Homeland Security

GSA Seeks Comments on Transfer of .Gov Domain to Cybersecurity Agency

The government’s site for managing government websites—dotgov.gov— may temporarily go down for maintenance as officials make the switch.

Women Report from the Frontlines of Federal Cryptocurrency Governance

Over the course of 2021, Congress and the administration have recognized significant benefits from diving into the technology, a trend that looks poised to continue.

The Implications of Publicly Disclosing Cyberattacks

Officials must weigh the benefits and risks on a case-by-case basis.

Agencies Under New Deadlines to Address ‘log4j’ Flaws with Emergency Directive

The Cybersecurity and Infrastructure Security Agency order comes as a prominent firm says nation states are exploiting the vulnerabilities.

NSA, CISA, Add Original Equipment Manufacturers to Audience for 5G Security Guidance

The agencies got specific about who is responsible for what in a four-part series on securing the inherently cloud-based environments.

Federal Cybersecurity Advisor Floats Executive Order on Cloud Service Providers

The idea sprung from a sense of moral outrage Cybersecurity and Infrastructure Security Agency Director Jen Easterly identified with.

Agencies Must Fix Newly Cataloged Vulnerabilities by Christmas Eve

Officials stressed the importance of maintaining a bill of materials for software in flagging the “Log4j” vulnerability.

Increased Interconnectivity Demands Stronger Federal Data Protection Protocols, Officials Say

Officials in the public and private sectors warned of the need to enact a robust cybersecurity posture at the federal level ahead of growing ransomware and hacking threats.

House Passes NDAA Without Cyber Incident Reporting Legislation

The bill still includes what the House Armed Services Committee referred to as the widest empowerment of CISA since SolarWinds.

ACLU Calls for Halt of Homeland Security’s Use Of Facial Recognition Technology

The civil rights organization said that the biometrics technology can lead to discriminatory arrests based on race.

OMB Guidance Heralds Automation of FISMA Reporting

The new Federal Information Security Modernization Act guidance also prioritizes security testing and doubles down on CISA’s Continuous Diagnostics and Mitigation program.

NSA, CISA List Expectations for Industry on Data Governance in 5G Environments

The document is the third in a four-part series of guidance that categorizes security responsibilities according to their relevance for the cloud service providers, mobile operators and users of emergent fifth-generation networks.

DHS Redefines ‘Cybersecurity Incident’ in Directives for Surface Transportation

The new definition allows industry more flexibility to decide what should trigger reporting mandates for the sector.

Hacker, Journalist Among CISA Directors’ 23 New Cybersecurity Advisors

The new Cybersecurity Advisory Committee will focus on five areas including workforce development, and has room for 12 more members.

Feds Warned to Look Out For Ransomware Grinches over the Holidays

Federal cybersecurity officials would prefer you keep your holidays a little more secure.

CISA Seeks Protective Email Service that Tracks Agencies’ Security Compliance

The agency is ramping up efforts to exercise its new authorities to hunt for threats across the .gov enterprise.

White House Holiday Warning Identifies Options for Reporting Ransomware

The FBI has a prominent portal for entities to report cybersecurity incidents, but Congress is considering legislation that officials fear could change the current dynamic.