Nine new trades are available under the Department of Defense United Services Military Apprenticeship Program to help address the U.S. military’s workforce needs. Among the nine are cyber defense analyst, cyber digital forensics analyst and cyber intelligence planner. The new trades add to the 15 cybersecurity occupations introduced under USMAP in 2022. DOD officials said […]
U.S. officials have warned in light of recent cyberattacks that malicious nation-state actors could compromise more domestic water infrastructure, potentially affecting supply. In late November, Iranian hackers targeted the Municipal Water Authority of Aliquippa in Pennsylvania, shutting down a remotely controlled water pressure regulation device housing Israeli-made components, The Associated Press reported. Advocates say the […]
The Veterans Cybersecurity Group has introduced the Zero Trust Proving Ground, giving federal agencies a chance to test and assess their zero trust architecture strategy. Leighton Johnson, VSCG chief technology officer and senior IEEE Zero Trust Working Group member, said the launch of the ZTPG offers significant help at a time when there are no […]
The U.S. Indo-Pacific Command needs to find a way to adopt a zero trust architecture that can work for the U.S. military and its allies and partner nations, a feat the combatant command’s deputy chief information officer said is fraught with challenges. Speaking at the AFCEA TechNet Asia-Pacific conference in Hawaii, Paul Nicholson said INDOPACOM […]
Defense industrial base companies could spend roughly $4 billion over 20 years to implement the Cybersecurity Maturity Model Certification 2.0 program, according to new Pentagon estimates. A proposed rule published in the Federal Register Tuesday would oblige contractors and subcontractors handling federal contract information and controlled unclassified information to adopt certain cybersecurity standards depending on […]
U.S. Coast Guard officials said the service needs to invest in data management to get the most out of zero trust. Speaking at the Eastern Defense Summit earlier in December, Capt. Andrew Campen, engineering service division lead official at the Coast Guard Command, Control, Communication, Computer, Cyber and Intelligence Service Center, said understanding and protecting […]
Microsoft’s Threat Intelligence team announced that it has discovered the Iranian cyber espionage group APT33 deploying the new FalseFont malware on the U.S. defense industrial base. The new malware provides a multi-function backdoor for remote access, deploying files and sending information to the malicious operators’ command-and-control servers, the Microsoft team said. According to the team’s […]
The Department of Defense’s Office of the Chief Information Officer has proposed a rule for the Cybersecurity Maturity Model Certification program that would require defense contractors and subcontractors to apply existing security measures to federal contract information. The rule would also set new controlled unclassified information security requirements for some priority programs, according to a notice posted in […]
U.S. Navy Reserve sailors are participating in the second iteration of Operation Cyber Dragon, an initiative by the U.S. Fleet Cyber Command and the U.S. 10th Fleet to teach reservists to pinpoint and remediate unclassified, front-facing network vulnerabilities. Participants have so far worked on network or asset misconfigurations, certificate issues and patch management, the Navy […]
The Cybersecurity and Infrastructure Security Agency is soliciting feedback on secure by design guidance it released in 2023 to inform future updates. A new request for information contains questions about implementing security early into the software development lifecycle, integrating cybersecurity into computer science education and facilitating efforts to address recurring vulnerabilities, CISA said Wednesday. Titled […]
