Cyber Defense

NIST refreshing voluntary Cybersecurity Framework amid push for mandates

The agency is soliciting comments to update a core document that lets entities pick and choose which technical standards they want to apply to their systems based on their own risk assessment.

Extended reality sees potential, challenges across multiple industries

A new GAO report itemizes how extended reality technologies can be used, and what other emerging tech needs to be bolstered to support its implementation.

NIST releases final cybersecurity assessment guidance

The document extensively reviews best practices in security assessments for organizations. 

Aurora gang steps up attacks, with 'seemingly unlimited' zero-day exploits

Symantec says the well-funded hackers behind the 2009 Google attacks are still very active in gathering intelligence, while an NSA official says nations are getting "reckless" with their attacks.

Dem, GOP platforms expose divide over cyber defense

Acknowledging Congress' failure to pass cybersecurity legislation, Democrats assert the president’s willingness to act on his own through executive order.

Air Force to expand use of cyber warfare training center

Illinois center will include more military commands, educational institutions and other federal agencies.

DOD wants cyberterrorism-prediction software

DARPA seeks proposals for new software that can scour social media and other sites to predict cyberterrorism events.

NORAD, Northcom launch joint cyber division

The new Joint Cyber Center includes members from the intelligence, operations, and command and control divisions, and a team from the U.S. Cyber Command.

DOD expands cyber threat info program

The Defense Department is expanding a program to share cyber threat information and inviting all of its eligible contractors to take part.

DOD still has penchant for BlackBerry 7 devices

New Defense Department approval means personnel can now use the BlackBerry 7 line of products across the department's enterprise network.

The real threat: China, Iran or our own weaknesses?

Forget Russia, China and Iran. The real threat to critical infrastructure is a failure to address security fundamentals in the design and operation of U.S. systems, says one analyst.

Iran a more dangerous cyber threat than China or Russia, experts tell Congress

Iran's willingness to attack the United States and its plans for cyber war capability make it a serious threat, a panel of experts said during a House hearing.

Major cyberattack on US 'inevitable,' experts tell Congress

Without government mandates to secure critical infrastructure, a damaging cyberattack on the nation will happen, experts tell a House panel.

Should US adopt the Godfather cyber defense doctrine?

Vito Corleone had an elegant solution to identifying the source of clandestine attacks.

DISA to roll out defense-wide mobility plan

DISA is gearing up to launch a DOD-wide mobility strategy that will include setting up an enterprise app store and establishing standards for software developers.

Light at the end of the continuous-monitoring tunnel

Moving to a risk-management model of cybersecurity with continuous monitoring of systems can be difficult on a tight budget, but the savings can make it all worth the work.

LulzSec Reborn? Military dating data dump may be work of reformed group

A band of hackers calling themselves "LulzSec Reborn" exposed the usernames and passwords of more than 170,000 subscribers to an online military dating service March 25. Or has it?