Cybersecurity
Hackers nabbed emails between congressional staff and Library of Congress
Affected staff were notified Friday afternoon, according to an internal email. Capitol Hill communications with the Congressional Research Service frequently involve confidential legislative drafts or policies still in the brainstorming stage.
Cybersecurity
US still backs UN cyber pact, but final approval awaits human rights safeguards
Some fear the convention would help legitimize authoritarian nations’ surveillance policies. The U.S. won’t formally ratify it until it sees human rights assurances.
Exclusive
Cybersecurity
DHS issues internal comms guidance amid telecom breach investigation
The DHS Cyber Safety Review Board is already slated to investigate the hacking collective, dubbed Salt Typhoon, and its intrusion into telecommunications firms and wiretap infrastructure.
Cybersecurity
Intelligence community briefed Congress on Chinese telecom intrusions
It’s believed the hackers, dubbed Salt Typhoon, accessed call records on numerous Americans, including officials and staff affiliated with President-elect Trump.
Cybersecurity
DHS cyber review board to investigate Chinese hack of US telecoms as victim net widens
U.S. government officials and staff on both major presidential campaigns were targeted. One former intelligence official called the breaches “really concerning.”
Cybersecurity
DOJ, Microsoft disrupt Russian hackers targeting civil society orgs
The group, likely linked to Russia’s Federal Security Service, has focused on stealing credentials from NGOs and think tanks around the world.
Cybersecurity
Russia-backed disinfo groups target Harris-Walz campaign, Microsoft says
A recent video that fabricated false claims of Harris paralyzing a girl in a 2011 car accident was produced and propagated by one of the collectives.
Cybersecurity
Compromised DNC credentials found on Telegram bot, cyber firm says
Security researchers with ZeroFox identified stolen login information from Democratic-aligned accounts ahead of the party’s presidential nominating convention, but noted that some records “were previously observed in private threat actor-operated repositories.”
Cybersecurity
DARPA edges closer to using AI to expose cyber vulnerabilities
Next year, seven teams will compete to polish off a best-case model that meshes AI and cybersecurity to detect and fix open-source vulnerabilities in critical infrastructure.
Cybersecurity
How the White House cyber czar is working to breathe new life into America’s cybersecurity workforce
The national cyber director wants to prepare the next generation of cyber warriors. It starts with touring schools.
Cybersecurity
Former NSA chief wants academia to play larger role in national security
Paul Nakasone is pushing for new initiatives to bolster national security research and workforce recruitment. It begins with a new institute at Vanderbilt University next month.
Cybersecurity
Trump campaign allegedly hacked, blames Iran for stealing internal communications
Iranian hacking activities are aligning more with legacy Russian cyber operations, a former top CISA official said.
Cybersecurity
Iran is accelerating US election influence operations, Microsoft research says
One Iran-linked disinformation collective staged covert news websites that focused on politically divisive topics. Another group breached a low-level account in a county-level swing state.
Cybersecurity
Top US cyber agency hasn’t seen infamous Chinese hackers breach election infrastructure
A pervasive hacking collective being tracked by U.S. intelligence agencies hasn’t been seen breaking into any election infrastructure, but visibility into the group’s activities still isn’t clear, according to CISA Director Jen Easterly.
Cybersecurity
Cyberattacks still ravage schools, defying White House efforts launched last year
Thousands of school districts have tapped into resources committed by the private sector to shore up their cyberdefenses.
Cybersecurity
US accuses Russian national of helping deploy malware on Ukrainian government computers
The alleged hacker used U.S. computer infrastructure to distribute the infamous “WhisperGate” malware into Ukrainian systems.
Cybersecurity
Decade-old cyber advice from GAO remains unimplemented, watchdog says
Reliance on legacy IT systems creates challenges for agencies looking to make use of the suggestions.
Artificial Intelligence
Feds beware: New studies demonstrate key AI shortcomings
Recent studies have started to show that there are serious downsides when it comes to such programs’ ability to produce secure code.
Cybersecurity
Space assets are in foreign adversaries' cyber crosshairs, DOD official says
The easiest targets are ground assets like operation centers and launch facilities, said Mieke Eoyang.
Cybersecurity