Cyber Threats

Allied Cybersecurity Agencies Advise Against Disabling Popular Tool for Cyberattackers

The Microsoft program—PowerShell—has granted malicious actors in major hacks remote command and control ability over victims, but, by the same token, it can improve cybersecurity management across an enterprise.

  • By Mariam Baksh

Microsoft: Russia Stepping Up Hacking, Cyber Penetration Efforts on 42 Ukraine Allies

Almost one in three detected Russian attacks are successful, Microsoft said.

  • By Frank Konkel

GAO: Potential Federal Cyber Insurance Program Should Avoid Moral Hazard

The government watchdog highlighted the need for specific security requirements in recommending other relevant agencies explore the possibility of providing federal assistance to private sector entities following a catastrophic event.

  • By Mariam Baksh

Biden Signs Bill Creating Federal Cybersecurity Rotational Program

Certain cyber and IT federal employees will be able to rotate to other agencies under a new law signed Tuesday.

  • By Natalie Alms

TMF Announces $95 Million in New Funding Focused on Security and Networks

The Technology Modernization Fund is announcing a new set of investments to help three agencies meet White House cybersecurity objectives.

  • By Chris Riotta

DOJ Ramps Up Efforts To Halt Cybercrime

Through new enforcement and reporting efforts, the Justice Department is attempting to curb online harassment, especially related to vulnerable populations.

  • By Alexandra Kelley

The Pentagon Should Keep Better Tabs on IT Cybersecurity, Supply Chain Risks, GAO Says

The findings come as the Defense Department continues to increase its investment in information technology and cybersecurity year over year—a trend that could likely mean more scrutiny.

  • By Lauren C. Williams

Russia Might Try Reckless Cyber Attacks as Ukraine War Drags On, US Warns

Ground commanders have been unable to capitalize on at least one previous cyber strike.

  • By Patrick Tucker

White House Official: Administration Urgently Researching Central Bank Digital Currency

As due dates near for agency deliverables under an executive order, the Atlantic Council has produced a report that could help officials inform the president of implications for cybersecurity.

  • By Mariam Baksh

National Cyber Director: Mandates Coming to Secure Commercial Information Technology

An event hosted by the leading trade association for major tech vendors highlighted what has so far been an impasse between government and industry on cybersecurity policy.

  • By Mariam Baksh

China Compromised Telecom Firms Using Known Vulnerabilities, Federal Agencies Warn

The alert comes as the U.S. continues negotiations with countries like Russia and China on what constitutes “cybercrime” at the United Nations.

  • By Mariam Baksh

New Report Points to Cyber Risks in TVA Control Systems

A federal utility operating in seven southeastern states failed to implement proper cybersecurity standards for a control system assisting with flood and river management, according to a recent oversight report.

  • By Chris Riotta

Solarium Successor Wants the White House to Lead on Cyber Workforce Strategy

One recommendation: establish cyber excepted service authorities, like the Department of Homeland Security's newly launched cyber hiring initiative, government-wide.

  • By Natalie Alms

FBI, DOJ Seize Website Addresses, Associated Illegal Data Sales, Hacking Services

International law enforcement targeted and confiscated three internet domain names that sell cyberattacks and personal information.

  • By Alexandra Kelley
Featured eBooks
The IT Modernization Mission
Read Now

Ransomware Threat

Read Now

What's Next For Government Cloud

Read Now

Federal Agencies Exploring Computing at the Edge

Read Now

Why Commerce Went Against Microsoft on Rule to Control Cyber Exploits

The rule aims to prevent certain countries—most notably China—from receiving U.S. exports that could advance their intrusion and surveillance technology.

  • By Mariam Baksh

CISA, DOD Report Gaps for Agencies Assessing 5G Security Risks

Agency officials identified a lack of guiding standards for determining and mitigating risk from certain implementations of the technology and advised agencies to proceed with caution, employing penetration tests accordingly.

  • By Mariam Baksh

Federal CISO: Recommendations In to Acquisition Council for Software Procurement

Federal CISO Chris DeRusha says he doesn’t want to tie agencies’ hands regarding self attestation versus third-party verification of vendor practices.

  • By Mariam Baksh

Senate Report Highlights Lack of Government Data on Ransomware Payments

A new report details the role cryptocurrencies play in incentivizing ransomware attacks and the government’s response.

  • By Frank Konkel

CISA Orders Agencies to Mitigate VMWare Vulnerabilities Under Deadline

Advanced adversaries appear to be exploiting the vulnerabilities to get around multifactor authentication.

  • By Mariam Baksh

Agencies Showcase Federal Cyber Progress, Outline Future Threats

Witnesses from CISA, NIST, and the GSA spoke before a House Homeland subcommittee on their current efforts to bolster the nation’s cyber defenses.

  • By Alexandra Kelley

Key Convener Releases Plan for Securing Open Source Software with White House

A crucial entity within the open source ecosystem is urging prioritization of libraries that support widespread applications like internet routing, among other things.

  • By Mariam Baksh