Cybersecurity
CISA's proposed framework for cyber incident reporting rules includes subpoena power
The rules also require that covered entities that pay ransomware hackers to regain control of their systems and data must report such payments to CISA.
Cybersecurity
Congress expected to approve government spending bill that cuts CISA funding
The agency has previously stressed that funding will be needed to combat cyber threats and coordinate with partners as the November presidential election approaches.
Cybersecurity
CISA rolls out secure software attestation form
A repository for software attestation submissions will be available later in March.
Cybersecurity
CISA targeted through Ivanti VPN vulnerabilities, reports say
The DHS agency has been issuing warnings about Ivanti products since at least 2020.
Cybersecurity
CISA is coordinating with election security partners for Super Tuesday voting
The principal agency responsible for election security is asking public and private sector election administrators to share potential threat information as voters go to the polls.
Cybersecurity
Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says
The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.
Cybersecurity
Biden to sign executive order boosting cybersecurity of ports, maritime vessels
The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.
Cybersecurity
DHS inventory of AI systems for cybersecurity is ‘not accurate’, oversight report says
The report calls on the DHS to better verify its AI inventory submissions and for CISA to develop AI cybersecurity progress metrics.
Cybersecurity
Chinese hackers embedded in U.S. networks for years, pre-positioning for future attacks, IC warns
The intelligence community used a contested surveillance tool to detect the hacking attempts.
Cybersecurity
CISA unveils election resource page for officials and workers
Election officials have several fears on their mind this year, including possible foreign interference in elections and physical threats linked to conspiracy theories.
Cybersecurity
Contracts featuring automation, built-in security can boost agencies’ cyber defenses, VA officials say
As the federal government looks to harden its cyber resilience, officials from the Department of Veterans Affairs said agencies should work to modernize outdated technologies and ensure that vendor contracts include more rigorous security standards.
Cybersecurity
Agencies must disconnect all exposed Ivanti products by Friday, CISA says
The directive follows a related warning issued last month about cybersecurity flaws in Ivanti systems.
Cybersecurity
Cyber, intelligence chiefs urge U.S. to strengthen against Chinese cyber threats
In a collective call to action, officials warned of invasive actions that China-backed hackers can take against U.S. infrastructure and elections.
Cybersecurity
Top cyber, intelligence chiefs to call out China as leading cyber threat
Researchers and officials have previously designated China as a clandestine, preparatory operator in cyberspace, quietly breaching and securing systems to use to their advantage at a later time.
Cybersecurity
NCA celebrates National Data Privacy Week while CISA eyes new cybersecurity guidelines
The week’s themes reflect a new era where everything is interconnected and new threats like artificial intelligence are poised to make a big impact on cybersecurity.
Cybersecurity
Feds to compete for cyber glory at fifth annual President's Cup
CISA officials describe the positive impact the annual cybersecurity game aims to have across the federal workforce.
Cybersecurity
CISA directs agencies to mitigate widespread VPN bugs
Two unpatched flaws in Ivanti's Connect Secure VPN are being exploited by hackers in the wild.
Cybersecurity
CISA, FBI warn on risks of China-made drones
The new guidance is meant to alert critical infrastructure operators to potential security risks, including data exfiltration and cybersecurity risks, posed by unmanned aircraft systems manufactured in China.
Cybersecurity
Watchdog finds ‘sufficient’ cyber threat sharing at agencies, but barriers remain
The Intelligence Community Inspector General’s biennial update on cybersecurity information sharing noted that progress has been made over the past two years, but some agencies reported running up against roadblocks.
Cybersecurity
FDA and CISA need to update cyber agreement for medical devices, watchdog says
The Government Accountability Office said medical devices are not commonly hacked but still called them “a source of cybersecurity concern warranting significant attention.”
Almost There!
Help us tailor content specifically for you: