Agencies in the U.S., Canada, Australia and the U.K. have warned of Iranian cyber actors exploiting known vulnerabilities in unprotected systems to access and encrypt critical data and support ransom operations. According to a joint cybersecurity advisory, the cyber actors affiliated with the Iranian government’s Islamic Revolutionary Guard Corps are exploiting Fortinet, Microsoft Exchange and […]
The White House has required the Cybersecurity and Infrastructure Security Agency to implement new self-attestation guidelines for government departments. CISA will work with the Office of Management and Budget to create a form that agencies will use to show that software vendors have attested that their offerings conform to the National Institute of Standards and […]
The Department of Justice’s National Security Division and the Department of Defense have informed the Federal Communications Commission of their support for the enhancement of internet routing security. Both agencies recommended that the FCC employ technical security standards and increased transparency to address vulnerabilities in the Border Gateway Protocol, which dictates how and where data is transmitted […]
A recently-proposed bill to reauthorize the U.S. Coast Guard includes requirements to improve the service’s cybersecurity and data management capabilities. The Coast Guard Authorization Act of 2022 seeks to address gaps in federal laws surrounding maritime security. Under the legislation, the Coast Guard must develop policies and processes to ensure that data will be used […]
The U.S. Army has granted Iron Bow Technologies a three-year assess-only authority to operate, allowing the technology solutions provider to introduce the AttackIQ Security Optimization Platform to the military branch’s operations. Iron Bow is the prime contractor under the Defensive Cyber Operations Threat Emulation program for the delivery of the breach and attack simulation capability, […]
President Joe Biden’s choice to lead the U.S. Space Force recently told Senate lawmakers that the newly-established service would need more manpower to contribute to the cyber mission force, teams of cyber operators from across the military overseen by the U.S. Cyber Command to carry out various defensive and offensive missions. Responding to advance policy […]
Lt. Gen. Scott Berrier, director of the Defense Intelligence Agency, said at the Billington Cybersecurity Summit that the organization is trying to determine how to enhance its cyber intelligence output alongside U.S. Cyber Command, the National Security Agency and other members of the intelligence community. Berrier, a past Potomac Officers Club speaker, explained that cyber intelligence collection […]
The Cybersecurity and Infrastructure Security Agency will hold a road show to support the development of regulations that will guide the reporting of cyber incidents and ransomware attacks on critical infrastructure entities. CISA Director Jen Easterly, a 2022 Wash100 winner, said the goal is to “ensure maximum transparency, make sure it’s a consultative process and […]
The Office of the National Cyber Director is developing a cybersecurity strategy that would help the federal government overcome workforce challenges. According to Camille Stewart Gloster, deputy national cyber director for technology and ecosystem security at the ONCD, the workforce plan will focus on training and education, among other things. For federal agencies, Gloster stated […]
The National Security Agency will require National Security System owners to implement algorithms by 2030 that will protect critical networks from quantum-based threats. The requirement is part of new directives featured in the NSA’s Commercial National Security Algorithm Suite 2.0. The document is meant to protect NSS and other related assets from evolving threats, such […]
