Cybersecurity
Budget request emphasizes cyber, network security efforts
The document provides a peek at how the administration would prioritize cybersecurity spending across DHS, Energy, Treasury and other departments.
Cybersecurity
CISA "not well-positioned" to execute nationwide election security strategy in 2020
Resource constraints and a reorganization have prevented CISA from rolling out its election security plans for 2020, but states still give the agency high marks.
Cybersecurity
Three agencies team on cyber defense of energy infrastructure
Three agencies with stakes in protecting critical energy infrastructure renew their efforts to develop cyber threat protections.
Cybersecurity
CISA touts CDM, CyberStat as key cyber compliance tools
A watchdog report found DHS doesn't always validate whether agencies are complying with mandatory directives. The department floated plans to leverage two existing program to do just that.
Cybersecurity
Senators introduce bill to create state cyber coordinators at DHS
Lawmakers said the legislation was crafted following conversations with local officials who have expressed a desire for more federal support.
Cybersecurity
Cybersecurity front and center in Iran threat hearing
Members of the House Homeland Security Committee quizzed experts about the capabilities of Iran's cyber forces.
Cybersecurity
CISA looks for input on new, 'less prescriptive' TIC
Agencies can use new guidance documents on Trusted Internet Connections 3.0 to jumpstart their own pilot programs and suggest improvements to the policy.
Cybersecurity
CISA alerts on NSA-discovered Windows 10 flaw
Attackers could use the vulnerability to trick users into installing "updates" from trusted parties that are actually malware.
Cybersecurity
Cyber Solarium to back CISA as the lead response agency
Leveling up CISA and CyberCom and streamlining Congressional jurisdiction will be among the recommendations issued in an upcoming report from the Cyberspace Solarium Commission.
Cybersecurity
CISA cautions on Iran threats
U.S. officials and cybersecurity experts are concerned that Iranian reprisals for the killing of Soleimani could take the form of attacks on U.S. networks or critical infrastructure.
Cybersecurity
Killing of Iranian general spurs concern about cyber retaliation
Iran has threatened to respond to the targeted killing of senior general Qassem Soleimani, and analysts say the goal will be to punish the U.S. by targeting its IT and critical infrastructure while avoiding traditional military conflict.
Cybersecurity
Privacy assessment finds risk with CDM shared service platform
An updated assessment from the Department of Homeland Security finds that a shared services platform designed to help smaller agencies use the Continuous Diagnostics and Mitigation program brings with it new but manageable privacy risks.
Cybersecurity
Government information sharing efforts remain a mixed bag
The rollout of a new tool in 2017 has improved information sharing across the federal government, but other once promising programs are withering on the vine.
Cybersecurity
Security researchers seek clarity on legal protections in CISA vulnerability disclosure directive
Some notable names in the security research community have already weighed in on a draft order directing federal agencies to set up their own vulnerability disclosure programs.
Cybersecurity
Cyber report heads to White House with request for new commission
Several members of CISA leadership expressed agreement with the goals laid out in the report to secure critical infrastructure, but they stopped short of endorsing plans for new government bodies.
Cybersecurity
Senate's CISA subpoena bill adds privacy protections to DHS proposal
The draft legislation would require DHS to set up internal protocols to document and justify how it uses the authority and report to Congress on its effectiveness.
Cybersecurity
CISA subpoena bill set to land
The legislation will make a number of changes from a proposal submitted by DHS, narrowing the scope of the authorities to critical infrastructure IT and only for cybersecurity purposes.
Cybersecurity
Report: aviation industry playing catch up on cybersecurity
A new report from the Atlantic Council argues that aircrafts have become highly complex, "flying data centers," but the industry and government are behind on protecting them from cyber threats and sabotage.
Cybersecurity
Advisory group looks to redesign federal cyber response
The National Infrastructure Advisory Council wants new agencies to tackle "existential" cyber threats.
Cybersecurity