Author Archive

David DiMolfetta

Cybersecurity Reporter, Nextgov/FCW

David DiMolfetta
David DiMolfetta covers cybersecurity for Nextgov/FCW. Previously, he researched The Cybersecurity 202 and The Technology 202 newsletters at The Washington Post and covered AI, cybersecurity and technology policy for S&P Global Market Intelligence. He holds a BBA from The George Washington University and an MS from Georgetown University. Get in touch with him on X/Twitter: @ddimolfetta
Policy

Biden admin to seek surveillance court blessing to renew Section 702 program through next year

The Foreign Intelligence Surveillance Court will receive the White House filing next month.

Policy

Civil liberties groups urge Congress to keep 702 measures out of upcoming funding votes

Section 702 of the Foreign Intelligence Surveillance Act is set to expire on April 19 unless reauthorized by Congress.

Cybersecurity

Biden executive order aims to stop adversaries from obtaining, exploiting Americans’ personal data

Data brokers under the order are barred from selling bulk caches of sensitive Americans’ data to multiple foreign countries, including China and Russia.

Cybersecurity

Energy to fund 16 infrastructure cybersecurity projects 

The White House’s cybersecurity strategy implementation plan asks the agency to identify pilot projects for energy infrastructure security.

Cybersecurity

NIST debuts the finalized update to its Cybersecurity Framework

The streamlined blueprint has already gotten positive feedback from private sector organizations.

Cybersecurity

White House urges software developers to use memory-safe programming languages

A number of headline-making cyberattacks started with memory safety flaws, a White House cyber official said.

People

Top Pentagon IT official departs deputy CIO role

Lily Zeleke will be taking over “new responsibilities” at the agency, though it’s still unknown what her new position is.

Cybersecurity

New cloud security task force presses for stakeholder accountability

A team convened to focus on cloud security is challenging industry, Congress and the executive branch to address longstanding concerns.

Cybersecurity

FCC to vote on authorizing cyber labeling rules next month

The move is a major piece of a Biden administration push to bring more cyber transparency to consumer products.

Cybersecurity

Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says

The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.

Cybersecurity

Biden to sign executive order boosting cybersecurity of ports, maritime vessels

The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.

People

NSA cyber director to step down after 34 years of service

His departure comes amid heightened security fears in 2024 and debate over whether to renew a controversial spying power.

Cybersecurity

US, international partners disrupt LockBit ransomware operations

Officials have also developed a tool for victims targeted by LockBit to potentially decrypt their compromised data.

Cybersecurity

FBI disrupts botnet controlled by Russian security services

The news comes just weeks after the U.S. announced it went on the offensive against a China-linked botnet operation.

Acquisition

House Oversight lawmaker probes government purchase of Chinese security cameras

A letter to the General Services Administration's CIO asks why he signed off on the equipment purchase, despite alternatives being available.

Cybersecurity

Microsoft and OpenAI swept AI chat logs to find hackers. Expect that to become the norm.

Big tech firms and their affiliated cybersecurity or AI offerings will likely roll out similar security research, though some say it raises privacy concerns.

Policy

Section 702 renewal could pass in funding bill, sources say

Backers of 702 reauthorization in the House Intelligence committee will likely use recent news of classified intelligence gathered using the surveillance power as a way to convince colleagues to support its renewal.

Cybersecurity

The Pentagon is notifying individuals affected by 2023 email data breach

The exposed contents were not secured with a password at the time of their compromise.

Cybersecurity

Atlassian vulnerability linked to GAO data breach, CGI Federal says

CISA issued an alert on the vulnerability impacting the Atlassian tool in October of last year.