Cybersecurity
Human Rights Advocate to Congress: Stop Federal Procurement of Commercial Spyware
The Intelligence Authorization Act, which recently cleared committee in the House, empowers—but does not require—the director of national intelligence to bar such acquisitions.
Cybersecurity
DHS Convenes Regulators, Law Enforcement Agencies on Cyber Incident Reporting
The Department of Homeland Security started the clock on a report to Congress for streamlining requirements, amid industry dissatisfaction with the Cybersecurity and Infrastructure Security Agency’s pending reporting regime.
Cybersecurity
Ransomware Hackers Will Still Target Smaller Critical Infrastructure, CISA Director Warns
CISA Executive Director Brandon Wales discussed how ransomware actors target companies of all sizes, and how CISA wants organizations to prevent zero-day events.
Cybersecurity
Hackers Use More Sophisticated Scams to Drive Costly Data Breaches, Analysis Finds
Criminals are using more sophisticated methods, including virtual meeting services, to take advantage of compromised business emails and accounts for financial gain.
Cybersecurity
Election Officials Want to Tell the Public 'Where the Good Guys Won' in Cyber Efforts
As misinformation around the 2020 elections continues to swirl, state election officials say that DHS and CISA should do more to raise up ‘successes’ around efforts to mitigate vulnerabilities in voting systems.
Cybersecurity
Simple Cyber Reporting Will Enable Better Governmentwide Response, Lawmaker Argues
Sen. Gary Peters discussed how streamlined reporting to CISA can clarify the cyber threat landscape to all U.S. networks.
Cybersecurity
Cyber Safety Review Board Closes the Book on SolarWinds While Reporting on Log4j
Legislation seeking to amend the annual National Defense Authorization Act wants the Government Accountability Office to investigate.
Cybersecurity
CISA Urges FCC to Prioritize National Security in Internet Routing Probe
CISA Director Jen Easterly said industry concerns shouldn’t preclude use of the commission’s regulatory authority to mitigate exploitation of the Border Gateway Protocol.
Cybersecurity
Diabetes Patients Flood FDA with Comments on Cybersecurity for Medical Devices
As the agency finalizes guidance for approving the sale of devices such as those used to monitor and control glucose levels, the comments highlight competition and consumer protection issues associated with a grassroots movement for the “right-to-repair.”
Cybersecurity
North Korea Behind Manually Executed Ransomware Attacks, Federal Agencies Say
Officials are connecting the “Maui” ransomware to attacks on the public health sector over the past year.
Cybersecurity
China’s Disinformation Warriors May Be Coming for Your Company
A recent attack on a rare-earths processor shows a new facet of information warfare: weaponized NIMBYism.
Digital Government
Updated Digital Forensics Database Speeds Criminal Investigations
NIST’s expanded, more searchable database will help law enforcement find incriminating data in electronic media.
Cybersecurity
Congresswoman Promotes Cyber Insurance Amid Shifting Policy Landscape
The jury is still out on how using insurance policies to pay ransoms and re-establish systems after a cyberattack affects critical infrastructure organizations’ individual and collective resilience.
Cybersecurity
Allied Cybersecurity Agencies Advise Against Disabling Popular Tool for Cyberattackers
The Microsoft program—PowerShell—has granted malicious actors in major hacks remote command and control ability over victims, but, by the same token, it can improve cybersecurity management across an enterprise.
Cybersecurity
Microsoft: Russia Stepping Up Hacking, Cyber Penetration Efforts on 42 Ukraine Allies
Almost one in three detected Russian attacks are successful, Microsoft said.
Cybersecurity
GAO: Potential Federal Cyber Insurance Program Should Avoid Moral Hazard
The government watchdog highlighted the need for specific security requirements in recommending other relevant agencies explore the possibility of providing federal assistance to private sector entities following a catastrophic event.
Digital Government
Biden Signs Bill Creating Federal Cybersecurity Rotational Program
Certain cyber and IT federal employees will be able to rotate to other agencies under a new law signed Tuesday.
Emerging Tech
TMF Announces $95 Million in New Funding Focused on Security and Networks
The Technology Modernization Fund is announcing a new set of investments to help three agencies meet White House cybersecurity objectives.
Cybersecurity