Cybersecurity

Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says

The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.

Cybersecurity

Biden to sign executive order boosting cybersecurity of ports, maritime vessels

The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.

Cybersecurity

DHS inventory of AI systems for cybersecurity is ‘not accurate’, oversight report says

The report calls on the DHS to better verify its AI inventory submissions and for CISA to develop AI cybersecurity progress metrics.

Cybersecurity

CISA unveils election resource page for officials and workers

Election officials have several fears on their mind this year, including possible foreign interference in elections and physical threats linked to conspiracy theories.

Cybersecurity

Contracts featuring automation, built-in security can boost agencies’ cyber defenses, VA officials say

As the federal government looks to harden its cyber resilience, officials from the Department of Veterans Affairs said agencies should work to modernize outdated technologies and ensure that vendor contracts include more rigorous security standards.

Cybersecurity

Agencies must disconnect all exposed Ivanti products by Friday, CISA says

The directive follows a related warning issued last month about cybersecurity flaws in Ivanti systems.

Cybersecurity

Cyber, intelligence chiefs urge U.S. to strengthen against Chinese cyber threats

In a collective call to action, officials warned of invasive actions that China-backed hackers can take against U.S. infrastructure and elections.

Cybersecurity

Top cyber, intelligence chiefs to call out China as leading cyber threat

Researchers and officials have previously designated China as a clandestine, preparatory operator in cyberspace, quietly breaching and securing systems to use to their advantage at a later time.

Cybersecurity

NCA celebrates National Data Privacy Week while CISA eyes new cybersecurity guidelines

The week’s themes reflect a new era  where everything is interconnected and new threats like artificial intelligence are poised to make a big impact on cybersecurity.

Cybersecurity

Feds to compete for cyber glory at fifth annual President's Cup

CISA officials describe the positive impact the annual cybersecurity game aims to have across the federal workforce.

Cybersecurity

CISA directs agencies to mitigate widespread VPN bugs

Two unpatched flaws in Ivanti's Connect Secure VPN are being exploited by hackers in the wild.

Cybersecurity

CISA, FBI warn on risks of China-made drones

The new guidance is meant to alert critical infrastructure operators to potential security risks, including data exfiltration and cybersecurity risks, posed by unmanned aircraft systems manufactured in China.

Cybersecurity

Watchdog finds ‘sufficient’ cyber threat sharing at agencies, but barriers remain

The Intelligence Community Inspector General’s biennial update on cybersecurity information sharing noted that progress has been made over the past two years, but some agencies reported running up against roadblocks.

Cybersecurity

FDA and CISA need to update cyber agreement for medical devices, watchdog says

The Government Accountability Office said medical devices are not commonly hacked but still called them “a source of cybersecurity concern warranting significant attention.”

Acquisition

CISA changes plan for operations support recompete

The Homeland Security Department's cyber agency goes in a different direction for how it plans to award this upcoming task order.

Cybersecurity

U.S., global partners, ask software companies to focus on memory-safe code

New guidance for software developers from Five Eyes countries implores software developers to patch memory safety vulnerabilities and rethink the use of risky programming languages.

Cybersecurity

CISA, FBI warn on Iran-backed infrastructure hacks

The hacking group CyberAv3ngers is actively targeting an Israeli-made automation system in wide use in the water and wastewater sector.

Cybersecurity

CISA, FBI warn of social engineering-based ransomware

Federal agencies are revealing more information on the Scattered Spider cybercriminal group in a bid to both prevent breaches and encourage victims to offer more detail on such attacks.