Cybersecurity
The group that hacked SolarWinds is out with a new campaign, Microsoft says
Microsoft said in a blog post the hackers behind SolarWinds are already advancing their tradecraft, and are impersonating a U.S. government agency as part of a global phishing campaign.
Cybersecurity
After Colonial attack, TSA issues new cyber regs for pipelines
DHS chief Alejandro Mayorkas cited the attack on Colonial Pipeline as the impetus for the new regulations.
Cybersecurity
DHS to issue new pipeline security regulations after Colonial attack
A Department of Homeland Security spokesperson said the new guidance for pipeline security will be issued in the coming days.
Cybersecurity
Connecting and supporting the post-pandemic workforce
After a year of emergency response, IT leaders are planning for a permanently changed operating environment.
Cybersecurity
Industry coalition asks appropriators to boost CISA funding
CISA received $650 million from the American Rescue Plan Act, but the agency's top officials have described that as only a "down payment" to move the government's cybersecurity efforts.
Cybersecurity
House advances cybersecurity bills in wake of pipeline company hack
Following a week filled with a devastating ransomware attack and a massive executive order to strengthen the federal government's networks, a House panel on Tuesday advanced several bills largely aimed at DHS and CISA.
Cybersecurity
Can NTSB-style oversight work for cybersecurity?
President Joe Biden's new cybersecurity executive order calls for a safety review board to examine the attack against SolarWinds as well as other significant cybersecurity incidents moving forward.
Cybersecurity
CISA chief says cyber order is doable but will 'stretch the system'
The executive order, which was published Wednesday night, contains deadlines for CISA, the Department of Homeland Security, the Office of Management and Budget and other agencies to begin reworking the government's cybersecurity with some timelines as short as 30 days from its signing.
Cybersecurity
TSA's role in pipeline security looks like a weak link to some in government and industry
Questions about whether TSA is rightly positioned to oversee cybersecurity for natural gas and oil pipelines are resurfacing in the wake of the ransomware attack on Colonial Pipeline.
Cybersecurity
CISA's Wales backs new response, recovery fund
Brandon Wales, acting director of the Cybersecurity and Infrastructure Security Agency, said the funding would go toward expanding CISA's incident response teams with additional contractors and developing new technologies to be used by those teams.
Cybersecurity
White House, CISA react to pipeline ransomware attack
Senior administration officials say multiple government agencies are working to distribute information to industry about the ransomware attack that led to the shutdown of a key natural gas pipeline for the East Coast.
Cybersecurity
Why zero trust is having a moment
Improved technologies and growing threats have agencies actively pursuing dynamic and context-driven security.
Cybersecurity
DHS kicks off workforce sprint with push to hire 200 cyber pros
DHS Secretary Alejandro Mayorkas characterized the new effort to hire cybersecurity personnel as the largest of its kind in the agency's history.
Cybersecurity
CISA experiments with cloud log aggregation to ID threats
CISA's chief technology officer said the cybersecurity watchdog has pilot projects underway with several departments and agencies to explore whether it can compile cloud logs as a way to increase its visibility into agency networks.
Cybersecurity
New bill would task CISA with infrastructure risk assessments
A new Senate bill would mandate the Department of Homeland Security continually reassess risks to critical infrastructure and that the White House provide a report to lawmakers outlining what legislative steps should be taken to mitigate potential problems.
Cybersecurity
CISA warns on new threat group using VPN flaw
A new report by the government's cybersecurity agency warns about another threat actor using malware initially discovered during the response to the intrusion involving SolarWinds.
Cybersecurity
CISA issues third emergency directive since SolarWinds
The government's cybersecurity watchdog is increasingly issuing emergency instructions to agencies for handling high-risk vulnerabilities, something analysts say reflects both CISA's stature and the environment its working in.
Cybersecurity
CISA confirms U.S. agencies affected by Pulse Connect VPN vulnerabilities
The cybersecurity firm FireEye suspects at least one of the campaigns it reported on operates on behalf of the Chinese government.
Cybersecurity
White House launches cybersecurity push targeting electricity sector
The pilot program to improve the cybersecurity of the nation's electricity infrastructure is part of a broader initiative focused on industrial control systems.
Cybersecurity
White House stands down groups tackling SolarWinds, Microsoft Exchange
The move comes days after the administration sanctioned Russia for its alleged role in the cyberattacks
Almost There!
Help us tailor content specifically for you: