People
DHS, cyber industry mobilize to get CISA director nominee confirmed
“It’s a national security risk to not have him,” said a current U.S. official.
Cybersecurity
China is using advanced ‘Brickstorm’ malware against government and IT orgs, US assesses
The malware was detected in the recently disclosed breach of F5, an application delivery and security provider.
Cybersecurity
CISA tells staff to not speak with reporters, internal email shows
“CISA does not comment on leaked internal emails, especially when they’re about leaking internal emails,” CISA Director of Public Affairs Marci McCarthy told Nextgov/FCW when asked for comment.
People
NSA has met 2,000-person workforce reduction goal, people familiar say
A broader Pentagon goal to shrink the nation’s defense budget over the coming five years could potentially subject the agency to further downsizing.
Cybersecurity
New bill proposes government-wide processes to attribute, sanction hackers
The measure would permit “robust sanctions against designated actors, including asset blocking, financial restrictions, export controls, procurement prohibitions, visa bans and suspension of assistance.”
Defense
Foreign spies are targeting Army soldiers, civilians and families, official warns
Current and former federal workers, especially those with security clearances, should be aware of the attempts, an Army intelligence chief said in a November memo.
People
ICE — overwhelmed with applicants — leans on cyber talent program to speed tech hiring
ICE’s acting CIO, Dustin Goetz, said the agency will need more personnel as it seeks to meet sweeping deportation and detainment demands set by the White House.
Cybersecurity
SEC to drop high-profile SolarWinds hack lawsuit
The landmark lawsuit garnered pushback from dozens of cybersecurity leaders last year.
Cybersecurity
FCC votes to reverse telecom security rulemaking issued under Biden
The vote has drawn significant concern from congressional Democrats, who say it will weaken the security posture of telecom systems. The initial measure was enacted in response to Chinese hacks of U.S. telecom providers discovered last year.
Policy
Congress weighed measure to curtail scope of DHS intelligence office
A provision, ultimately left out of the Intelligence Authorization Act, would have removed commonplace collection and analysis authorities granted to the Department of Homeland Security’s Office of Intelligence and Analysis, rendering much of the office’s functions inert.
Cybersecurity
Senators expect 10-year extension of cyber data-sharing law in future budget package
The Cybersecurity Information Sharing Act of 2015 got a temporary reprieve after the government reopened this month, but it risks lapsing again at the end of January.
Cybersecurity
National cyber strategy coming ‘as quickly as possible,’ official says
“It’s going to be a short statement of intent and policy, and then it will be paired very quickly with action items and deliverables under that,” National Cyber Director Sean Cairncross explained.
Digital Government
Nearly 20 Democratic states inadvertently share driver data with ICE, lawmakers say
Nlets, a nonprofit law enforcement info-sharing network, can share state residents’ information with immigration agencies, federal lawmakers said Wednesday.
Cybersecurity
Bill to end shutdown includes temporary cyber info-sharing law extension
The Cybersecurity Information Sharing Act of 2015 expired when the government’s calendar reset without a funding package for FY 2026.
Cybersecurity
CBO systems accessed in ‘security incident’ possibly tied to foreign hackers
The office estimates the cost and economic impact of proposed legislation and helps forecast federal spending, revenues, deficits and debt.
People
DHS says shutdown layoffs at CISA will proceed despite court injunction
The cybersecurity agency says it has complied with the court’s order because the firing of 54 people in its Stakeholder Engagement Division was planned beforehand and doesn’t affect unionized employees.
People
A leadership vacuum and staff cuts threaten NSA morale, operational strength
The signals intelligence giant has halted recruitment for its Legal Honors Program, two people familiar say, slowing inflow of top legal talent. Other long-term capabilities are at risk.
People
OPM to pursue ‘mass deferment’ of deadlines for CyberCorps students
The extensions would occur once the government shutdown ends, the government’s personnel agency said. An exact deferment length was not given.
Cybersecurity
FCC to vote on reversing telecom security rulemakings next month
The initial measures proposed at the end of the Biden administration came in response to the Salt Typhoon telecom hacks carried out by China.
People