Cybersecurity
Why the network compass is obsolete
Old labels for network traffic are out of date with government users connecting from devices outside traditional perimeters, but TIC 3.0 offers a new map.
Cybersecurity
Senate Dems demand answers on DOJ's hack exposure
A group of Democratic senators want detailed answers from the Justice Department and the judiciary branch by the end of the month about the impact of the SolarWinds breach.
Cybersecurity
FireEye not ready to ascribe SolarWinds hack to Russia
The cybersecurity firm credited with discovering the compromise of SolarWinds Orion isn't saying that Russia didn't do it, but that more evidence is needed to make a definitive attribution.
Cybersecurity
Watchdog: GSA needs to account for contractor PIV cards
The General Services Administration still needs to do a better job tracking and recovering access cards from its contractors, according to a report for the agency's watchdog.
Cybersecurity
Civilian-side CMMC
The General Services Administration will add more supply chain and cybersecurity protection language, including DOD's CMMC requirements for vendors, to its new contracts as risks grow, according to one of the agency's top acquisition managers.
Cybersecurity
CMMC clears key regulatory hurdle
The White House approved an interim rule to mandate defense contractors prove they adhere to existing cybersecurity standards from the National Institute of Standards and Technology.
Cybersecurity
PIV security frays under the crush of telework
Adversaries are adapting to the shifting identity authentication gaps on federal and commercial networks created by the remote work environment, according to federal security experts.
Cybersecurity
CISA orders agencies to patch dire Window flaw
The Cybersecurity and Infrastructure Security Agency alerted federal agencies of an authentication flaw in Microsoft server software in need of an immediate fix.
Cybersecurity
House bill aims to strengthen digital ID
Legislation proposed in the House would tap the National Institute of Standards and Technology and the Department of Homeland Security in new effort to help set national digital identifier capabilities.
Cybersecurity
IRS gets high marks for fraud and identity theft initiatives
A layered approach combining software, public-private partnerships and innovative pilot programs have saved billions of dollars from ending up in the hands of criminals and fraudsters, according to a new audit.
Cybersecurity
NSA to release advisory on VPN security amid telework boom
Organizations that spent the past decade hardening their corporate networks must now contend with their workforce signing in from insecure, unmanaged personal devices at home.
Cybersecurity
Survey hints at ways to solve the cyber talent gap
A new survey of nearly 3,500 security researchers who use Bugcrowd’s platform offers a glimpse into the backgrounds and motivations of a highly coveted pool of emerging cyber talent that both government and industry are desperate to recruit.
Cybersecurity
NSA launches pilot program to secure defense contractors
The National Security Agency is testing a secure domain name system model to better secure companies in the defense industrial base, which houses much of the nation's weapons technology.
Cybersecurity
The federal government's identity crisis
For decades, PIV and CAC cards have been the primary tools for agencies and contractors to verify the identity of employees and contractors. The COVID-19 outbreak could change that.
Digital Government
Despite public concerns, facial recognition gets traction in Congress
While some legislators questioned the accuracy and bias found in some government systems, both Republicans and Democrats endorsed the broad thrust and goals of DHS' screening programs.
Cybersecurity
IC merging suitability and clearance reviews
The Office of the Director of National Intelligence says the move will strengthen human resources officers' role in hiring for nation's most sensitive positions.
Acquisition
TTS seeks ID management partner
The leader of GSA's Technology Transformation Service wants agency and industry partners to help it develop a common framework for identity management that could eventually become a federal shared service.
Acquisition
DOD wants prime contractors to be 'help desk' for new cybersecurity model
The Defense Department is pushing forward with its unified cybersecurity standard for contractors and wants large companies and industry associations to show startups and smaller firms the way.
Cybersecurity
CBP walks back facial recognition for citizens
The reversal took place after "consultation with Congress and privacy experts," a Customs and Border Protection spokesman says.
Cybersecurity
DISA inches closer to CAC alternative
The Defense Information Systems Agency is making strides toward employing a continuous verification capability.
Almost There!
Help us tailor content specifically for you: