidents.
Cybersecurity
Survey: Nearly 3 in 4 Organizations Suffered Data Breaches Due to Phishing
More than half of respondents indicated concerns about hybrid work environments and defending against malicious emails.
Cybersecurity
New report details America's water infrastructure cyber vulnerabilities
Water utilities across the country are plagued by a lack of cybersecurity funding and qualified personnel, a ThreatLocker report warns, as officials work to create new guidelines on securing critical infrastructure.
Cybersecurity
The White House Is Deciding Whether to Support a Bureau of Cyber Statistics
A key senator introduced a bill containing one of the more controversial recommendations of the Cyberspace Solarium Commission.
Ideas
Government Employees' Online Personal Info Presents Unmitigated Risk Vector
Today, 1 in 15 government workers is exposed to social engineering attacks.
Cybersecurity
CISA Offers Vulnerability Disclosure Platform for Civilian Agencies
The platform will provide triage and administrative services while allowing CISA to monitor agencies’ progress resolving reports from security researchers.
Modernization
TMF Board Still Accepting Governmentwide Cyber Proposals
Agencies have submitted more projects since a huge infusion of cash and a relaxing of the payback model.
Cybersecurity
NSA to National Security Employees: Avoid Working on Public Wi-Fi
The agency offered best practices for remote work using wireless technologies.
Ideas
Fixing the Fractured Federal Approach to Cybersecurity
It’s time for a centralized cybersecurity-focused agency.
Cybersecurity
CISA debuts vulnerability disclosure platform
Federal civilian agencies can tap a bug reporting system fielded as a shared service by the Cybersecurity and Infrastructure Security Agency to gather information on potential website and software vulnerabilities.
Cybersecurity
Wanted: Accountability for Addressing the Federal Cybersecurity Workforce Challenge
Even when some agencies succeed at bringing talent in, they aren’t able to hold on to it for long.
Cybersecurity
DHS recent hiring sprint shows promise, but lawmakers still see gaps in the federal cybersecurity workforce
The federal government continues to face challenges in recruiting a skilled cybersecurity workforce, amid heavy private sector demand and obstacles built into the hiring process, but there are some recent signs that longstanding efforts to improve the situation are starting to pay off.
Cybersecurity
Survey: Pandemic Has Left Public Sector IT Exposed
The single largest risk factor reported by respondents is the influx in remote work.
Cybersecurity
The Most Targeted Vulnerability of the Year Was First Identified in 2017
In a joint advisory, international cybersecurity officials say failure to patch years-old vulnerabilities makes attributing cyberattacks more difficult.
Modernization