The Cybersecurity and Infrastructure Security Agency and the FBI have issued a joint alert over the increasing prevalence of a certain ransomware-as-a-service model. The Conti ransomware saw increased use in more than 400 attacks on U.S. and international organizations, including health care and first responder networks, CISA and the FBI said Wednesday. To mitigate the […]
Cybersecurity and Infrastructure Security Agency Director Jen Easterly and National Cyber Director Chris Inglis backed a bill introduced by Sens. Gary Peters and Rob Portman that requires critical infrastructure operators to report internal cyber breaches to CISA within the first 72 hours of detection. Speaking at a Sept. 23 Senate hearing, Easterly described incident reporting […]
The National Institute of Standards and Technology has selected integrated endpoint-to-cloud security company Lookout to be one of the National Cybersecurity Center of Excellence’s partners for the Implementing a Zero Trust Architecture project. An organization using zero trust assumes that no user or endpoint is trustworthy. Zero trust design users also assess their risk posture […]
Datacenter and cloud computing security company Illumino has received a new Small Business Innovation Research contract from the U.S. Air Force Research Laboratory. The contract will cover the second phase of a project that seeks to adopt Illumio Core, a solution designed for vulnerability mapping, automated security policy creation and enforcement. The phase two SBIR […]
Appgate, a provider of secure access solutions, announced plans to make its zero trust network access solution available as a service for government customers. Appgate SDP is an enterprise-grade solution that uses zero trust principles to ensure that users can securely connect to resources they are explicitly authorized to access, Appgate said Tuesday. Barry Field, […]
The U.S. Air Force’s cyber and information warfare command is ready to commit to the zero trust model as part of broader efforts to strengthen cybersecurity. Lt. Gen. Timothy Haugh, commander of the 16th Air Force, told reporters Monday that zero trust has become a “foundational” objective in view of the fact that most weapons […]
LuxSci, a Massachusetts-based secure messaging company, said it will support the federal government’s implementation of zero trust by helping raise the standard for email encryption. Emails can be made more secure when both the sender and the receiver are using the SMTP Mail Transfer Agent Strict Transport Security “add-on” technology, LuxSci said. The company explained […]
The Federal Bureau of Investigation, the U.S. Coast Guard Cyber Command, and the Cybersecurity and Infrastructure Security Agency on Thursday issued a joint advisory warning the public that sophisticated cyber criminals may exploit a vulnerability in ManageEngine ADSelfService Plus to the detriment of its users. Advanced persistent threat actors, through their exploitation of the cloud […]
Rep. Dean Phillips, chairman of the House Small Business Subcommittee on Investigations, Oversight and Regulations, proposed an amendment to the draft fiscal year 2022 National Defense Authorization Act that would provide clarity over the costs needed to comply with the Cybersecurity Maturity Model Certification program. The amendment would require the Department of Defense to provide […]
Tego, an information technology engineering company, announced that it has become a registered provider organization under the Department of Defense’s Cybersecurity Maturity Model Certification program. The DOD established CMMC to raise the bar for cybersecurity among defense contractors and address supply chain management issues. aCMMC includes sets of cybersecurity requirements that contractors must meet before […]
