People
Now accepting applications — for classified intel
Foreign adversaries are using fake jobs and consulting gigs to coax secrets from former U.S. officials. It’s had results, and the efforts don’t appear to be slowing.
Cybersecurity
CISA orders agencies to patch and replace end-of-life devices, citing active exploitation
The directive gives agencies three months to identify unsupported edge devices, a year to begin removing them and 18 months to eliminate them entirely.
Cybersecurity
Domestic surveillance fears loom over Congress debate to renew spying power
Lawmakers’ concerns about immigration enforcement and Fourth Amendment compliance are weighing on the reauthorization fight for Section 702 of FISA, even as the FBI privately warns against letting the foreign spying law lapse.
Cybersecurity
Senator says AT&T and Verizon blocked release of Salt Typhoon security reports
“AT&T and Verizon apparently intervened” to block a major cyber intelligence firm from sending documentation about the telecom hackers, Sen. Maria Cantwell wrote in a letter.
Cybersecurity
AI info-sharing center is in development, CISA official says
CISA’s Nick Andersen told reporters that he didn’t know of a completion timeline, but talks were ongoing across government and industry.
Cybersecurity
White House cyber shop is crafting AI security policy framework, top official says
ONCD chief Sean Cairncross also said a bedrock National Cyber Strategy, initially expected last month, is coming “sooner rather than later” without specifying a date.
Cybersecurity
Key cyber statutes at risk again as Congress works to avert shutdown
One measure allows the private sector to provide threat data to government agencies with key legal protections in place.
Policy
Tech Bills of the Week: Measures seek to boost cyber posture of utilities
The proposed legislation would expand the Energy Department’s role in hardening U.S. energy infrastructure to boost cybersecurity and physical protections for pipelines, electric utilities and local distribution systems.
People
Trump nominee to lead NSA commits to backing controversial spying law
Lt. Gen. Josh Rudd also promised to prioritize NSA efforts to protect U.S. elections.
Cybersecurity
US developed ‘non-kinetic’ cell ahead of Venezuela mission to push cyber operations
Officials said that cyber capabilities are expected to play a central role in future U.S. military undertakings.
People
Suspected Chinese spies targeted former State official for Venezuela research
The recruitment scheme involved a sham company previously reported by Nextgov/FCW that has sought out former U.S. federal employees through fake websites and job postings.
Cybersecurity
OMB reverses Biden-era software attestation order
A new executive branch memorandum instead allows agencies to lean on software bills of materials, or SBOMs, in lieu of a universal attestation framework.
Cybersecurity
CISA to cease participation at RSAC conference after Biden-era cyber leader named CEO
The decision, which has been in motion over the last week, highlights the Trump administration’s push to strictly control how current officials participate in industry events linked to former senior leaders now under White House scrutiny.
Cybersecurity
Democrats press CISA’s acting chief over major staffing cuts
Madhu Gottumukkala also faced questions about a reported failed polygraph exam and attempts to reassign the agency’s chief information officer.
People
CISA budget bill would require agency to maintain ‘sufficient’ staffing levels
The congressional justification diverges from steps taken last year to curb the agency’s workforce and election security footprint.
Modernization
Funding bill extends TMF and cyber measures through September
The authorization for the Technology Modernization Fund had lapsed in December, leaving its leadership unable to make new investments.
Cybersecurity
Lawmaker worries NSF program loophole enables Chinese institutions to access US-backed computing resources
Chinese entities are able to access a stockpile of high-performance computing tools funded by the U.S. government, creating potential technology transfer risks, Rep. John Moolenaar said in a letter sent this week.
People
Trump officials consider skipping premier cyber conference after Biden-era cyber leader named CEO
Jen Easterly, who led the Cybersecurity and Infrastructure Security Agency under Biden, was named CEO of RSAC Conference Thursday.
People
Rudd defends qualifications to lead NSA, Cyber Command at confirmation hearing
“For decades I have had the opportunity to be a leader, consumer, enabler, generator and integrator of the intelligence and operational capabilities of the NSA and Cyber Command,” INDOPACOM Deputy Commander Josh Rudd said.
People