Cybersecurity
NTIA Wants Feedback on Software Transparency Plan
One high-profile expert raised the ever-looming workforce challenge in suggesting the juice might not yet be worth the squeeze.
Cybersecurity
Russia’s Latest Hack Shows How Useful ‘Criminal Groups’ Are to the Kremlin
Russian coders have little choice but to work with their government, which in turn denies any knowledge of their activities. That’s why hacking activity shows no sign of slowing.
Ideas
Demystifying Access Control and Zero Trust
As agencies rethink making temporary remote arrangements permanent, officials should start with proven ubiquitous encryption technology.
Digital Government
Biden Budget Ups Request for Civilian Agencies’ Cybersecurity
The president’s funding proposal also puts numbers on the National Cyber Director’s Office and other priority cybersecurity areas.
Ideas
Colonial Pipeline Forked Over $4.4M to End Cyberattack – But Is Paying a Ransom Ever the Ethical Thing to Do?
What would happen if companies stopped paying ransoms?
Digital Government
Biden Budget Boosts Federal IT Spending
The request would add another $500 million to the Technology Modernization Fund.
Cybersecurity
The group that hacked SolarWinds is out with a new campaign, Microsoft says
Microsoft said in a blog post the hackers behind SolarWinds are already advancing their tradecraft, and are impersonating a U.S. government agency as part of a global phishing campaign.
Cybersecurity
How the TMF can enable broad improvements across government
Investments in technology that supports multiple agencies would expand the TMF impact considerably.
Cybersecurity
Tech can help, but clearance reciprocity is a policy issue
The backlog of security clearance investigations has continued to drop from a 2018 high of 725,000 to 200,000, but agencies continue to struggle with reciprocity issues.
Cybersecurity
Pipeline Companies Have One Week to Identify Cybersecurity Coordinators Under TSA Directive
The directive now mandates incident reporting and reviews described in the administration’s voluntary guidelines for the sector.
Cybersecurity
Army wants teleworkers to switch off smart IoT devices
The Army announced it would require all military, civilian, and contractors to rid their telework environments of internet of things devices, such as smart TVs and speakers.
Cybersecurity
After Colonial attack, TSA issues new cyber regs for pipelines
DHS chief Alejandro Mayorkas cited the attack on Colonial Pipeline as the impetus for the new regulations.
Cybersecurity
Biden's first cyber EO deadline is here. What will change?
The Department of Homeland Security was asked to transmit policy recommendations on data retention and event logging to the Office of Management and Budget by May 26 as part of President Joe Biden's cybersecurity executive order.
Cybersecurity
NIST Will Do Gap Analysis Before Creating Software Standards for Executive Order
The Government Accountability Office told lawmakers enforcement, through expanded reporting, of agencies’ supply chain security activity is “the thing that has to happen.”
Artificial Intelligence
Agencies Are Getting Good at Buying AI But Still Have Trouble Securing It
A Homeland Security Department procurement official said securing and fielding advanced technologies is “not going to get any easier.”
Cybersecurity
Cryptocurrency Crackdown Won’t Stop Ransomware, CISA Official Says
Cybersecurity professionals stress the importance of proactive defense to combat the growing number of attacks.
Cybersecurity
DHS to issue new pipeline security regulations after Colonial attack
A Department of Homeland Security spokesperson said the new guidance for pipeline security will be issued in the coming days.
Ideas
3 Recommendations to Scale Federal Cybersecurity
The most significant single obstacle to progress in cybersecurity is not the technical challenge or even the workforce/skills gap.
Artificial Intelligence
Russia Is Accelerating Its Own Link-Everything Network
The U.S. sees networked warfare and AI as a game-changer. But what happens when your opponent copies your move?
Cybersecurity