Cybersecurity
North Korea Behind Manually Executed Ransomware Attacks, Federal Agencies Say
Officials are connecting the “Maui” ransomware to attacks on the public health sector over the past year.
Cybersecurity
DOD rings in Independence Day with bug bounties
HackerOne is managing a $110,000 bounty program through July 11.
Cybersecurity
TSA Implements 'Surge Team' to Allow Pipeline Industry Flexibility on Security Directives
The new recruits are processing companies’ requests seeking the approval of “alternative measures” to comply with a directive the agency issued in response to the May 2021 ransomware attack on Colonial Pipeline.
Cybersecurity
NIST Identifies 4 Quantum-Resistant Encryption Algorithms
Federal researchers are one step closer to protecting U.S. data from quantum computing decryption capabilities.
Cybersecurity
Vendors prep for new cyber rules of the road
Federal policy is shifting to impose tighter cybersecurity requirements on government contractors and Congress appears poised to impose new standards throughout the private sector.
Cybersecurity
Homeland Security, Israeli Partners Team to Improve Cyber Resilience
The joint initiative will be managed by the Israel-U.S. Binational Industrial Research and Development Foundation.
Cybersecurity
CISA's CIO talks about the cyber agency's growth and expanding mission
In this interview, Robert Costello charts the road ahead for the Cybersecurity and Infrastructure Security Agency in developing its own tech and serving as cybersecurity first responder for the public.
Cybersecurity
China’s Disinformation Warriors May Be Coming for Your Company
A recent attack on a rare-earths processor shows a new facet of information warfare: weaponized NIMBYism.
Cybersecurity
CISA Recommends Immediate Action for Microsoft Exchange Online Users
The recommendation is in line with Executive Order 14028, which requires federal agencies to implement multi factor authentication.
Cybersecurity
Historic NATO Meeting Extends Cybersecurity Collaboration to Asia-Pacific Allies
The security alliance is squaring off against Russia and China by building a coordination capability for rapidly responding to cyber attacks.
Cybersecurity
Federal Government Gets Serious About Post-Quantum Encryption Protection
A Phase III PQE contractor talks about getting federal quantum protection deployed quickly.
Cybersecurity
Congresswoman Promotes Cyber Insurance Amid Shifting Policy Landscape
The jury is still out on how using insurance policies to pay ransoms and re-establish systems after a cyberattack affects critical infrastructure organizations’ individual and collective resilience.
Cybersecurity
Trade groups seek changes to SEC’s breach disclosure plan
Defense contractors may be subject to conflicting cyber rules of the road if a proposed financial reporting rule takes effect without changes, trade associations say.
Cybersecurity
Key State Official Warns of ‘Peril’ as US Pursues Cybersecurity Goals at G7
The State Department would oversee $200 billion in aid and financing the administration wants to invest in developing countries, under a new agreement from world leaders that promises a prioritization of cybersecurity.
Cybersecurity
GAO: HHS Needs Improved Data Breach Reporting
Data breaches have increased each year since 2015.
Cybersecurity
Allied Cybersecurity Agencies Advise Against Disabling Popular Tool for Cyberattackers
The Microsoft program—PowerShell—has granted malicious actors in major hacks remote command and control ability over victims, but, by the same token, it can improve cybersecurity management across an enterprise.
Cybersecurity
House Panel Passes RANSOMWARE Act to Get FTC Reports on Cross-Border Work
The Energy and Commerce subcommittee also forwarded a bipartisan privacy and data security bill to the full committee but—lacking support from Senate leadership—that legislation appears dead in the water.
Cybersecurity
Microsoft: Russia Stepping Up Hacking, Cyber Penetration Efforts on 42 Ukraine Allies
Almost one in three detected Russian attacks are successful, Microsoft said.
Cybersecurity
Big Tech Pushes for Harmonized Global Policy Amid Emerging Regulations from Allies
The Information Technology Industry Council is maintaining its call for a voluntary approach as Canada, the United Kingdom and Europe all signal strict new cybersecurity requirements.
Cybersecurity
GAO: Potential Federal Cyber Insurance Program Should Avoid Moral Hazard
The government watchdog highlighted the need for specific security requirements in recommending other relevant agencies explore the possibility of providing federal assistance to private sector entities following a catastrophic event.
Almost There!
Help us tailor content specifically for you: