The Department of the Treasury has renewed its cybersecurity cooperation with the National Bank of Ukraine. The U.S. Treasury Department and the Ukrainian central bank recently signed a memorandum of understanding to continue the sharing of information about cybersecurity threats and incidents, cyberthreat actors and best practices. The memorandum also encourages both parties to participate […]
The Department of Homeland Security has posted a request for information to identify qualified sources of cybersecurity governance and compliance services. The DHS Chief Information Security Officer Directorate requires program management; professional services for the planning, management and execution of its cybersecurity mission; and support for national security systems, governance risk and compliance programs. The […]
Camille Stewart Gloster, the deputy national cyber director for technology and ecosystem, has confirmed her departure from the White House. Stewart Gloster joined the Office of the National Cyber Director in August 2022, supporting the development and implementation of the National Cyber Workforce and Education Strategy. Her work also focused on technology security, emerging technology, […]
The FBI is using a collaborative approach to protect the nation from cyberattacks. Speaking at an event attended by cybersecurity professionals on Thursday, FBI Director Christopher Wray said that through “joint, sequenced operations” with domestic and international partners, the FBI can develop operations that could significantly impact cybercriminal organizations. The domestic intelligence service chief also […]
Several organizations are joining a National Institute of Standards and Technology project aimed at building a cybersecurity-capable workforce. The Regional Alliances and Multistakeholder Partnerships to Stimulate program will award about $200,000 each to 18 educational and community institutions, reporting to the National Initiative for Cybersecurity Education, a NIST-led partnership between government, academia and the private […]
The National Institute of Standards and Technology is soliciting feedback on an initial public draft publication providing organizations with recommendations to incorporate incident response in their cybersecurity risk management activities in line with the NIST Cybersecurity Framework 2.0. Comments to the draft publication are due May 20, NIST said. According to Special Publication 800-61r3, “Incident […]
The Cybersecurity and Infrastructure Security Agency is continuing its work to ensure civil society and high-risk communities are protected against cyberattacks. The federal cybersecurity coordinator is working with various international partners, including the United Kingdom’s National Cyber Security Centre, to counter cyberattacks targeting civil society, helping organizations improve their cyber defense and resilience. It also […]
The Cybersecurity and Infrastructure Security Agency has urged software developers and users to downgrade the XZ Utils open-source Linux file compression and transfer capability to older versions, warning that the tool’s updates include a malicious code that provides hackers a backdoor to bypass Secure Shell authentication and access affected systems. A malicious actor with suspected […]
Maryland-based cybersecurity solutions company Ardalyst has named Carahsoft as the public sector distributor of its Tesseract cyber tool, designed for compliance with Cybersecurity Maturity Model Certification and Defense Industrial Base standards. Under the companies’ distributorship agreement, the Ardalyst solution will also be made available to government contractors through Carahsoft’s reseller partners. Tesseract is a three-in-one […]
The Department of the Treasury has issued a report addressing artificial intelligence-related cybersecurity risks affecting financial services companies. The “Managing Artificial Intelligence-Specific Cybersecurity Risks in the Finance Services Sector” highlights several opportunities and challenges associated with the technology, including using the technology to address a widening capability gap, improve regulatory coordination and provide a clear […]
