Strategic plans and scorecards are essential to effectively budgeting their cybersecurity needs, agency officials said. Michael Johnson, CIO of the Department of Energy, said the agency uses the DOE Cyber Strategy for information sharing and safeguarding, using multifactor authentication, and focusing on research and development. […]
Most Federal agencies are drafted to be defensive and reactive rather than offensive and predictive, Federal officials said. […]
The Defense Information Systems Agency receives notifications for about 800 million alarms a day while providing support for 146 mission partners, and Maj. Gen. Sarah Zabel, vice director, said the agency is trying to grant all 146 partners access to the commercial cloud. […]
The White House’s Research and Development Strategic Plan will ensure that Federal cybersecurity capabilities continue to improve into the next administration, according to Greg Shannon, assistant director for cybersecurity strategy at the White House Office of Science and Technology Policy. […]
The NIST Commission on Enhancing National Cybersecurity should prioritize the NIST Cybersecurity Framework, the Cybersecurity Information Sharing Act of 2015, and creating norms and deterrence strategies, according to officials at the U.S. Chamber of Commerce. […]
The Defense Information Systems Agency will be shifting from the Host Based Security System to Endpoint Security Solutions to provide an evolved, holistic approach to cybersecurity. […]
Comments close Friday at 5 p.m. on the NIST Commission on Enhancing National Cybersecurity’s request for information on how best to address the “current and future states of cybersecurity in a digital economy.” […]
Two men from North Carolina were arrested Thursday on charges related to their alleged roles in hacking the computers of several senior government officials and government computer systems, according to the Department of Justice. […]
Ransomware is evolving to infect mobile and Internet of Things (IoT) devices, including Hello Barbie, according to Georgia Weidman, founder and CEO of Shevirah. “The bad guys are going where the money is,” she said. […]
Chinese cyberattacks against the United States have declined by about 80 percent, according to FireEye. […]
Due to the breadth and depth of cyberattacks and breaches in the Federal government, most especially the Office of Personnel Management, agencies should be implementing a policy of zero trust when it comes to who is accessing their data, according to Rep. Jason Chaffetz, R-Utah. His committee released a report titled “The OPM Data Breach: How the Government Jeopardized Our National Security for More than a Generation.” […]
Access Now, an organization that advocates for open digital communication, called for the prohibition of government hacking in its report “A Human Rights Response to Government Hacking.” […]
A shift in workforce education is necessary to improve cybersecurity, according to Matt Conner at the National Geospatial-Intelligence Agency. […]
Ensuring the trustworthiness of the Internet of Things and Cyber Physical Systems consists of a variety of factors, not all of them absolutes, according to panelists at a National Institute of Standards and Technology workshop. […]
Six Democratic senators have authored a letter to President Obama, urging him while he is at the G-20 Summit in China on Sunday and Monday to address cyberattacks on financial institutions. […]
The Cloud Security Alliance published a list of the 100 Best Practices in Big Data Security and Privacy to help big data service providers strengthen their infrastructures as the amount of data rapidly grows. The list offers 10 solutions for each of the 10 biggest challenges in big data security and privacy. Check out our condensed list, presenting one recommendation for each challenge. […]
Democratic presidential candidate Hillary Clinton called for a response to cyberattacks that mirrored military responses to other attacks against the United States. […]
Donald Trump’s campaign app, America First, puts users’ contacts at risk. The app, which is available in the Apple App Store and the Google Play Store, requests access to users’ phone address books, which puts this information at risk if the campaign were to be hacked. This is a legitimate concern, given the number of hacks already reported during this election season. […]
If a company gets hit with ransomware, don’t pay the ransom, said Kevin Haley, director of product management and security response at Symantec. […]
Industry leaders and government officials disagree about whether encryption is causing the digital space to “go dark” or makes Internet users safer. […]
A day after news broke that the FBI had detected hacks on two state Board of Election sites in July and August, FBI Director James Comey said the agency takes election cybersecurity “very seriously.” […]
The Department of Homeland Security has expanded its Continuous Diagnostics and Mitigation Tools Blanket Purchase Agreement with the inclusion of Imperva’s Web application and database firewalls. […]
According to MeriTalk’s report titled “Navigating the Cybersecurity Equation,” government agencies are struggling to derive cybersecurity intelligence from big data. Federal agencies stated that the greatest challenge in data analytics is the overwhelming amount of data agencies have to sift through. […]
Like Federal entities and tech companies nationwide, the National Geospatial-Intelligence Agency is working on solutions for good cybersecurity practices. Matt Conner, deputy information security officer and director of the Cybersecurity Office at NGA, said that the agency is in the laborious process of moving to the cloud. Conner will be speaking on cyber risks at the Symantec Government Symposium on Aug. 30. […]
In the five years since the government has encouraged agencies to transition to the cloud, spending on cloud-based technologies has increased to about 9 percent, which is a good pace, according to Tom Ruff, vice president of Public Sector America at Akamai. […]
In a letter sent to Federal Communications Commission Chairman Tom Wheeler, Rep. Ted Lieu, D-Calif., requested that the agency expedite its investigation of the Signaling System Number 7 flaw in light of a recent Democratic Congressional Campaign Committee hack. […]
The interconnectedness of the energy sector presents both increased challenges and potential, according to panelists at an Institute for Critical Infrastructure Technology briefing. “The energy sector is clearly the backbone of all 16 critical infrastructures,” said Jay Williams of Parsons. […]
The Department of Veterans Affairs announced that the Department of Homeland Security and Hiring our Heroes have teamed up to offer free online, on-demand cybersecurity training to government employees and veterans via DHS’ Federal Virtual Training Environment. […]
SecureAuth has launched SecureAuth University, a continuing education program for cybersecurity professionals. Through e-learning and instructor-led courses, SecureAuth University offers certification for three levels of cybersecurity professionals: administrator, advanced administrator, and developer. […]
Due to a lack of adequate resources, many health care providers are falling far behind in their cybersecurity practices, according to data in the 2016 HIMSS Cybersecurity Survey. […]