Cybersecurity
Senate Homeland Security Committee Advances Workforce, Supply Chain Bills
Lawmakers look to grow an already lengthy to-do list at the Cybersecurity and Infrastructure Security Agency.
Cybersecurity
Advisory Details How to Defend Container Tech from Crypto Miners
Old fashioned data theft is still the main reason adversaries are targeting a popular open-source application management system.
Cybersecurity
The White House Is Deciding Whether to Support a Bureau of Cyber Statistics
A key senator introduced a bill containing one of the more controversial recommendations of the Cyberspace Solarium Commission.
Cybersecurity
CISA Offers Vulnerability Disclosure Platform for Civilian Agencies
The platform will provide triage and administrative services while allowing CISA to monitor agencies’ progress resolving reports from security researchers.
Cybersecurity
Wanted: Accountability for Addressing the Federal Cybersecurity Workforce Challenge
Even when some agencies succeed at bringing talent in, they aren’t able to hold on to it for long.
Cybersecurity
The Most Targeted Vulnerability of the Year Was First Identified in 2017
In a joint advisory, international cybersecurity officials say failure to patch years-old vulnerabilities makes attributing cyberattacks more difficult.
Cybersecurity
White House Asks CISA, NIST to Set Performance Goals for Critical Infrastructure Operators
The initiative will not result in mandatory measures for the private sector, but the administration hopes to signal its commitment to cybersecurity and maybe get a little help from Congress on that front.
Cybersecurity
TSA, Transportation Officials Give Insight into New Cybersecurity Mandates for Pipeline Operators
Agency leaders expressed a commitment to avoiding duplication of their efforts as lines blur between cyber and physical security.
Cybersecurity
Energy Updates Assessment Tool for Administration’s 100-Day Cybersecurity Sprint
The update comes as lawmakers jostle for jurisdiction over cybersecurity across multiple critical infrastructure sectors with a slew of bills advancing in both chambers of Congress.
Cybersecurity
Commerce Secretary Highlights Cybersecurity Workforce Needs With $3B Initiative
Grants will be competitively awarded to state and local governmental entities, institutions of higher education, not-for-profit entities, unions and tribes.
Cybersecurity
Senators Promote Cybersecurity Measures in Core Bipartisan Infrastructure Framework
Congressional leaders of the Cyberspace Solarium Commission stressed a need to focus specifically on water treatment systems.
Cybersecurity
Bill Would Require Federal Agencies and Contractors to Report Cyber Intrusions Within 24 Hours
The bill leaves it up to an interagency rulemaking process to determine whether entities would be required to report incidents they’re aware of but not directly involved in.
Cybersecurity
TSA’s New Cybersecurity Rules for Pipelines to Be Kept on Need-to-Know Basis
The details of a second set of security regulations will not be released publicly.
Cybersecurity
NIST Outlines Security Measures for Software Use and Testing Under Executive Order
Eyes now turn to the Office of Management and Budget to issue requirements for federal agencies and contractors based on NIST’s work.
Cybersecurity
Lawmakers Look to Improve Cyber Workforce, Especially for Acquisitions
The effort is happening through major Department of Homeland Security reform legislation recently introduced in the House and a supply-chain bill that just cleared committee in the Senate.
Cybersecurity
Agencies Unveil Plans to Fight Ransomware—Including Paying for Tips
The State Department’s Rewards for Justice program is offering a reward of up to $10 million for information about attackers targeting U.S. critical infrastructure.
Cybersecurity
CISA Orders Agencies to Patch Microsoft ‘PrintNightmare’ Vulnerability
The flaw—which Microsoft said affects all versions of Windows—could allow an adversary to execute code on their victim’s system remotely.
Cybersecurity
Cybersecurity Funding Faces Political Clash During Appropriations Markup
Republican lawmakers continue to withhold support for the Cybersecurity and Infrastructure Security Agency until their immigration concerns are addressed.
Cybersecurity
CISA Issues Mitigation Tips for Common Attack Tactics
The agency assessed 37 federal agencies, and state, local and tribal governments last year to see how they are typically exploited.
Cybersecurity