Cyber Threats

Operational Technology in the Crosshairs

Yes, utilities use both IT and OT, but so do data centers.

Feds Urge Action Against BlackMatter Ransomware Based on Third-Party Tip

A joint advisory officially associates the notorious ransomware-as-a-service group with the Colonial Pipeline attack.

CISA Seeking Answers for Implementation of Endpoint Detection and Response Tools

The agency has an idea of what it wants from the capability but is soliciting industry input on key aspects of an enduring investment plan.

Federal Health Care Organizations Seek New Prescription for Managing Device Vulnerability 

The threat landscape in the medical sector is massive and expanding daily with exponential growth in connected medical devices.

Treasury Analysis Identifies Cryptocurrency Exchanges Associated With Ransomware

The department is tracking a huge increase in ransomware disclosures but data suggests the events are still grossly underreported.

Agencies Warn of Ongoing Cyber Threats to Water Treatment Facilities

The Cybersecurity and Infrastructure Security Agency and other agencies issued a joint advisory about mitigating ransomware threats.

Health Agency CISO Looks to Increase Security in Software Transparency Requirements

Robert Wood aims to improve security while fostering faster mission execution from a DevSecOps “BatCAVE” at the Centers for Medicare and Medicaid Services.

How Governments Can Protect Themselves Against Fraud in Times of Crisis

Agencies are up against challenges that will arise again and again during each next disaster as they continue to use outdated technology.

Pentagon’s Top Science Official Adds to Tech-Breakthrough Wishlist

Heidi Shyu, research and development undersecretary, said she went looking for tech areas to trim—and found that some vital ones had been overlooked.

White House Unveils 32 Countries Invited to Participate in Ransomware Meeting

India, the United Kingdom, Australia and Germany will have leadership roles during the two-day event. Russia was not invited.

OMB Gives Agencies Three Months to Help CISA Monitor Networked Devices

The memo adds heft to the Cybersecurity and Infrastructure Security Agency’s longstanding push for more visibility into federal networks.

Biden Signs School Cybersecurity Bill

The Cybersecurity and Infrastructure Security Agency will study the cyber risks facing elementary and secondary schools and develop recommendations to assist schools in facing those risks.

CIA Creates China Center To Shift To Great Power Competition

“It’s taking the top slot from the counterterrorism mission over the past 20 years,” said John Doyon, executive vice president of INSA.

Mitigating Cloud Risks Starts With Full Visibility of Shadow IT

New survey findings highlight the need for a data-centric approach to cloud security in the era of remote work.

CISA Finalizes Guidance for Securing Federal Networks for Remote Users

The latest guidance is the third of four use cases to be released as part of the Trusted Internet Connection 3.0 initiative.

Microsoft: Government Most Targeted Sector by Hackers In Past Year

And more than half of cyberattacks tracked by Microsoft originated in Russia.

Senate Committee Passes Major FISMA Changes—Including a New Definition of ‘Major Incident’ 

The Homeland Security and Governmental Affairs Committee also passed an incident reporting bill with increased liability protections for companies, drawing praise from industry.