Cybersecurity
What the PATCH Act doesn't do
Proponents of the current Vulnerabilities Equities Process say the proposed PATCH Act will likely improve the process, but it is just one piece of a larger cybersecurity puzzle.
Cybersecurity
Senate bill codifies vulnerabilities board
In the wake of the WannaCry ransomware epidemic, two senators are teaming up on a bill to create a legal framework for the disclosure of IT vulnerabilities discovered by U.S. intelligence agencies.
Cybersecurity
ShadowBrokers threaten to release more NSA tools
The cryptic ShadowBrokers are threatening to release more stolen NSA hacking tools through a new subscription service unless someone buys all the data from them.
Cybersecurity
Why disclosure rules didn't prevent the WannaCry attack
The WannaCry ransomware attack that crippled computers across the globe exploited a vulnerability that Microsoft had patched well in advance, but countless users failed to update their systems in time.
Cybersecurity
NSA exploit behind global ransomware attack
An exploit based on hacking tools stolen from the National Security Agency is behind a global ransomware attack affecting tens of thousands of computers.
Cybersecurity
Rogers: 'cyber war' is here to stay
The head of U.S. Cyber Command told senators that the Trump administration is looking to speed up the tempo of cyber operations.
Digital Government
NSA halts Section 702 'upstream' collection
The NSA says it is halting "upstream" collection of email traffic that mentions targets of foreign surveillance after an internal review of "inadvertent compliance incidents" involving information collected on U.S. persons.
Cybersecurity
Microsoft says it's all patched up
The latest Shadow Brokers release of alleged NSA hacking tools included a trove of Microsoft exploits, but the software giant says it has now patched all of the vulnerabilities in the leaked code.
Cybersecurity
Shadow Brokers leak trove of NSA hacking tools
The mysterious Shadow Brokers group has have released a trove of alleged NSA hacking tools including Windows zero-day exploits and tools designed to hack into the global SWIFT banking system.
Cybersecurity
Former intel chiefs fear future election hacks
Former top CIA and NSA officials say Russia's interference in the 2016 presidential election marks the dawn of a new era for information warfare directed against U.S. interests.
Cybersecurity
Student cyber teams do battle
Student cyber teams from the military academies are doing battle with an NSA-led red cell trying to disable their networks in the NSA's annual Cyber Defense Exercise.
Cybersecurity
Agencies need to talk IT, intel for supply chain
As supply chain management has become a key insider threat, agencies need to reach out to industry for help, said experts.
Cybersecurity
Lawmakers seek intel on surveillance of Americans
Lawmakers are demanding that the director of national intelligence release an estimate of the number of Americans who have been incidentally tracked during foreign surveillance under FISA Section 702.
Cybersecurity
General: Cyber Command needs new platform before NSA split
U.S. Cyber Command should be elevated to a full combatant command as soon as possible, the head of Strategic Command told Congress, but it cannot be separated from the NSA until it has its own cyber platform.
Cybersecurity
Comey confirms FBI is investigating Trump-Russia links
FBI director James Comey also told the House intel panel there is no evidence to support President Trump's wiretapping tweets, and the FBI is investigating whether there was coordination between Trump campaign officials and associates and Russia.
Cybersecurity
NSA vet Rob Joyce to lead cyber at White House
The Trump administration has tapped Rob Joyce, formerly the top hacker at NSA, to serve as White House cybersecurity advisor, the position previously held by Michael Daniel.
Cybersecurity
Should the U.S. stockpile zero days?
Zero-day vulnerabilities live on average for 6.9 years and have a low rate of discovery by other entities, which could argue in favor of stockpiling them, according to a comprehensive study by the RAND Corporation.
Cybersecurity
Vault 7 leak highlights insider threat
The WikiLeaks release of alleged CIA hacking program data is the latest example of what one former intelligence official says is the greatest cybersecurity challenge: the insider threat.
Cybersecurity
McCain continues push for cyber policy
Arizona senator says the U.S. still lacks a clear policy for deterring and defending against cyberattacks and vows to pressure the Trump administration to develop a comprehensive cyber strategy.
Cybersecurity
Rogers: Why data is critical infrastructure
The head of the NSA says that in the wake of Russia's hacking of the Democratic National Committee, the U.S. has to rethink what critical infrastructure means in a digital age.
Almost There!
Help us tailor content specifically for you: