Ideas
In a Zero Trust World, Compliance Doesn’t Equal Security
An agency can run a completely compliant network and still be breached by a trusted user’s account being exposed.
Cybersecurity
Former Presidential Adviser Advocates Tougher Software Vendor Standards After Breach
The environment where updates for the company’s software were developed was reportedly protected by a password anyone could guess.
Cybersecurity
The Hack Roundup: CISA Guidance Warns Affected Systems May Need to Be Rebuilt
Here are the news and updates you may have missed.
Ideas
Rethinking Software and Risk to Protect the Public Sector
We should build security into the foundation of programs.
Cybersecurity
Biden Disputes Trump’s Claim that Hack is Under Control
The president-elect called for an official attribution to Russia but said a damage assessment is necessary before discussing the appropriate response.
Cybersecurity
The Hack Roundup: Treasury Briefing Reignites Encryption Debate
Here are the news and updates you may have missed.
Cybersecurity
Massive Hack Roundup: Attorney General Pins Intrusion on Russia
Here are the news and updates you may have missed.
Cybersecurity
Massive Hack Roundup: Microsoft Says Breach 'Not Espionage as Usual'
Here are the news and updates you may have missed.
Ideas
The Invisible Impact of the Pandemic on Data Security: Why 2021 Will Be Different
The tough reality is that attackers usually move faster than we do.
Cybersecurity
Amid Massive Hack, Lawmakers Urge Trump to Sign Defense Bill with New Cybersecurity Legislation
As the government scrambles to understand the widening compromise, legislation to shore up the nation’s cyber defenses sits unsigned on the President’s desk.
Cybersecurity
House Committees Launch Investigation into Alleged Russian Hack of Federal Agencies
President-elect Joe Biden also promised to elevate cybersecurity “as an imperative” across government.
Cybersecurity
CISA: SolarWinds Is Not the Only Way Hackers Got Into Networks
The agency also warned that getting attackers out of networks will be complex—especially because they are monitoring IT and cybersecurity employees’ emails.
Cybersecurity
GAO Issues ‘Wake-Up Call’ Report on Agencies’ Lax Supply Chain Security Management
The bottom line is that none of the 23 agencies audited fully implemented foundational risk management practices.
Cybersecurity
Pentagon Preps for First CMMC Pilots in 2021
The Pentagon’s Cybersecurity Maturity Model Certification program will begin including security requirements in select solicitations starting next year.
Cybersecurity
What We Know About the SolarWinds Breach
The White House invoked Presidential Policy Directive-41 to coordinate a "whole of government" response.
Cybersecurity
Senate Bill Targets Government’s Response to Agency-Involved Cyber Incidents
Agencies would see new reporting requirements to keep Congress and impacted individuals more informed about security breaches.
Ideas
The Pandemic May Be the Catalyst for the Digital Government We All Want
As citizens clamor for more online government services, they’re equally and rightfully clear on the need for strong security.
Cybersecurity
CISA Orders Federal Agencies to Turn Off SolarWinds Products
A critical flaw in software used throughout government was reportedly used to breach a major security company and at least two federal agencies.
Cybersecurity
Reports: Suspected Russian Hackers Breach Commerce, Treasury Departments
U.S. officials are investigating what data may have been stolen and whether the hack is more widespread.
Ideas
Your Robot Vacuum Could Spy on You
Researchers managed to recover speech data with high accuracy.
Almost There!
Help us tailor content specifically for you: