The Hacks

Biden Budget Ups Request for Civilian Agencies’ Cybersecurity

The president’s funding proposal also puts numbers on the National Cyber Director’s Office and other priority cybersecurity areas.

Pipeline Companies Have One Week to Identify Cybersecurity Coordinators Under TSA Directive

The directive now mandates incident reporting and reviews described in the administration’s voluntary guidelines for the sector.

US Chamber Asks Government To Get More Involved In Ransomware Defense

The Chamber of Commerce offered six steps the federal government can take to help American businesses defend against and respond to ransomware cyberattacks.

37 Defense Industrial Base Companies Affected by SolarWinds Intrusion

A defense official told lawmakers the department’s CMMC program likely wouldn’t have guaranteed successful prevention of the SolarWinds breach.

Pipeline Security Act Reintroduced in House

More than a dozen lawmakers have cosponsored the legislation following the Colonial Pipeline attack.

Progressive Lawmakers Praise Biden’s Plan for Cybersecurity Labels

Reviews are in on the administration’s long-awaited executive order following several major hacking campaigns.

Cyber Response Bill Advances in Senate

The legislation includes a fund to help impacted organizations pay for remediation efforts.

Biden Issues Executive Order to Bolster Nation’s Cybersecurity

The administration calls for a standardized federal playbook and review board for incident response, as well as changes to software procurement.

Senators Cite Colonial Pipeline Hack in Calling for Cyber Response and Recovery Fund

A hearing on federal agencies’ response to the SolarWinds hack drew attention to communication issues, both with the private sector and within the government.

US, UK Agencies Warn Russian Hackers Are Adapting Based on Government Advisories

The adversary is changing its tools to avoid detection while attacking the vulnerabilities governments issue warnings about. 

The FBI Is Breaking into Corporate Computers to Remove Malicious Code – Smart Cyber Defense or Government Overreach

The actions raise questions about the power of courts to regulate cybersecurity without the consent of the owners of the targeted computers.

Federal Agencies Detail Russian Tactics Used in Recent Cyber Intrusions

The FBI, Homeland Security Department and Cybersecurity and Infrastructure Security Agency issued an alert on Russian government cyber tradecraft and mitigation techniques for targets.

How the Federal CISO Views Zero Trust

Federal Chief Information Security Officer Chris DeRusha and other federal officials also advocated moving away from siloed cybersecurity budgeting for agencies.

CISA Issues Deadline for Federal Agencies to Address Pulse Secure Vulnerabilities

The vulnerabilities led to the compromise of government agencies early last summer and, together with a newly disclosed flaw, continue to be exploited.

White House Stands Down Coordination Effort on SolarWinds, Microsoft Exchange Hacks

The leading cybersecurity official on the National Security Council shared lessons learned as agencies reach patching goals.

The Hack Roundup: White House Sanctions Russia over SolarWinds

Agencies involved in response also issued advisories on the hackers' tactics while Microsoft offered federal customers free trials of an auditing tool.