Improving the cybersecurity of the water critical infrastructure sector, K-12 schools, and healthcare sector are among the top priorities for the Cybersecurity and Infrastructure Security Agency (CISA), agency Director Jen Easterly said today during Mandiant’s mWISE conference in Washington.
After more than eight years of trying, Russia has yet to realize its strategic cyber war-fighting goals in Ukraine, a top Ukrainian government technology official said on Oct. 19 at Mandiant’s Worldwide Information Security Exchange event in Washington.
National Cyber Director (NCD) Chris Inglis today previewed some themes from the national cybersecurity strategy that he’s working on – and said the long-awaited strategy should be publishing within the next couple of months.
Rep. Ritchie Torres, D-N.Y., asked Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly in an Oct. 14 letter for a rundown on how CISA is carrying out its outsized role as risk manager for about half of the U.S. critical infrastructure sectors designated by the Department of Homeland Security (DHS).
Reps. James Comer, R-Ky., who is ranking member of the House Oversight and Reform Committee, and committee member Glenn Grothman, R-Wis., are raising concerns over reported failures to remove equipment made by China-based Huawei from United States-based cellular communications networks despite the threat that Huawei gear poses to U.S. national security.
The White House is targeting the communications, water, and healthcare sectors for further regulatory attention aimed at improving cybersecurity in those critical infrastructure sectors, according to Anne Neuberger, Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technology.
The Federal Cyber Workforce Management and Coordinating Working Group has released a new report that lays out a multi-year strategy and implementation plan to address the shortfall of cybersecurity employees in the Federal government.
The Cybersecurity and Infrastructure Security Agency (CISA) is chalking up two significant milestone victories in its ongoing campaign to help Federal agencies put into action recent cybersecurity improvement mandates.
The Treasury Department’s Federal Insurance Office (FIO) is looking for feedback through a request for information (RFI) on whether or not the Federal government should offer insurance for “catastrophic” cyber incidents.
The Department of Homeland Security’s (DHS) Customs and Border Protection (CBP) component is focusing its IT modernization efforts on improving cybersecurity and customer experience, the agency’s top tech official said this week.
The continuing development of digital identity concepts has the potential to help organizations improve cybersecurity and mitigate a host of security risks, officials from the Federal government and Capitol Hill said during an October 3 event hosted by the Congressional Internet Caucus Academy.
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) released an advisory this week detailing how multiple nation-state hacking groups potentially targeted a Defense Industrial Base (DIB) sector organization’s enterprise network as part of a cyber espionage campaign.
Federal officials urged state and local government and education leaders this week to focus on some of the Federal government’s top existing resources in the fight against ransomware attacks – including one principle that’s easy to say but harder to do – don’t meet ransom demands.
A new report from the Government Accountability Office (GAO) found that Federal agencies are successfully helping state, local, tribal, and territorial (SLTT) governments prevent and respond to ransomware attacks; however, there is still room to improve collaboration. The GAO offered three recommendations for Federal agencies to improve collaboration.
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD) that sets baseline requirements for Federal civilian agencies to identify assets and vulnerabilities on their networks, and to provide data to CISA on those assets and on vulnerability detection.
President Biden has declared October 2022 as Cybersecurity Awareness Month – making it the 19th consecutive year of that designation.
The Cybersecurity and Infrastructure Security Agency (CISA) announced this week that its Protective Domain Name System (DNS) – the agency’s latest shared service offering – is available to all Federal civilian agencies to enhance their cyber defenses.
The Senate Homeland Security and Governmental Affairs Committee on September 28 approved by voice vote the Securing Open Source Software Act, which aims to put more Federal government muscle behind protecting open source software following the emergence of the Log4J vulnerability late last year.
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released a new cybersecurity advisory on September 22 to help owners and operators of critical infrastructure better protect operational technology (OT) and industrial control systems (ICS) assets from the increasing probability of cyberattacks.
Sen. Gary Peters, D-Mich., chairman of the Homeland Security and Governmental Affairs Committee, and Ranking Member Rob Portman, R-Ohio, introduced bipartisan legislation on Sept. 22 that aims to protect open-source software in response to issues raised by the Log4j vulnerability that emerged in December 2021.
The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory on Sept. 21 that revealed Iranian hackers had access to the Albanian government’s network about 14 months before launching the destructive July cyberattack.
The Office of the National Cyber Director (ONCD) is developing Federal interagency processes to create transparent and coherent cyber action plans that align with the current activity underway in the cyber landscape, an agency official said.
Members of Congress voiced their concerns on the need for more cybersecurity to protect the water infrastructure of the United States at a Homeland Security Committee hearing on Sept. 21.
The Federal Communications Commission’s (FCC) Public Safety and Homeland Security Bureau has banned two China-associated telecommunication organizations from providing their services in the United States.
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have published a report that details some of the security concerns of Open Radio Access Network (Open RAN), as well as some of the ways to mitigate such concerns.
The Department of Homeland Security (DHS) has announced a first-of-its-kind cybersecurity grant program specifically to support state and local governments (SLGs) across the country.
Federal Chief Information Officer Clare Martorana told House lawmakers today that she envisions promising payoffs over the next year from Technology Modernization Fund (TMF) investments spurred by Congress’s $1 billion cash infusion into the fund last year.
The Cybersecurity and Infrastructure Security Agency (CISA) is working closely with industry and the National Institute of Standards and Technology (NIST) to finalize its cyber performance goals, an agency official told lawmakers on September 15.