Cybersecurity
Rep. Garbarino ‘disappointed’ Senate hasn’t approved Trump’s CISA nominee
The House Homeland Security Committee chairman also questioned a recent FCC vote to reverse telecom security rules put in place after a major Chinese cyber intrusion.
Trump admin to revisit bedrock cyber policies as it implements new strategy
Corresponding executive actions on cybercrime and ransomware are in the works. The forthcoming cyber strategy also includes an offensive pillar focused on “preemptive erosion” of foreign adversaries’ hacking attempts.
Cyber takes back seat to immigration in global threats hearing
Witnesses briefly touched on concerns about encrypted messaging and the threat China poses in cyberspace, as well as efforts to protect infrastructure that supports the worldwide internet.
US charges former Accenture employee with misleading feds on cloud platform’s security
Danielle Hillmer, most recently employed with SentinelOne, allegedly concealed a cloud product’s noncompliance with federal security regulations.
Defense authorization bill includes billions for cyber, intelligence matters
The NDAA notably deviates partly from President Donald Trump’s national security strategy, which seeks some distance between the U.S. and Europe. It also makes a sweeping regulatory harmonization demand.
Trump’s national security strategy wants spy agencies to watch world supply chains
The paper puts much of its emphasis on the Western Hemisphere, while pushing for closer cyber collaboration with both regional partners and the private sector.
China is using advanced ‘Brickstorm’ malware against government and IT orgs, US assesses
The malware was detected in the recently disclosed breach of F5, an application delivery and security provider.
CISA tells staff to not speak with reporters, internal email shows
“CISA does not comment on leaked internal emails, especially when they’re about leaking internal emails,” CISA Director of Public Affairs Marci McCarthy told Nextgov/FCW when asked for comment.
New bill proposes government-wide processes to attribute, sanction hackers
The measure would permit “robust sanctions against designated actors, including asset blocking, financial restrictions, export controls, procurement prohibitions, visa bans and suspension of assistance.”
SEC to drop high-profile SolarWinds hack lawsuit
The landmark lawsuit garnered pushback from dozens of cybersecurity leaders last year.
FCC votes to reverse telecom security rulemaking issued under Biden
The vote has drawn significant concern from congressional Democrats, who say it will weaken the security posture of telecom systems. The initial measure was enacted in response to Chinese hacks of U.S. telecom providers discovered last year.
Senators expect 10-year extension of cyber data-sharing law in future budget package
The Cybersecurity Information Sharing Act of 2015 got a temporary reprieve after the government reopened this month, but it risks lapsing again at the end of January.
Featured eBooks
House votes to reup cyber grant program
Lawmakers approved a measure to reauthorize the State and Local Cybersecurity Grant Program for 10 years. It now moves to the Senate.
National cyber strategy coming ‘as quickly as possible,’ official says
“It’s going to be a short statement of intent and policy, and then it will be paired very quickly with action items and deliverables under that,” National Cyber Director Sean Cairncross explained.
Dem lawmakers renew calls for release of delayed telecom security report
In a letter to DHS and ODNI, Sens. Ron Wyden of Oregon and Mark Warner of Virginia said the release of a 2022 report detailing cyber vulnerabilities in the U.S. telecommunications sector is “critically important to U.S. national security.”
Government funding deal reups cyber grant program
Lawmakers reauthorized the State and Local Cybersecurity Grant Program as part of the deal to reopen the federal government, but funding remains an open question.
CMMC enforcement begins after eight years of warnings
"There is no excuse for industry to not be ready," observers say as enforcement begins.
Bill to end shutdown includes temporary cyber info-sharing law extension
The Cybersecurity Information Sharing Act of 2015 expired when the government’s calendar reset without a funding package for FY 2026.
CBO systems accessed in ‘security incident’ possibly tied to foreign hackers
The office estimates the cost and economic impact of proposed legislation and helps forecast federal spending, revenues, deficits and debt.
FCC to vote on reversing telecom security rulemakings next month
The initial measures proposed at the end of the Biden administration came in response to the Salt Typhoon telecom hacks carried out by China.
