Ideas
News Media Accidentally Boosted Russian Disinformation Tweets
Mainstream and hyperpartisan news media significantly amplified Internet Research Agency messaging and contributed to that follower growth by unknowingly embedding its tweets in their content.
Cybersecurity
Biden Administration, Allies Attribute Microsoft Exchange Hack to China
The White House said it’s accusing China with “high confidence.”
Cybersecurity
VA Needs a Security Check For Its Social Security Number Reduction Tool
The app was recently migrated into a VA-managed cloud environment and needs a new authority to operate and some upgrades.
Cybersecurity
NIST Outlines Security Measures for Software Use and Testing Under Executive Order
Eyes now turn to the Office of Management and Budget to issue requirements for federal agencies and contractors based on NIST’s work.
Ideas
Changing How App Stores Operate Could Have National Security Implications
As Congress considers how to increase competition for app stores run by Apple, Google and others, it also needs to consider potential cybersecurity threats.
Cybersecurity
Agencies Unveil Plans to Fight Ransomware—Including Paying for Tips
The State Department’s Rewards for Justice program is offering a reward of up to $10 million for information about attackers targeting U.S. critical infrastructure.
Cybersecurity
CISA Orders Agencies to Patch Microsoft ‘PrintNightmare’ Vulnerability
The flaw—which Microsoft said affects all versions of Windows—could allow an adversary to execute code on their victim’s system remotely.
Cybersecurity
Cybersecurity Funding Faces Political Clash During Appropriations Markup
Republican lawmakers continue to withhold support for the Cybersecurity and Infrastructure Security Agency until their immigration concerns are addressed.
Cybersecurity
Energy’s Cyber Response Office Misspent Millions Due to Lack of Budget Management
Complaints alleged the relatively new CESER misspent $11.7 million, though the inspector general could only substantiate some of those claims.
Cybersecurity
CISA Issues Mitigation Tips for Common Attack Tactics
The agency assessed 37 federal agencies, and state, local and tribal governments last year to see how they are typically exploited.
Cybersecurity
Official Suggests Consequences Coming to Russia for Ransomware
A senior administration official said the U.S. has made specific requests through official channels regarding cyber criminals.
Cybersecurity
Report: COVID-19 Increased Acquisition Activity in Cyber Industry
The pandemic contributed to more than 120 publicly announced cybersecurity acquisitions in 2020 as the need for cybersecurity tools grew.
Ideas
The U.S. Desperately Needs a Civilian Cybersecurity Corps
Here is how we maximize its scale and potential.
Cybersecurity
Key State Department Systems ‘Require Management Attention,' IG Says
The inspector general found multiple expired authorizations to operate.
Cybersecurity
VA’s Cybersecurity Still Missing Critical Zero-Trust Element, Watchdog Says
An official from the Government Accountability Office said she is encouraged by the formation of an investment review board at the department and intends to monitor it closely.
Cybersecurity
IG: SBA’s Cybersecurity ‘Not Effective,’ In Part Due to COVID
The pandemic created new cybersecurity problems for the Small Business Administration, according to the agency’s annual FISMA report.
Cybersecurity
U.S., Russian Officials to Meet Following Kaseya Ransomware Attack
President Joe Biden also plans to meet with U.S. officials on measures to address ransomware.
Ideas
Colonial Pipeline Didn’t Have Multifactor Authentication in Place—And Most Defense Contractors Don’t Either
Most businesses don’t take cybersecurity seriously until it’s too late.
Cybersecurity
Debate Heats Up as Senator Prepares to Introduce Incident-Reporting Legislation
Reviews are in on draft legislation Sen. Mark Warner’s office has circulated and plans to update for introduction after the holiday break.
Cybersecurity