Cybersecurity
TSA's role in pipeline security looks like a weak link to some in government and industry
Questions about whether TSA is rightly positioned to oversee cybersecurity for natural gas and oil pipelines are resurfacing in the wake of the ransomware attack on Colonial Pipeline.
Cybersecurity
CISA's Wales backs new response, recovery fund
Brandon Wales, acting director of the Cybersecurity and Infrastructure Security Agency, said the funding would go toward expanding CISA's incident response teams with additional contractors and developing new technologies to be used by those teams.
Cybersecurity
White House, CISA react to pipeline ransomware attack
Senior administration officials say multiple government agencies are working to distribute information to industry about the ransomware attack that led to the shutdown of a key natural gas pipeline for the East Coast.
Cybersecurity
Why zero trust is having a moment
Improved technologies and growing threats have agencies actively pursuing dynamic and context-driven security.
Cybersecurity
DHS kicks off workforce sprint with push to hire 200 cyber pros
DHS Secretary Alejandro Mayorkas characterized the new effort to hire cybersecurity personnel as the largest of its kind in the agency's history.
Cybersecurity
CISA experiments with cloud log aggregation to ID threats
CISA's chief technology officer said the cybersecurity watchdog has pilot projects underway with several departments and agencies to explore whether it can compile cloud logs as a way to increase its visibility into agency networks.
Cybersecurity
New bill would task CISA with infrastructure risk assessments
A new Senate bill would mandate the Department of Homeland Security continually reassess risks to critical infrastructure and that the White House provide a report to lawmakers outlining what legislative steps should be taken to mitigate potential problems.
Cybersecurity
CISA warns on new threat group using VPN flaw
A new report by the government's cybersecurity agency warns about another threat actor using malware initially discovered during the response to the intrusion involving SolarWinds.
Cybersecurity
CISA issues third emergency directive since SolarWinds
The government's cybersecurity watchdog is increasingly issuing emergency instructions to agencies for handling high-risk vulnerabilities, something analysts say reflects both CISA's stature and the environment its working in.
Cybersecurity
CISA confirms U.S. agencies affected by Pulse Connect VPN vulnerabilities
The cybersecurity firm FireEye suspects at least one of the campaigns it reported on operates on behalf of the Chinese government.
Cybersecurity
White House launches cybersecurity push targeting electricity sector
The pilot program to improve the cybersecurity of the nation's electricity infrastructure is part of a broader initiative focused on industrial control systems.
Cybersecurity
White House stands down groups tackling SolarWinds, Microsoft Exchange
The move comes days after the administration sanctioned Russia for its alleged role in the cyberattacks
Cybersecurity
White House sanctions Russia over SolarWinds campaign, election interference
The White House today announced a sanctions package targeting the Kremlin, Russian technology companies and financial institutions for hacking and misinformation efforts.
Cybersecurity
Biden taps Inglis, Easterly for top cyber jobs
National Security Agency veterans will serve as first national cyber director and lead the Cybersecurity and Infrastructure Security Agency.
Cybersecurity
White House plans order on industrial control systems
The move tracks with a schedule "sprint" on the risks posed by insecure industrial control systems scheduled for this summer by the Department of Homeland Security.
Cybersecurity
Top cyber slots still unfilled amid multiple crises
Chris Krebs, the former CISA director, has been vocal in recent months about the need for his old job to be filled in short order while the administration confronts multiple cybersecurity problems within the federal government.
Cybersecurity
Senators seek details on Einstein's performance and limitations
Ahead of its scheduled reauthorization next year, two senators are seeking detailed information about Einstein, a government cybersecurity program that has come into the spotlight in the wake of the breach involving SolarWinds.
Cybersecurity
CISA, FBI warn of hacking threat against Fortinet product
The advisory warns that an unattributed threat actor is using known vulnerabilities in a Fortinet security product to gain access to government and industry networks.
Cybersecurity
Krebs cautions on push for national cyber director
The former CISA chief expressed confidence in Deputy National Security Advisor Anne Neuberger to help the White House confront the multiple cybersecurity incidents it is facing.
Cybersecurity