Cybersecurity
White House urges software developers to use memory-safe programming languages
A number of headline-making cyberattacks started with memory safety flaws, a White House cyber official said.
Cybersecurity
New cloud security task force presses for stakeholder accountability
A team convened to focus on cloud security is challenging industry, Congress and the executive branch to address longstanding concerns.
Cybersecurity
FCC to vote on authorizing cyber labeling rules next month
The move is a major piece of a Biden administration push to bring more cyber transparency to consumer products.
Cybersecurity
Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says
The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.
Cybersecurity
Biden to sign executive order boosting cybersecurity of ports, maritime vessels
The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.
Cybersecurity
US, international partners disrupt LockBit ransomware operations
Officials have also developed a tool for victims targeted by LockBit to potentially decrypt their compromised data.
Cybersecurity
The imitation game
The emergence of low-cost deepfakes has led to a high-stakes race to develop technologies that can detect and label synthetic media.
Cybersecurity
FBI disrupts botnet controlled by Russian security services
The news comes just weeks after the U.S. announced it went on the offensive against a China-linked botnet operation.
Cybersecurity
Microsoft and OpenAI swept AI chat logs to find hackers. Expect that to become the norm.
Big tech firms and their affiliated cybersecurity or AI offerings will likely roll out similar security research, though some say it raises privacy concerns.
Cybersecurity
The Pentagon is notifying individuals affected by 2023 email data breach
The exposed contents were not secured with a password at the time of their compromise.
Cybersecurity
Atlassian vulnerability linked to GAO data breach, CGI Federal says
CISA issued an alert on the vulnerability impacting the Atlassian tool in October of last year.
Cybersecurity
Some 6,600 current, former employees impacted in January GAO data breach
The breach, which also included some companies doing business with GAO, may further galvanize concerns about the federal government’s ability to defend itself from cyber intrusions.
Cybersecurity
IARPA makes awards in 4-year effort studying hacker psychology
The program greenlit research contracts for technologies that would use psychology to thwart hackers.
Cybersecurity
DHS inventory of AI systems for cybersecurity is ‘not accurate’, oversight report says
The report calls on the DHS to better verify its AI inventory submissions and for CISA to develop AI cybersecurity progress metrics.
Cybersecurity
FCC gives telecom companies 7 days to alert authorities of discovered data breaches
The FCC has been taking sweeping steps to harden data breach rules to protect telecom customers’ data.
Cybersecurity
Senators want NIST to create cyber guidelines for agencies’ use of civilian drones
The new bipartisan bill would also require that every agency using civilian drones “implement policies and principles based on the NIST guidelines.”
Cybersecurity
AI escalates election cyber threats with the US as prime target, reports find
Election workers face increased concerns due to the potential for AI systems to help enable disinformation. Outside cyber threats aren’t helping, either.
Cybersecurity
White House to release memory-safe code guidance in coming weeks
The U.S. and other intelligence partners have previously advised developers to adopt memory-safe programming languages.
Cybersecurity
Chinese hackers embedded in U.S. networks for years, pre-positioning for future attacks, IC warns
The intelligence community used a contested surveillance tool to detect the hacking attempts.
Cybersecurity