CISA

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released a new cybersecurity advisory on September 22 to help owners and operators of critical infrastructure better protect operational technology (OT) and industrial control systems (ICS) assets from the increasing probability of cyberattacks.

[…]

Sen. Gary Peters, D-Mich., chairman of the Homeland Security and Governmental Affairs Committee, and Ranking Member Rob Portman, R-Ohio, introduced bipartisan legislation on Sept. 22 that aims to protect open-source software in response to issues raised by the Log4j vulnerability that emerged in December 2021.

[…]

cyber threat
FCC
cybersecurity

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have published a report that details some of the security concerns of Open Radio Access Network (Open RAN), as well as some of the ways to mitigate such concerns.

[…]

Cybersecurity
TMF

Federal Chief Information Officer Clare Martorana told House lawmakers today that she envisions promising payoffs over the next year from Technology Modernization Fund (TMF) investments spurred by Congress’s $1 billion cash infusion into the fund last year. 

[…]

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) is working closely with industry and the National Institute of Standards and Technology (NIST) to finalize its cyber performance goals, an agency official told lawmakers on September 15.

[…]

CISA

A Federal advisory committee this week approved a set of recommendations to help the Cybersecurity and Infrastructure Security Agency (CISA) protect critical infrastructure, even as the panel criticized some of the government’s current efforts to do so as unfocused and lacking clear national goals.

[…]

cybersecurity

The Office of Management and Budget (OMB) today issued marching orders to Federal agencies to take action to comply with National Institute of Standards and Technology (NIST) guidance for the use of secure supply chain software, as ordered by President Biden’s cybersecurity executive order issued in May 2021.

[…]

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) has issued its strategic plan for 2023 to 2025, setting forth four main goals of cyber defense, risk reduction and resilience, operational collaboration, and agency unification.

[…]

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) published a new request for information (RFI) today looking for feedback on how to best implement cyber incident reporting requirements for critical infrastructure owners and operators.

[…]

Ann Dunkin

Having a strong “collective defense” – whether that’s a public-private partnership or an international alliance – is critical to defending against cyber adversaries and keeping all entities safe, according to Ann Dunkin, chief information officer (CIO) at the Department of Energy.

[…]

Ukrainian government officials

Russia’s war on Ukraine has not singularly been a terrestrial battle. The war has also involved large-scale cyber operations – the first of its kind. However, Russia has been unable to achieve any prominent advantage in its cyber warfare efforts after its first attack. Ukrainian digital officials attribute this to their ‘secret ingredient’ – the Ukrainian IT Army.

[…]

US tech

Work by the Biden administration’s Office of the National Cyber Director (ONCD) on a national cybersecurity strategy is “well underway,” said the Government Accountability Office (GAO) in a report issued this week that features a timeline of the ONCD’s activities since mid-2021.

[…]

cybersecurity
DoD Pentagon Military

While the Department of Defense’s (DoD) new Cybersecurity Maturity Model Certification (CMMC) program seeks to significantly improve the way its contractors store and protect sensitive data, it cannot direct industry on what actions they need to take to be CMMC compliant, said the DoD CMMC lead.

[…]

Jen Easterly

The top Federal intelligence community and cybersecurity agencies this week issued a new software supply chain developers guide, and said they “strongly encourage” government agencies and software providers alike to follow the guidelines in order to improve security of the software supply chain.

[…]

While the term “cybersecurity is a team sport” has long been used to reiterate the importance of collaboration within and between agencies on matters of network protection, a senior California state official is pointing to how Federal, state, and academic entities in California are putting this mantra into action.

[…]

FBI

The U.S. Department of State (DoS) on August 29 imposed administrative debarment under the International Traffic and Arms Regulations (ITAR) upon three former U.S. private sector cybersecurity employees, according to a Federal Register notice.

[…]

DHS

The Department of Homeland Security (DHS) appears to be nothing solid progress against a list of ten recommendations from the agency’s inspector general (IG) to make improvements to internal cybersecurity policies and employee training practices, according to an August 22 IGr eport that covers audit results reaching as far back as fiscal year 2019.

[…]

Cybersecurity
1 2 3 95

Categories