Author Archive
David DiMolfetta
Cybersecurity Reporter, Nextgov/FCW
David DiMolfetta covers cybersecurity for Nextgov/FCW. Previously, he researched The Cybersecurity 202 and The Technology 202 newsletters at The Washington Post and covered AI, cybersecurity and technology policy for S&P Global Market Intelligence. He holds a BBA from The George Washington University and an MS from Georgetown University. Get in touch with him on X/Twitter: @ddimolfetta
Cybersecurity
CISA to issue list of software products critical to agency security by end of September
The software offerings are crucial for federal cybersecurity because of certain privileges and controls they enable, as defined by NIST.
- By David DiMolfetta
Policy
Biden signs extension of controversial spying program into 2026
The Section 702 authorities were reauthorized without the addition of a warrant requirement to review the communications of Americans caught up in foreign surveillance.
- By David DiMolfetta
Digital Government
Federal CIO defends Login security after health agency dropped it from grantee system
Clare Martorana doubled down on Login’s capabilities, saying the government “needs to continue to rely” on the tool.
- By David DiMolfetta
Digital Government
Foreign adversaries using AI to push disinformation, crumble election process, US warns
The documented reports and research of foreign propaganda campaigns align with new private sector analysis about recent efforts to flatline U.S. election confidence.
- By David DiMolfetta
Cybersecurity
House passes bill barring spy agencies, law enforcement from buying Americans’ personal data
The measure doesn’t have support from the Biden administration, which argues it threatens national security and worsens Americans’ privacy protections.
- By David DiMolfetta
Cybersecurity
Russian hackers breached, sabotaged Texas water treatment plant, cyber firm says
If confirmed by U.S. officials, it would add Moscow to the list of American adversaries that have infiltrated water infrastructure in the past year.
- By David DiMolfetta
Cybersecurity
Hackers tried to breach, disable widely used open-source Java tools, groups warn
The alert comes just after a possible nation state entity attempted to hijack an open-source Linux tool last month.
- By David DiMolfetta
Cybersecurity
New bill would create a governing body for water system cyber standards
The legislation comes after the Biden administration rescinded a memorandum that would have tied water sector cyber reviews to existing sanitation surveys.
- By David DiMolfetta
Cybersecurity
HHS removed Login from its grantee payment system after funding theft
Hackers used data from a federal contracting hub to steal funding from seven grantee organizations in an HHS breach that occurred last year. Both HHS and GSA say that Login.gov was not compromised or connected to the theft.
- By David DiMolfetta and Natalie Alms
Policy
House advances spy power reauthorization bill without warrant measure
The bill — which represents a win for Biden administration policy objectives — will now be taken up in the Senate, with a week to go before the authority sunsets.
- By David DiMolfetta
Cybersecurity
Russian hackers accessed U.S. government emails in Microsoft breach, CISA says
The alert comes a week after Microsoft was faulted in a DHS report for fostering a security culture that enabled a similar China-backed cyberattack last year.
- By David DiMolfetta
Featured eBooks
Exclusive
Cybersecurity
Some Volt Typhoon victims ‘won’t know they’re impacted,’ Mandiant CEO says
The efforts of the Beijing-linked Volt Typhoon hacking group represent the “natural progression” of Chinese espionage, according to Kevin Mandia.
- By David DiMolfetta and Frank Konkel
Cybersecurity
CISA alerts Sisense breach that possibly exposed customer data
An internal company note appears to show some firm info may have been exfiltrated.
- By David DiMolfetta
Cybersecurity
Microsoft report signals ‘great concern’ for dam cybersecurity, top FERC official says
The company’s products are heavily used in the dam sector, the official said.
- By David DiMolfetta
Cybersecurity
Cyber Command deployed personnel on 22 missions in 17 countries last year, commander says
The DOD previously said it’d be taking a more offensive approach to cyberspace.
- By David DiMolfetta
Acquisition
When can US spies buy your personal data? New guidelines are coming
Certain missions require government acquisition of personal information collected by data brokers, and appropriate safeguards need to be put in place, the official said at a Cyber Command-hosted event.
- By David DiMolfetta
Acquisition
Wyden bill requires new cyber standards in federal tech procurement
The legislation comes in the wake of several cyber incidents targeting the federal government.
- By David DiMolfetta
Policy
Section 702 renewal has support in Congress, but intelligence officials are leery of warrant measure
The disputed surveillance authority expires April 19, and the intelligence community is sending a full-court press to keep it from garnering significant privacy reforms.
- By David DiMolfetta
Cybersecurity
Congress tries again for comprehensive data privacy bill
The bill would establish national data privacy standards, with the Federal Trade Commission crafting rules for enforcement.
- By David DiMolfetta
Cybersecurity
China-backed operatives used fake social profiles to gauge US political division, Microsoft says
Some of the fake accounts used AI-generated images, and have doubled or tripled their followers since being detected, the company told Nextgov/FCW.
- By David DiMolfetta