Cybersecurity
Biden adds cyber, data, supply chain risks to CFIUS reviews
The Committee on Foreign Investment in the United States will be required to consider five new sets of national security concerns – including cybersecurity – when reviewing foreign investments in the U.S. as part of a new executive order.
Cybersecurity
Social Media’s National Security Implications Draw Lawmaker Scrutiny
Senate Homeland Security Committee members grilled social media executives about their content moderation practices and ties to foreign adversaries.
Cybersecurity
Industry cautions on software security regs in the defense bill
Trade groups want Congress to remove a provision in the House-passed defense policy bill mandating software bills of materials in some federal acquisition.
Breaking News
Cybersecurity
OMB: New Acquisition Rule Coming for Vendors to Vouch for Their Software Security
Agencies are also allowed to accept to-do lists from vendors who need to keep working up to a point where they can self-attest their compliance with NIST guidance.
Cybersecurity
Whistleblower Explains How Twitter Easily Skirted FTC’s Data Security Enforcement
The former public official—and legendary hacker’s—decision to expose what he described as a disastrous security environment at the company has prompted an unlikely alliance in Congress.
Cybersecurity
Cyber criminals increasingly relying on ransomware-as-a-service, report says
A new report reveals threat actors are using the same ransomware as in previous years – but relying on new malware-free intrusion methods and ransomware-as-a-service offerings to evade popular mitigation techniques.
Cybersecurity
A Cyber Workforce Strategy is Coming From the White House, Along with an Implementation Body to Make Sure it Works
The Office of the National Cyber Director has a workforce plan in development that looks to address public sector and private sector gaps in the cybersecurity profession.
Cybersecurity
CISA Requests Input on Terms Already Defined by Incident Reporting Law
The agency is embarking on a rulemaking process to implement the law, which requires those who make ransomware payments to report them to the government.
Cybersecurity
Maritime cybersecurity is front and center in Coast Guard reauthorization bill
A new Coast Guard reauthorization bill would provide some of the first cybersecurity protections and data management requirements for the U.S. Marine Transportation System in federal law.
Cybersecurity
Sharing secrets has been ‘effective’ against Russia, but the tactic has limits, CIA chief says
It’s just one of the new areas for a spy agency grappling with tech-driven changes.
Cybersecurity
U.S. Sanctions Iran—Under New Treasury Rules—for Attack on Albania
The new rules elaborate on what kinds of cyber activities warrant sanctions designation.
Cybersecurity
How Simple Claims of Election Interference Can be Enough to Prompt Real-World Threats
Federal officials remain on guard against foreign meddling in U.S. elections, as CISA and other agencies work to strengthen partnerships and intelligence sharing efforts with state and local election administrators.
Cybersecurity
CISA seeks public input on cybersecurity incident reporting rules
The nation’s cyber defense agency will embark on a cross-country listening tour to better understand what key stakeholders are hoping to see in new mandatory cyber incident reporting requirements featured in the recently-passed Cyber Incident Reporting for Critical Infrastructure Act of 2022.
Cybersecurity
High-Tech Financial Crimes Warrant Coordinated Digital Identity Efforts, FinCEN Warns
Leaders at the Financial Crimes Enforcement Network noted that stronger authentication measures are critical and spurred by emerging technologies.
Cybersecurity
Commerce revises export rules to boost U.S. standards development on critical tech
The original rule—which banned certain entities from receiving U.S. exports—endangered U.S. participation in international standards bodies where such entities are present, opponents said.
Cybersecurity
How NSA plans to shield high-impact systems against quantum threats
The National Security Agency started the clock on a long-planned transition to quantum-resistant algorithms in key national security systems.
Cybersecurity
Traffic Safety Agency Issues Final Guidelines for Vehicle Cybersecurity
The National Highway Traffic Safety Administration will announce its final cybersecurity guidelines draft Friday as modern vehicles become more technologically-integrated.
Cybersecurity
NSA Releases Post-Quantum Algorithms, Aims for Full Implementation by 2035
The National Security Agency worked in conjunction with NIST to prepare stakeholders for upcoming quantum cryptographic requirements.
Cybersecurity
Iranian hacker group posed as journalists to hunt dissidents
Group spent weeks trying to fool specific targets with intricate appeals—including U.S campaign staff.
Cybersecurity
CISA teases strategy to protect critical infrastructure
The Cybersecurity and Infrastructure Security Agency will soon release a sweeping plan to bolster cybersecurity protections for the nation's critical infrastructure industries.
Almost There!
Help us tailor content specifically for you: