People
Senate confirms Kash Patel to lead FBI
Patel is now poised to lead an agency he has long criticized of being politically biased against Donald Trump
Cybersecurity
Salt Typhoon hackers exploited stolen credentials and a 7-year-old software flaw in Cisco systems
The Chinese hacking collective has widely leveraged vulnerabilities in communications infrastructure to breach dozens of telecom providers in the U.S. and overseas.
Cybersecurity
DOGE employee Edward Coristine lands at CISA with DHS email
A handle dubbed “Rivage” was reportedly tied to Coristine, and used to discuss and solicit hacking activities with a cybercrime syndicate known as The Com.
People
Trump to nominate John Eisenberg to head Justice’s national security division
During his time as a legal advisor in the first Trump administration, Eisenberg reportedly ordered a 2019 call with the Ukrainian president to be secured on a classified server, turning it into the central evidence in Trump’s first impeachment inquiry.
Defense
Katie Arrington announces she is DOD’s new CISO
Arrington, who was once accused of disclosing classified data, was a major proponent of the Cybersecurity Maturity Model Certification program used for DOD contractors.
People
Federal workers decry recent firings in Presidents’ Day protest
“All I ask is that [the White House] follow f****** federal employment laws,” said one Consumer Financial Protection Bureau employee.
Digital Government
168 employees fired at National Science Foundation
“Panch has been conveniently absent throughout this whole time,” said an internal email an NSF worker sent to fellow colleagues, referring to Sethuraman Panchanathan, NSF’s director.
Cybersecurity
Lawmaker looks to strengthen security of U.S. communications following UK’s Apple backdoor order
Sen. Ron Wyden, D-Ore., released a discussion draft of a measure to reform the CLOUD Act after the UK ordered Apple to build a backdoor into encrypted iCloud backups.
Digital Government
GSA tech modernization office pauses government-wide cloud collaboration groups
The communities of practice are designed to help feds learn more about technology and cybersecurity topics involving the cloud computing space. At least 100 GSA employees have been let go in recent days.
Exclusive
People
OPM fires its own probationary-period staff
Employees’ physical and IT system access was deactivated at 3 p.m. ET on Thursday. On-site staff were also asked to quickly exit the Office of Personnel Management’s premises.
Cybersecurity
Lawmakers ask DNI to reassess UK cyber, intel ties over Apple backdoor mandate
The court order issued by the United Kingdom centers on the UK’s 2016 Investigatory Powers Act, which was reportedly invoked to demand Apple provide a backdoor into users’ encrypted iCloud backups.
Cybersecurity
FBI notified over 4,300 victims of ‘pig butchering’ crypto scams in past year
After victims are tricked into buying crypto, they are shown fake online accounts with fictitious returns while the stolen funds are moved offshore, an FBI official said.
Cybersecurity
Salt Typhoon hackers possibly targeted telecom research at US universities
Recorded Future’s latest findings shed light on how widespread the Salt Typhoon campaign has become since it was uncovered last year.
People
CISA staff focused on disinformation and influence operations put on leave
DHS Secretary Kristi Noem has committed to rescoping the Cybersecurity and Infrastructure Security Agency so that it pivots away from disinformation matters.
People
Senate confirms Tulsi Gabbard as Trump’s intelligence chief
As Director of National Intelligence, Gabbard is now poised to oversee the nation’s 18 spy agencies, including the CIA, NSA and related organizations in the Pentagon.
Cybersecurity
Trump to nominate former RNC official to be national cyber director
It’s not clear how Sean Cairncross would address ongoing ONCD efforts, as the Trump administration has sought to refocus certain cyber priorities in the federal government.
Cybersecurity
Coast Guard workforce lacks maritime cyber expertise, watchdog says
The maritime service says it will develop “competency requirements” for relevant personnel by the end of December. It’s also planning new procedures to document maritime cyber incidents.
Cybersecurity
AI-cybersecurity firm Andesite secures added $23M in funding
The company, which is led by former CIA officials and other ex-national intelligence chiefs, also unveiled a new security operations center product, the firm first told Nextgov/FCW.
People
DOGE deputies land at State Department tech bureau with USAID emails
One of the people, 19-year-old Edward Coristine, reportedly had extensive interactions with cybercrime groups.
Cybersecurity