The Food and Drug Administration will reject applications seeking a substantive review of connected medical devices if the products fail to meet the agency’s cybersecurity guidelines. New rules implemented on Sunday under Section 524B of the recently amended Food, Drug, and Cosmetic Act directs medical equipment manufacturers to ensure that products connected to the internet, […]
Security data solution Singularity DataLake is now available to federal agencies via SentinelOne’s Federal Risk and Authorization Management Program Authorized platform, the company announced on Tuesday. SentinelOne, a Mountain View, California-based cybersecurity company, launched Singularity DataLake in April, describing it as a “one-of-its-kind” cloud-native solution providing a comprehensive look into data across security ecosystems. The […]
The Cybersecurity and Infrastructure Security Agency has added the OASIS Common Security Advisory Framework version 2.0 standard to its advisories for industrial control systems, operational technologies and medical devices. According to the agency, OASIS CSAF “supports the creation, update and interoperable exchange of security advisories as structured information on products, vulnerabilities and the status of […]
The Cybersecurity and Infrastructure Security Agency and the UK National Cyber Security Centre recently held a strategic dialogue where participants from eight countries discussed ways to support high-risk community cyber resilience. During the Strategic Dialogue on Cybersecurity of Civil Society Under Threat of Transnational Repression, participants affirmed their commitment to protect communities at risk of […]
The National Security Agency has urged all agencies operating national security systems to implement an automated acceptance test process as part of their supply chain risk management strategy to ensure newly procured devices are safe and secure. According to the NSA’s new cybersecurity information sheet, titled “Procurement and Acceptance Testing Guide for Servers, Laptops, and […]
U.S. Sen. Mark Warner, D-Va., chairman of the Senate Select Committee on Intelligence, has expressed frustration over the Office of Management and Budget’s slow progress in reviewing the policies of federal agencies on procuring and using internet of things devices. Under the IoT Cybersecurity Improvement Act of 2020, which Warner co-sponsored, agencies are prohibited from […]
The National Security Agency and other U.S. and Japanese security agencies have issued a joint cybersecurity advisory on the activities of Chinese cyber actors that exploit gaps in router firmware to cause damages. According to the “People’s Republic of China-Linked Cyber Actors Hide in Router Firmware” advisory, BlackTech cyber actors modify router firmware without being […]
Space Systems Command has awarded Xage Security Gov a $17 million contract to provide zero trust access control and data protection to defend SSC’s current and next-generation ground and space architectures from cyberattacks. Under the contract, the command will employ the Xage Fabric cybersecurity mesh platform to cyber-harden ground stations, modems, operational technology assets and […]
A draft report from the White House National Security Telecommunications Advisory Committee calls on the U.S. government to develop strategies to prevent foreign adversaries from abusing domestic infrastructure. The report, which the NSTAC recently approved, recommended directing the Office of the National Cyber Director to develop a strategy that will establish a long-term, multifaceted approach […]
The Cybersecurity and Infrastructure Security Agency has announced the start of its Secure Our World nationwide cybersecurity public awareness campaign, which will provide tools and pointers on the safe use of online resources. A public service announcement on U.S. broadcast networks ushered in the campaign, which according to the agency’s director, Jen Easterly, encourages everyone […]
