The U.S. Department of Commerce is proposing a mandatory security evaluation by a third-party auditor of all connected software applications before they are approved for acquisition by government agencies. The proposal is in line with President Joe Biden’s executive order which further strengthens former President Donald Trump’s directive aimed at limiting the reach of foreign […]
The departments of Homeland Security and Defense are developing a new methodology for assessing the security of 5G technologies. The effort is being led by the DOD’s 5G Initiative program and DHS’ Cybersecurity and Infrastructure Security Agency, which is tasked with leading 5G risk management efforts across the government, Federal News Network reported. Vincent Sritapan, […]
The Department of Defense is looking to incentivize network security improvement efforts among contractors to ensure that their cyber defenses are up to snuff even before the revamped Cybersecurity Maturity Model Certification program takes effect. CMMC 2.0 implementation could take between nine and 24 months in observance of the rulemaking process, according to officials, so until […]
The Department of Homeland Security has improved cybersecurity collaboration and coordination with other relevant government agencies even while it noted that some vulnerabilities still remain, according to a new report by the agency’s Office of Inspector General. In the recent audit, the OIG found that over the past six years, the DHS took part in […]
The Transportation Security Administration is extending compliance deadlines in its proposed security directive for major railroad and rail transit entities after considering industry feedback. The forthcoming rules, scheduled for release in the coming weeks, are targeted at entities that transport the most passengers and cargo through the nation’s most populated metropolitan areas, TSA Administrator David […]
The FBI and the Cybersecurity and Infrastructure Security Agency are urging private- and public-sector organizations to be extra vigilant against cyber threats ahead of the holiday season. The joint advisory is based on observations from previous events and noted that the agencies did not spot a specific threat. They also stated that malicious cyber actors […]
The Cybersecurity and Infrastructure Security Agency should assess the effectiveness of its efforts to protect the communications sector, a government watchdog said in a report. The Government Accountability Office said that the communications sector is facing physical and cyber threats at the local, regional and national levels. CISA is the agency most responsible for ensuring […]
The House of Representatives on Friday approved more than $500 million in cybersecurity funding in its version of President Joe Biden’s roughly $2 trillion Build Back Better package. The measure, which passed by a narrow vote of 220-213, earmarked most of the cyber funds to the Cybersecurity and Infrastructure Security Agency, The Hill reported Friday. The approved […]
The Small Business Administration is creating a trust algorithm that will be part of its zero trust architecture deployment, an official said. Zero trust is a modern cybersecurity model that operates under the assumption that a threat is already inside a network’s security perimeter. SBA is designing a trust algorithm that it can use to […]
Financial regulators have introduced a new rule that requires banks to report major cybersecurity incidents to federal officials within 36 hours. The rule will take effect on May 2022. The Computer-Security Incident Notification for Banking Organizations and Their Bank Service Providers was created by the Office of the Comptroller of the Currency, Board of Governors […]
