Author Archive

Mariam Baksh

Mariam Baksh
Mariam Baksh reports on the development of federal cybersecurity policy for Nextgov. She started covering technology governance in 2014, during the heat of the Net Neutrality debate, and focused her graduate studies at American University on investigative journalism.
Cybersecurity

Treasury Analysis Identifies Cryptocurrency Exchanges Associated With Ransomware

The department is tracking a huge increase in ransomware disclosures but data suggests the events are still grossly underreported.

Cybersecurity

Health Agency CISO Looks to Increase Security in Software Transparency Requirements

Robert Wood aims to improve security while fostering faster mission execution from a DevSecOps “BatCAVE” at the Centers for Medicare and Medicaid Services.

Cybersecurity

White House Unveils 32 Countries Invited to Participate in Ransomware Meeting

India, the United Kingdom, Australia and Germany will have leadership roles during the two-day event. Russia was not invited.

Cybersecurity

OMB Gives Agencies Three Months to Help CISA Monitor Networked Devices

The memo adds heft to the Cybersecurity and Infrastructure Security Agency’s longstanding push for more visibility into federal networks.

Cybersecurity

Lawmakers Ask How They Can Help Agencies Fight Crypto-enabled Ransomware Hacks

A new bill would require public and private entities to report on ransomware payments, including the nature of currency used, to DHS within 48 hours.

Cybersecurity

Federal CISO Considers Including Technology Modernization in Cybersecurity Metrics

Chris De Rusha is also thinking about how to use the Technology Modernization Fund to create a new shared services program for zero-trust implementation.

Cybersecurity

Senate Committee Passes Major FISMA Changes—Including a New Definition of ‘Major Incident’ 

The Homeland Security and Governmental Affairs Committee also passed an incident reporting bill with increased liability protections for companies, drawing praise from industry.  

Cybersecurity

Deputy National Security Adviser Lays Out Goals for Upcoming 30 Nation Meeting on Ransomware

Top cyber officials highlighted the importance of defensive measures as lawmakers move on related initiatives, including a bill to identify systemically important critical infrastructure.

Emerging Tech

DHS Issues Roadmap to Help Organizations Prepare for Quantum Computing Threat

Officials say there’s a lot agencies and other entities should be doing, even though it may be more than a decade before a quantum computer can decode current levels of encryption.

Cybersecurity

FCC Issues Order on Security Reviews Ahead of U.S.-China Engagement

The commission’s new rule on foreign ownership and investment comes amid an industry call for international alignment on the use of voluntary standards to secure the supply chain of information and communications technology

Cybersecurity

FCC Working on Rule for Wireless Carriers to Avert SIM Swap Fraud

More than a year after lawmakers requested such action to protect consumer data and national security, the commission’s move could help to stop hackers undermining multifactor authentication.

Cybersecurity

NSA Cyber Chief Warns Hackers Increasingly Use Commercial Tools to Stay Hidden 

Advanced persistent threat actors are becoming harder to spot and making attribution more difficult.

Cybersecurity

CISA Warns of Vulnerabilities in Banned Chinese Surveillance Tech

The Federal Communications Commission is set to vote on tightening its national security reviews of foreign suppliers.

Emerging Tech

IRS’ Criminal Investigators Want Help Breaking into Physical Crypto Wallets

The agency’s digital forensics unit is looking for a small business to help make routine processes out of some nascent research into related hardware hacking techniques.

CIO Briefing

Biden Doubles the Size of the President’s Science and Technology Council

The group includes high-profile academics and industry representatives, including from Google and Microsoft.

Cybersecurity

Treasury Sanctions First Cryptocurrency Exchange to Combat Ransomware 

The department also emphasized guidance for victim organizations who risk running afoul of enforcers by paying attackers and failing to report incidents.

Cybersecurity

Union Supports Revised Civilian Cyber Reserve Program 

But the American Federation of Government Employees is still adamantly against the creation of a civilian National Digital Reserve Corps.

Cybersecurity

Agencies Seek Comments on Supply Chain Security of Critical Software

The Commerce and Homeland Security departments want details about the information and communications technology industry’s cybersecurity practices and gaps in manufacturing.