Cybersecurity

2 wireless protocols expose mobile users to spying — the FCC wants to fix that

The protocols are a cornerstone of wireless communications but may contain flaws that enable hackers to tap into Americans’ mobile activities, the agency says.

Cybersecurity

CISA's proposed framework for cyber incident reporting rules includes subpoena power

The rules also require that covered entities that pay ransomware hackers to regain control of their systems and data must report such payments to CISA.

Cybersecurity

Some banks moving too slow to address AI-powered cyberthreats, Treasury says

The agency’s findings will be distributed to Capitol Hill with the hope of drumming up legislation or other initiatives to study the risks.

Policy

US targets 6 to 8 month timeframe for new nations to join spyware pact

Six new countries joined the agreement last week, and the State Department was working behind the scenes to initially get more signed on.

Cybersecurity

US accuses Chinese hackers of 14-year campaign targeting government officials

The coordinated charges include sanctions on Chinese government-affiliated hackers and an up to $10 million reward for information about the defendants.

Defense

The US must create an independent cyber armed service, report argues

The study involved interviews with over 75 active-duty and retired U.S. military officers and argues an independent Cyber Force is an ideal operating model.

Cybersecurity

New bill would create payment incentives for the health sector to meet cyber standards

The measure led by Sen. Mark Warner, D-Va. comes in the wake of a ransomware attack on UnitedHealth subsidiary Change Healthcare.

Cybersecurity

Congress expected to approve government spending bill that cuts CISA funding

The agency has previously stressed that funding will be needed to combat cyber threats and coordinate with partners as the November presidential election approaches.

Cybersecurity

Biden nominates first assistant defense secretary for cyber policy

The position was created to address concerns about missing civilian leadership in the Pentagon’s cyber policy space.

Cybersecurity

Biden seeks 10% bump to civilian cybersecurity spending for FY25

The funding boost is influenced by the White House’s National Cyber Strategy released last year.

Cybersecurity

Government funding bill punts extension of controversial spying power

Section 702 of the Foreign Intelligence Surveillance Act expires April 19 unless reauthorized by Congress, and an 11th-hour funding bill crafted to avert a partial government shutdown doesn't address the matter.

Cybersecurity

House advances bill empowering FTC to punish data transfers to foreign rivals

The unanimously approved legislation would give the FTC more enforcement power over data transfers to nations like China and Russia.

Policy

US sanctions Kremlin-backed firms for operating network of fake news sites

The disinformation campaign was deployed in Fall 2022, and shows how Russia’s private sector easily works with the government on disinformation operations.

Cybersecurity

White House warns states of continued cyber threats to water infrastructure

The letter to state governors comes after the U.S. sanctioned Iran-linked hackers in February for their breach of water treatment systems last year.

Cybersecurity

Ransomware payment debate resurfaces amid Change Healthcare incident

Expert views don’t entirely align on whether victims should pay ransomware hackers.

Cybersecurity

U.S. still finding victims of advanced China-linked hacking campaign, NSA official says

The Volt Typhoon hacking collective, backed by the Chinese People’s Liberation Army, has been working to burrow into sensitive U.S. systems, officials previously said.

Cybersecurity

FCC approves cyber labeling program for IoT devices

The move is one of several directives underpinning a sweeping Biden administration plan to shore up U.S. cybersecurity.

Cybersecurity

CISA rolls out secure software attestation form

A repository for software attestation submissions will be available later in March.