CISA Adds Cacti Vulnerability to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency has added a cyber vulnerability to its Known Exploited Vulnerabilities Catalog. The Cacti Command Injection Vulnerability allows unauthenticated users to execute arbitrary code on a server that runs the Cacti open-source platform. Specifically, it allows hackers to retrieve the client’s internet protocol address by bypassing authentication processes. The vulnerability […]

Posted on February 17, 2023 by Lawrence Carter

US Air Force Extends Contract With Telos for Defensive Cyber Operations Support

The U.S. Air Force has awarded Telos a two-year, $32.5 million contract extension to provide mission defense teams support for weapon systems and mission areas that fall under Air Combat Command defensive cyber operations. DCOs are meant to protect data, networks, related technologies and the ability to use them. Telos’ efforts will fall under the WhiteSpace […]

Posted on February 15, 2023 by Noah Lowell

GAO Calls on Government Agencies to Address Privacy Issues Affecting Personal Data

The Government Accountability Office has published a new report urging federal agencies to step up efforts to protect the privacy of sensitive data. The government watchdog conducted a review of 24 agencies in September 2022 and found that most of them established processes to identify types of personal data collected, performed privacy impact assessments and […]

Posted on February 15, 2023 by Lauren Grey

Rebellion Defense Receives SOFWERX Contract for Expanded Access to Network Vulnerability Detection Software

The Tampa, Florida-based nonprofit organization SOFWERX has awarded Rebellion Defense a contract to expand the use of the Rebellion Nova software. SOFWERX will use Nova to identify network vulnerabilities that could significantly impact warfighter capabilities before adversaries can exploit them. The software uses automated adversary emulsion and vulnerability prioritization to identify critical lapses. The contract […]

Posted on February 15, 2023 by Lawrence Carter

House Lawmaker Mulls Dedicated Cyber Military Service

Rep. Mike Gallagher is considering the establishment of an independent cyber military service after the idea was raised at a House Armed Services Committee hearing on Feb 9. Speaking to the press after the meeting, he expressed concerns about the potential for “more bureaucracy” and said that he would favor an approach built around an efficient […]

Posted on February 13, 2023 by Noah Lowell

DHS Cybersecurity Grant Program Begins Funding Rollout for State, Local Governments

State and local governments are starting to receive funds from a four-year, $1 billion Department of Homeland Security grant program aimed at strengthening defense and response capabilities against threats to information systems. Tribal administrations are also set to receive support under a separate program, for which the funding notice is still being crafted. In all, […]

Posted on February 13, 2023 by Noah Lowell

XQ, Strategic Communications to Deliver Zero Trust Solutions to Government Agencies

Cloud and IT services and solutions provider Strategic Communications has partnered with the cybersecurity company XQ to provide zero trust solutions to federal and state agencies. Under the partnership, Strategic Communications will look to deliver XQ’s Virtual Private Network Upgrade and Quantum-Safe Vault products. Both solutions are meant to help users maintain compliance with the […]

Posted on February 13, 2023 by Lawrence Carter

NSA Publishes Joint Cybersecurity Guidance About North Korean Ransomware Threat

The National Security Agency, in partnership with other government agencies from the United States and South Korea, has released a joint cybersecurity advisory about a ransomware threat from North Korea. The advisory contains known tactics, techniques and procedures used by Pyongyang-sponsored cyber actors whenever they target American and South Korean health care systems and other […]

Posted on February 10, 2023 by Lawrence Carter

DOD Official Says New Cyber Workforce Strategy, Implementation Plan Coming Soon

Mark Gorak, the Department of Defense Office of the Chief Information Officer’s principal director for resources and analysis, shared that a strategy and implementation plan to enhance recruitment and retention of a cyber workforce could soon be released. He told attendees of a Billington Cybersecurity webinar on Thursday that the strategy will be structured around […]

Posted on February 10, 2023 by Noah Lowell

National Cyber Director Chris Inglis Set to Retire

The office of National Cyber Director Chris Inglis has confirmed the official’s retirement from government service next week. Inglis, a previous Wash100 awardee, was the first person to hold the position following Senate confirmation in June 2021. He has served the government in national security-related positions for over four decades, including time spent as the […]

Posted on February 10, 2023 by Lauren Grey

Cybersecurity | GovCon News | POC | Page 63