Cybersecurity

Cyber-Incident Reporting Legislation Clears House in Bipartisan Spending Bill

The bill, attached to government funding legislation, now moves to the Senate, which recently passed the same incident reporting provisions separately by unanimous consent.

Ideas

How a Cloud-Security Scaffolding Can Protect Your Multicloud Landscape

Different cloud environments have different security needs. Here’s how to create a cloud-security scaffolding to strengthen protections while reducing manual support.

Cybersecurity

Report Shows Global Financial Giants Are at Risk of Cyberattacks

A new report by Constella Intelligence raises questions as to whether the sector is doing enough to protect itself.

Cybersecurity

DOJ to Hit Government Contractors with ‘Very Hefty Fines’ If They Fail to Disclose Data Breaches

Deputy Attorney General Lisa Monaco promised to use an existing law to go after contractors that don't follow required cybersecurity standards.

Ideas

Prioritizing Breach Prevention for a Secure Government  

A more secure government happens when hackers are stopped before they can touch critical data and systems—when a breach is prevented, not mitigated.

Cybersecurity

Survey: Nearly 3 in 4 Organizations Suffered Data Breaches Due to Phishing

More than half of respondents indicated concerns about hybrid work environments and defending against malicious emails. 

Ideas

People Don't Realize They're Data Breach Victims

The researchers found participants were not aware of 74% of the breaches.

Digital Government

Senate Bill Would Force Companies to Safeguard Consumer Data

The bill outlines “reasonable” duties of care, loyalty and confidentiality for companies to follow or face fines.

Ideas

It’s Time for a Cybersecurity Quid Pro Quo

Require companies to disclose breaches to the government in exchange for legal liability limitations. 

Podcasts

Critical Update: The Government’s Cloud Anxiety 

As more federal agencies shift to cloud computing, officials are reexamining the responsibilities customers and service providers must bear to secure data.

Cybersecurity

Hackers Take Data for Further Reconnaissance in Breach of Federal Agency

Initial access to the agency’s system was possibly due to failure to fix a known VPN vulnerability, a patch for which was released in April 2019.

Cybersecurity

IG: CBP Responsible for 2019 Biometrics Breach, Though No Federal Networks Were Compromised

A ransomware attack on a Customs and Border Protection vendor leaked facial images on more than 184,000 travelers—something agency security and policy should have prevented.

Cybersecurity

Audit: HUD Doesn’t Ensure Sensitive Data It Shares Is Secure

A Government Accountability Office pointed to high turnover rates for top privacy and IT security officials as a reason for the agency's poor performance.

Cybersecurity

46,000 Veterans' Data Exposed In Financial Services Center Breach

Hackers were able to divert payments headed to private sector health care providers.

Cybersecurity

CISA, International Counterparts Highlight Mistakes Organizations Make After a Cyber Intrusion

A lot of what’s necessary to appropriately respond to a cyber incident should happen way in advance.

Digital Government

Survey: Nearly 3 in 4 Americans Want More Government Oversight on Data Privacy

Slightly less than half of Americans say they wouldn’t share any sort of sensitive information with a business for any reason.