The Cybersecurity and Infrastructure Security Agency has urged software developers and users to downgrade the XZ Utils open-source Linux file compression and transfer capability to older versions, warning that the tool’s updates include a malicious code that provides hackers a backdoor to bypass Secure Shell authentication and access affected systems. A malicious actor with suspected […]
Maryland-based cybersecurity solutions company Ardalyst has named Carahsoft as the public sector distributor of its Tesseract cyber tool, designed for compliance with Cybersecurity Maturity Model Certification and Defense Industrial Base standards. Under the companies’ distributorship agreement, the Ardalyst solution will also be made available to government contractors through Carahsoft’s reseller partners. Tesseract is a three-in-one […]
The Department of the Treasury has issued a report addressing artificial intelligence-related cybersecurity risks affecting financial services companies. The “Managing Artificial Intelligence-Specific Cybersecurity Risks in the Finance Services Sector” highlights several opportunities and challenges associated with the technology, including using the technology to address a widening capability gap, improve regulatory coordination and provide a clear […]
The Department of the Treasury has issued a report addressing artificial intelligence-related cybersecurity risks affecting financial services companies. The “Managing Artificial Intelligence-Specific Cybersecurity Risks in the Finance Services Sector” highlights several opportunities and challenges associated with the technology, including using the technology to address a widening capability gap, improve regulatory coordination and provide a clear […]
The Department of Defense has announced the establishment of the Office of the Assistant Secretary of Defense for Cyber Policy to centralize oversight of cyber operations, fulfilling a mandate within the National Defense Authorization Act for Fiscal Year 2023. The assistant secretary of defense for cyber policy will be the senior official crafting and supervising […]
The Cybersecurity and Infrastructure Security Agency will seek public comments on its proposal to implement the regulations under the Cyber Incident Reporting for Critical Infrastructure Act of 2022. According to the Federal Register, the notice of proposed rulemaking will be published on Thursday. CIRCIA’s implementation will enable enhanced incident reporting to capture information needed to […]
Advanced technology, science and engineering services provider ECS Federal announced that the Department of Health and Human Services has awarded a $120 million contract to its subsidiary Iron Vine Security for cybersecurity support to the Centers for Medicare and Medicaid Services. The task for the CMS Cybersecurity Integration Center Operations will extend up to 2029 […]
A joint alert from the Cybersecurity and Infrastructure Security Agency and the FBI urged technology manufacturers to conduct formal evaluations of their software products to eliminate security weaknesses arising from structured query language injection. The agencies released the advisory, “Secure by Design Alert, Eliminating SQL Injection Vulnerabilities in Software,” following a recent SQLi attack on […]
KBR has secured a $60.7 million task order to provide cybersecurity support to the Naval Information Warfare Center Atlantic. The contract, with a potential four-year value of $245.6 million, will support the Defense Health Agency’s cybersecurity and risk management framework initiatives, KBR said. KBR will provide comprehensive cybersecurity and information assurance services for DHA within […]
U.S. Marine Corps Forces Cyber Command personnel have deployed to Okinawa, Japan, in a move to enhance cybersecurity for units operating worldwide. The deployment marks the first implementation of a new rotational force concept that integrates defensive cyber specialists within tactical and operational units across geographic combatant commands, DVIDS reported. In the Western Pacific, […]
