Tom McNeal, vice president of the partner channel and public sector for Neustar, emphasized the need to de-weaponize the civilian data released during the SolarWinds hack. At the hands of cyber actors, personally identifiable information could be further exploited to launch new attacks, McNeal wrote in an opinion piece published by Nextgov. To de-weaponize stolen […]
President Joe Biden has issued an executive order imposing tight deadlines on agencies like the Cybersecurity and Infrastructure Security Agency to implement measures to improve the nation’s cyber posture. The EO released May 12 requires agencies to enact Biden’s plan to revamp the federal government’s cybersecurity under timelines as short as 30 days within the […]
Axonius has announced the availability of its Cybersecurity Asset Management Platform on the DLT Solutions General Services Administration Multiple Award Schedule. The platform was designed to allow federal government customers to more accurately and quickly track their assets, in addition to having a holistic view of their security cybersecurity environment, Anoxius said Wednesday. GSA’s schedule […]
Brandon Wales, acting director of the Cybersecurity and Infrastructure Security Agency, expressed support for a bipartisan bill aimed at establishing a response and recovery fund for cybersecurity incidents. The introduction of the bill comes amid the discovery of a series of major cybersecurity attacks on the federal government, including the SolarWinds supply chain attack. The […]
Cyber experts noted during a recent U.S. Chamber of Commerce virtual panel that ransomware victims’ hesitance to report is making it difficult to implement federal cyber defense efforts. Eric Goldstein, executive assistant director of the Cybersecurity and Infrastructure Security Agency’s cybersecurity division, said it is hard to understand the scope of the problem because some […]
Elliott Davis, an accounting firm based in South Carolina, has been selected as a candidate certified third-party assessor organization under the Cybersecurity Maturity Model Certification program. CMMC is the Department of Defense’s new unified standard for implementing cybersecurity across the defense industrial base. Once the program has been fully implemented, defense contractors will be required […]
The Department of Energy considers cybersecurity a top research and development priority, Secretary of Energy Jennifer Granholm said during a House Appropriations subcommittee hearing. Granholm responded to lawmakers’ concerns that the department did not put enough focus on cybersecurity in its fiscal year 2022 budget, FCW reported. Rep. Mike Simpson, the subcommittee’s ranking member, cited threats […]
The National Security Agency has released a joint advisory with three other agencies detailing how cyber actors associated with the Russian Foreign Intelligence Service, or SVR, continue to exploit victim networks. The advisory, titled “Further TTPs associated with SVR cyber actors,” included input from the U.K. National Cyber Security Centre, the Cybersecurity and Infrastructure Security […]
A ransomware attack believed to have been carried out by a Russian criminal group has forced Colonial Pipeline to temporarily shut down its operations. According to the pipeline’s operator, the attack crippled the company’s computer systems. Colonial Pipeline assured that it has already taken certain systems offline to contain the threat, The Maritime Executive reported. […]
The Biden administration will likely retain a Trump-era directive that outlines ways to secure space systems from cybersecurity threats. Space Policy Directive 5, which was issued last September, is currently under review for possible addition of new updates, Nextgov reported. The original directive lists five cybersecurity principles for space systems. These include integrating risk-based, cybersecurity-informed […]
