The U.S. Air Force’s 67th Cyberspace Wing is expanding the role played by senior officers by giving them more operational responsibilities, a major departure from their current preoccupation with administrative and training functions. Col. Jeffrey Phillips, the wing’s commander, said the broader functions for the senior staff are in line with a strategic vision introduced […]
The Department of State has released a request for information in support of the Bureau of Diplomatic Security, which is seeking applied cyber support. According to the RFI, the bureau seeks to identify companies that can provide expertise in enterprise-level cybersecurity policy and technical analysis, reporting and identification of mitigation solutions to support its worldwide […]
The U.S. Secret Service has held a virtual cyber incident response exercise focused on ransomware and cryptocurrency attacks. The Secret Service said it partnered with business leaders, law enforcers and other cybersecurity stakeholders to train on incident mitigation strategies. Cybersecurity executives were given a scenario where they tested their planning, collaboration and information sharing with […]
Regan Edens, a founding member of the Cybersecurity Maturity Model Certification Accreditation Body, has resigned from the organization’s board of directors. Since CMMC-AB’s establishment in January 2020, Edens had led its standards working group and was responsible for creating CMMC programmatic definitions. His group was tasked with defining the controlled unclassified information that the program […]
A proposed bill in the Senate aims to give private companies authorization to initiate counter attacks on hackers. If passed, the legislation would direct the Department of Homeland Security to study the pros and cons of legalizing counter-hacking efforts across the private sector. Under federal law, companies are prohibited from any type of unauthorized access […]
The House Appropriations Subcommittee on Homeland Security has approved a bill that would provide the Cybersecurity and Infrastructure Security Agency $2.42 billion in funding for fiscal year 2022. The proposed CISA budget is $397.4 million higher than FY 2021’s, a 16 percent bump. Rep. Lucille Roybal-Allard, chairwoman of the appropriations subcommittee, said the bill, which […]
The Navy and Marine Corps should be prepared to defend against cybersecurity threats on the same scale as the SolarWinds attack, according to a top cybersecurity official in the military. Army Gen. Paul Nakasone, head of U.S. Cyber Command and a five-time Wash100 winner, said the growing sophistication of enemy hackers has increased the number […]
The Cybersecurity and Infrastructure Security Agency has logged the first entries in its list of “bad” cybersecurity practices for critical infrastructure operators. CISA warned organizations against using unsupported or end-of-life software for critical infrastructure and national critical functions. Operators should also avoid using known passwords and credentials, especially in internet-accessible technologies, CISA said. The Department […]
The Department of Defense said it will work to ensure that small businesses would not be burdened by costs brought about by the Cybersecurity Maturity Model Certification audit. According to a DOD spokesperson, an internal review is underway to minimize accreditation costs for small enterprises while keeping the integrity of the cybersecurity requirements. Most small […]
The cybersecurity executive order President Joe Biden signed in May includes an effort that seeks to exert more control over the content of codes entering government systems and public infrastructure. The National Institute of Standards and Technology completed the first deliverable in the EO on June 25, when it released a document defining “critical software,” […]
