The Cybersecurity and Infrastructure Security Agency, along with the Australian Signals Directorate’s Australian Cyber Security Centre and several international organizations, have issued a joint advisory to raise awareness of the tactics used by APT40, a cyber group sponsored by China. The advisory, titled “People’s Republic of China Ministry of State Security APT40 Tradecraft in Action,” […]
BigBear .ai’s Troy, an artificial intelligence-powered workflow engine, has received “Awardable” status on the Chief Digital and Artificial Intelligence Office’s Tradewinds Solutions Marketplace. The designation allows government agencies to procure Troy, designed to streamline and accelerate binary reverse engineering, directly from the marketplace, BigBear said. Binary reverse engineering, a technique crucial for tasks such as […]
The Cybersecurity and Infrastructure Security Agency has issued its “Guide to Operational Security for Election Officials” to strengthen election infrastructure security in time for the upcoming elections. The guide details operational security principles in the election context, identifies potential risks and offers mitigation strategies, CISA said. The agency urges election officials to incorporate OPSEC principles, […]
The National Institute of Standards and Technology has enlisted Post-Quantum in its consortium of organizations engaged in a project dubbed “Migration to Post-Quantum Cryptography” with the primary task of battling “Harvest Now Decrypt Later” cyberattacks. Post-Quantum, touted as the world’s first PQC firm, will support the project by developing practical PQC implementation and use cases, […]
The Department of Homeland Security has announced the recipients of a funding program to help tribal nations better manage cybersecurity issues. In partnership with the Federal Emergency Management Agency and the Cybersecurity and Infrastructure Security Agency, the Tribal Cybersecurity Grant Program named the Cherokee Nation of Oklahoma, the Blackfeet Nation and the San Carlos Apache […]
The Department of Defense and the U.S. Transportation Command are collaborating to take the lead in protecting the global logistic network’s cybersecurity. In the last week of June, the Joint Force Headquarters-DOD Information Network and USTRANSCOM held a global logistics summit to discuss how both organizations could support each other in improving the cybersecurity posture […]
The Cybersecurity and Infrastructure Security Agency has collaborated with the FBI, the Australian Cybersecurity Centre and the Canadian Cyber Security Center to release the guidance titled Exploring Memory Safety in Critical Open Source Subjects. The document, which builds on a previous guide called The Case for Memory Safe Roadmaps, offers insights into the extent of […]
A recent report by the Cybersecurity and Infrastructure Security Agency has found a security vulnerability in critical open-source software. The findings revealed that more than half of 172 open-source projects identified by the Open Source Security Foundation contain code written in programming languages that lack built–in memory management, Nextgov/FCW reported. Moreover, the report noted that […]
U.S. natural gas businesses are facing challenges in securing cybersecurity insurance amid growth in critical infrastructure attacks, according to Kimberly Denbow, the vice president of security and operations at the American Gas Association. Speaking at a hearing organized by the House’s Cybersecurity and Infrastructure Protection Subcommittee, Rep. Eric Swalwell, D-Calif., discussed how the lack of […]
The National Security Agency’s Artificial Intelligence Security Center has been extending a significant amount of support to the U.S. Cyber Command in its use of artificial intelligence in counter-cyberattack initiatives, according to Air Force Gen. Timothy Haugh, commander of the CYBERCOM and director of the Central Security Service and the National Security Agency. Speaking during […]
