Cybersecurity
VA’s Cybersecurity Still Missing Critical Zero-Trust Element, Watchdog Says
An official from the Government Accountability Office said she is encouraged by the formation of an investment review board at the department and intends to monitor it closely.
Cybersecurity
U.S., Russian Officials to Meet Following Kaseya Ransomware Attack
President Joe Biden also plans to meet with U.S. officials on measures to address ransomware.
Cybersecurity
Debate Heats Up as Senator Prepares to Introduce Incident-Reporting Legislation
Reviews are in on draft legislation Sen. Mark Warner’s office has circulated and plans to update for introduction after the holiday break.
Cybersecurity
US, UK Officials: Russian Military Leveraging Containers in Active Hacking Campaign
Cybersecurity agencies issued an advisory with indicators of compromise and mitigation measures.
Cybersecurity
House Panel Approves DHS Bill with ‘Historic’ Funding for Cybersecurity
The bill would increase the budget for the Cybersecurity and Infrastructure Security Agency from both the previous year’s and the president’s request for fiscal year 2022.
Cybersecurity
Lawmakers Look to Give NTIA More Cybersecurity Responsibilities
During a hearing of the House Energy and Commerce Committee, witnesses drew attention to the absence of a permanent leader at the National Telecommunications and Information Administration.
Cybersecurity
CISA Starts Cataloging Bad Practices in Cybersecurity
The agency plans to keep updating the narrow list based on feedback from cybersecurity professionals.
Cybersecurity
White House Plans to Attribute the Microsoft Exchange Hack Soon
Microsoft has already attributed the broad-scale compromise of its on-premises mail servers to Chinese nation-state actors.
Cybersecurity
Lawmaker, Tech Companies Clash on Software Transparency Requirements
The National Institute of Standards and Technology has defined "critical software" in accordance with an executive order to institute procurement standards federal agencies must follow.
Cybersecurity
DOD Offering Defense Industrial Base a ‘Krystal Ball’ Into Adversary Insights
A pilot program is being run out of the Defense Department’s Cyber Crime Center, which is a key part of a strategy to secure the defense industrial base as the scope and severity of cyberattacks increase.
Cybersecurity
Key Lawmaker Calls on Pentagon Leadership to Act on Cyber Certification Program
Members of the House Small Business Committee heard complaints of poor communication and coordination from the department on implementation of a controversial third-party auditing process.
Cybersecurity
FCC Advances Efforts to Remove Untrusted Chinese Equipment from US Market
The Commission has set a date to vote on its most recent order for companies to rip and replace Huawei, ZTE and other gear from their networks.
Cybersecurity
CISA Collaborating With White House on Forthcoming Zero-Trust Strategy
The agency has already released a draft model to guide agencies implementation of the concept under a recent executive order.
Cybersecurity
Energy Department Revising Cybersecurity Requirements for Nuclear Administration Contractors
The changes are coming as the industry argues current regulations are overly burdensome.
Cybersecurity
NSA: Test Unified Communications Patches Before Installing
Guidance from the National Security Agency aims to protect communications carried over the internet from eavesdropping, denial-of-service attacks and other dangers.
Cybersecurity
Bipartisan Bill Bolsters FCC Motion to Ban Suspect Chinese Telecom Equipment
The Federal Communications Commission is already set to vote on a notice of proposed rulemaking on its equipment authorization program.
Cybersecurity
National Lab Recommends Energy Department Test Electric Utility Vendors for Cybersecurity
A broad spectrum of organizations are calling on regulators to improve suppliers instead of simply banning foreign companies.
Cybersecurity
FDA Tells NIST Securing ‘Critical Software’ Extends Beyond Devices
Two federal agencies were among those who submitted comments to the National Institute of Standards and Technology for shaping deliverables under a recent executive order.
Cybersecurity
Key Senator Wants Biden to Raise SolarWinds in International Negotiations
Senate Intelligence Committee Chairman Mark Warner said espionage campaigns like the SolarWinds hack merit discussion with Russian President Vladimir Putin.
Cybersecurity