Cybersecurity
Agencies Propose Faster, Broader Reporting of Cyber Incidents for Banks
A new rule would require more from third-party service providers, too.
Cybersecurity
GSA Introduces Vendor Risk Assessment Program in Draft Solicitation
The SolarWinds hack seems to be breathing new life into the supply chain security effort.
Cybersecurity
CISA: SolarWinds Hackers Got Into Networks by Guessing Passwords
The agency also highlighted new indicators of compromise and recommendations for mitigating follow on activity involving Microsoft Cloud users.
Cybersecurity
Trump Plan for Maritime Cybersecurity Would Introduce Procurement Requirements
The outgoing administration added items to federal agencies’ to-do lists, noting rising threats to the sector.
Cybersecurity
Russia ‘Likely’ Behind Widespread Hack, Cyber Response Agencies Say
The Cyber Unified Coordination Group believes fewer than ten government agencies were compromised in what is an ongoing intelligence operation.
Cybersecurity
Government Watchdogs Launch Cyber-Threat Sharing Assessment
In the wake of the recent hack, Microsoft President Brad Smith said contractual obligations hurt cross-government sharing following breaches.
Cybersecurity
CMMC: The Dramatic Year of the Pentagon’s Contractor Cybersecurity Program
The Defense Department’s main effort to protect its supply chain from cyber threats charged ahead through the pandemic but not without controversy.
Cybersecurity
The Hack Roundup: Adversary Accessed Microsoft Source Code
Here are the news and updates you may have missed.
Emerging Tech
The Army Aims to Be Less Dependent on Contractors for Software
The command of the military branch in charge of looking ahead is soliciting prototypes for a major knowledge-transfer initiative.
Cybersecurity
Hack Spurs Call for Greater—but Measured—Supply Chain Scrutiny
Operational cybersecurity hygiene is one thing, criteria for using open-source code is another, one expert says.
Cybersecurity
Former Presidential Adviser Advocates Tougher Software Vendor Standards After Breach
The environment where updates for the company’s software were developed was reportedly protected by a password anyone could guess.
Cybersecurity
Biden Disputes Trump’s Claim that Hack is Under Control
The president-elect called for an official attribution to Russia but said a damage assessment is necessary before discussing the appropriate response.
Cybersecurity
The Hack Roundup: Treasury Briefing Reignites Encryption Debate
Here are the news and updates you may have missed.
Cybersecurity
Massive Hack Roundup: Attorney General Pins Intrusion on Russia
Here are the news and updates you may have missed.
Cybersecurity
Presidential Advisers Make the Case for a New Cybersecurity Center for Sharing Threats
Current federal efforts to help mitigate threats against privately operated critical infrastructure fall short, according to a National Infrastructure Advisory Council report.
Cybersecurity
FBI, CISA, State Leaders Warn Schools About Ransomware Threats
The percentage of ransomware attacks perpetrated against schools more than doubled in 2020.
Cybersecurity
FCC Adopts Order to Rip and Replace Huawei, ZTE Equipment Amid 5G Security Challenges
The senior Democrat on the commission noted China’s continued leadership of global 5G standards development in urging further action.
Cybersecurity
Why Certain Cybersecurity Provisions Made it into the NDAA and Others Didn’t
An effort to establish a public-private collaboration environment was cut from the final bill but a controversial insurance provision was retained.
Cybersecurity
With NDAA Exclusion, Proponents of FedRAMP Modification Are Down But Not Out
One supporter notes Congress is not the only path to success and is also counting on an incoming Biden administration to reshape the program.
Cybersecurity