Cybersecurity
37 Defense Industrial Base Companies Affected by SolarWinds Intrusion
A defense official told lawmakers the department’s CMMC program likely wouldn’t have guaranteed successful prevention of the SolarWinds breach.
Cybersecurity
House Panel Passes Bill to Explore Bringing State and Local Cybersecurity Workers into CISA
The Homeland Security Committee cleared several bills to address cybersecurity following the attack on Colonial Pipeline.
Cybersecurity
House advances cybersecurity bills in wake of pipeline company hack
Following a week filled with a devastating ransomware attack and a massive executive order to strengthen the federal government's networks, a House panel on Tuesday advanced several bills largely aimed at DHS and CISA.
Cybersecurity
Would CMMC compliance block a SolarWinds-style attack?
At a Senate hearing on Defense Department cybersecurity, lawmakers wanted to know whether a program aimed at hardening the security of the defense industrial base would thwart supply chain attacks.
Artificial Intelligence
Bill to Address Chip Shortage Is Only the Beginning, Senator Says
Sen. Joni Ernst, R-Iowa, said more legislation is necessary to keep pace with adversaries.
Emerging Tech
FTC Data Captures Record Surge in Cryptocurrency Scams
An official explained how “there are at least a couple of things in play” that are contributing to the highs.
Ideas
The Cybersecurity Executive Order Is a Missed Opportunity
This executive order is designed to strengthen federal cybersecurity, not that of the private sector, including critical infrastructure providers.
Podcasts
Critical Update: Do You Know What’s In Your Software?
In the wake of several major cybersecurity incidents, the government wants to shore up its software supply chain. Two experts explain the merits of some approaches and why there’s no silver bullet.
Cybersecurity
Leveraging the TMF for the secure modernization of high value assets
Prioritizing Technology Modernization Fund dollars for systems that support high-impact programs can drive major improvements in how IT supports key government missions.
Modernization
If the Pentagon Drops JEDI, Then What?
Defense Department officials say the contract’s enterprisewide capabilities are still needed, but how to fill that need may be different given the department’s changing cloud landscape.
Cybersecurity
Pipeline Security Act Reintroduced in House
More than a dozen lawmakers have cosponsored the legislation following the Colonial Pipeline attack.
Cybersecurity
Can NTSB-style oversight work for cybersecurity?
President Joe Biden's new cybersecurity executive order calls for a safety review board to examine the attack against SolarWinds as well as other significant cybersecurity incidents moving forward.
Cybersecurity
Watchdog: 'Uncertainty' may undermine CBP's enforcement of social media policy
The Office of Inspector General at the Department of Homeland Security found divisions among senior Customs and Border Protection officials about the agency's social media posting policies.
Ideas
Zero Trust or Bust
One primary consideration should drive implementation: who gets to see what content?
Cybersecurity
CMMC board adds new training head, board members
Melanie Kyle Gingrich will take over training daily operations for the Cybersecurity Maturity Model Certification Accreditation Body as the vice president of training and development.
Cybersecurity
House lawmakers re-introduce pipeline security bill after Colonial hack
Lawmakers in previous years have tried to clarify and change which agencies are responsible for regulating the cybersecurity of oil and gas pipelines.
Cybersecurity
Lawmakers Call for Pentagon to Prioritize Cyber Investments
Rep. Jim Langevin suggested in a hearing the Defense Department has not elevated its focus on the cyber domain enough.
Cybersecurity
Army’s Cybersecurity ‘Greatly Concerns’ Wormuth After Pipeline Attack
Biden’s Army Secretary nominee told the Senate she’d fight deep troop cuts and support long-range fires and new measures against sexual crimes and extremism, if confirmed.
Cybersecurity
DISA Releases Initial Zero Trust Reference Architecture
The architecture will help the military “maintain information superiority on the digital battlefield,” according to the press release.
Cybersecurity