The Department of Energy (DoE) needs to invest in and implement enterprise-wide data analytics capabilities in order to better identify and mitigate risk, according to a new report from the DoE Office of Inspector General (OIG). […]
A pair of bipartisan senators is pushing for the investigation of the Defense Department’s (DoD) “failure to secure its unclassified telephone communications from foreign espionage,” according to a letter sent Wednesday to DoD Inspector General Robert Storch. […]
The General Services Administration’s (GSA) Acquisition Policy Federal Advisory Committee (GAP FAC) held its first meeting today after tapping 14 new members and turning to new areas of focus including artificial intelligence, cloud computing, and cybersecurity. […]
More than 80 percent of the most severe tech-related vulnerabilities to critical infrastructure originate from the same 20 software components, a new report out this week from Fortress Information Security finds. […]
Cybersecurity and Infrastructure Security Agency (CISA) Deputy Director Nitin Natarajan is urging critical infrastructure sectors to “elevate the discussion” of the growing risks of legacy operational technology (OT) systems. […]
The Cybersecurity and Infrastructure Security Agency (CISA) published guidance today that provides best practices to protect against cyberattacks by Salt Typhoon – a People’s Republic of China (PRC)-affiliated threat actor that has compromised networks of major global telecommunications providers. […]
As cyberattacks continue to target hospitals and other healthcare organizations, the Department of Health and Human Services (HHS) is failing to meet some of its bigger-picture cybersecurity goals for the sector, the Government Accountability Office (GAO) said in a Nov. 13 report. […]
Through its notable sophistication, Salt Typhoon has cemented its status as one of the most advanced cyber-espionage groups in history – a new report reveals the tactics behind its success. […]
As the number of successful cyberattacks on healthcare organizations continues to rise, a new report from the Department of Health and Human Services (HHS) Office of Inspector General (OIG) is calling on HHS to better ensure the protection of electronic protected health information (ePHI). […]
A report out this month by the Environmental Protection Agency’s (EPA) Inspector General (IG) finds that drinking water systems serving approximately 26.6 million people have critical or high-risk cybersecurity vulnerabilities. […]
What’s in store for Federal cybersecurity policy when the Trump administration takes charge in January? Illumio’s Gary Barlet told us in an exclusive interview that he is looking for much of the current bedrock of cybersecurity policy to carry forward, but with an accelerated timeline for action and greater accountability for results. […]
A new bipartisan bill from Sens. Bill Cassidy, R-La., Maggie Hassan, D-N.H., John Cornyn, R-Texas, and Mark Warner, D-Va., is aiming to bolster cybersecurity in the healthcare sector and safeguard Americans’ health data. […]
The Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday that it recently conducted a red team assessment (RTA) at the request of an unnamed critical infrastructure organization, with mixed results. […]
As cyber threats continue to grow in complexity and scale, artificial intelligence (AI) is emerging as a critical tool for enhancing security, efficiency, and accuracy across Federal agencies, according to Federal cybersecurity experts. […]
Department of Veterans Affairs (VA) Chief Information Officer (CIO) Kurt DelBene told lawmakers on Wednesday that the agency’s cybersecurity capabilities are suffering from a shortage of skilled IT workers that stems from a slim budget to hire enough of them. […]
Industry experts shed more light on the recent Salt Typhoon hacks during a congressional hearing Tuesday as leaders of the Senate Judiciary Subcommittee on Privacy, Technology, and the Law called on the Federal government to “galvanize action now” against the China-linked hacking group’s recent infiltration of commercial telecommunications infrastructure. […]
Just one day after National Cyber Director (NCD) Harry Coker urged Congress to pass bipartisan legislation that would bolster efforts to harmonize cybersecurity regulations across the Federal government, a companion bill was introduced in the House by Rep. Clay Higgins, R-La. […]
As technology evolves, so too do the methods used by criminals. To keep pace with these increasingly sophisticated threats, law enforcement agencies are turning to artificial intelligence (AI) technologies to bolster their investigative capabilities. […]
Former Acting National Cyber Director (NCD) Kemba Walden said on Thursday that the current sector-by-sector assignment of critical infrastructure areas by U.S. regulators is handicapping the Federal government and hindering nationwide cyber resilience. […]
National Cyber Director (NCD) Harry Coker Wednesday urged Congress to pass bipartisan legislation that would bolster the Biden administration’s efforts to harmonize cybersecurity regulations across the Federal government. […]
A top Biden administration cybersecurity official laid out her wish list today for how the incoming Trump-Vance administration should prioritize cybersecurity challenges and regulations. […]
China’s structured and well-funded ecosystem for cyber dominance poses a growing threat to U.S. cybersecurity, a senior Cybersecurity and Infrastructure Security Agency (CISA) official warned, saying the U.S. must continue to foster public-private partnerships and global alliances to defend against those threats. […]
The Internal Revenue Service (IRS) announced Thursday that it reached a major milestone in fiscal year (FY) 2024 by resolving a longstanding significant deficiency in its information system controls 11 years after it was identified. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has named ECS – an IT systems integrator focused on data and AI, cybersecurity, and enterprise transformation solutions – the prime contractor on a six-year, $528 million task order for CISA’s Continuous Diagnostics and Mitigation (CDM) Program Office. […]
The National Counterintelligence and Security Center (NCSC) within the Office of the Director of National Intelligence released security guidance last week to help protect emerging technology startup companies from threats posed by nation-state actors. […]
A National Institute of Standards and Technology (NIST) advisory board is urging the agency to scale and implement support for its national cyber vulnerability database to protect national security interests. […]
The U.S. Army is launching a pilot program to help small businesses meet the cybersecurity requirements of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program, as the Pentagon moves to integrate these standards into defense contracts. […]
A large-scale spear-phishing campaign led by a foreign adversary is targeting government and IT sector systems, the Cybersecurity and Infrastructure Security Agency (CISA) warned in an Oct. 31 alert. […]
As cybersecurity talent continues to thin relative to demand and artificial intelligence adoption surges, organizations are being left exposed to security risks amid slowing global workforce growth, according to a new report on the cybersecurity workforce released Thursday. […]
The Treasury Department on Monday evening issued its final rule to block U.S. private sector investments in China that involve hot-button technologies including AI, quantum, and semiconductors. […]