Watchdog finds cyber risks in TVA control systems

The Tennessee Valley Authority, a federal utility operating in seven southeastern states, lacked proper IT controls and cybersecurity oversight of systems assisting with flood and river management, according to a recent inspector general report.

Brush up on phishing detection to prevent ransomware

With ransomware commonly entering state and local IT networks through phishing emails, employees must learn to spot social engineering scams, a new report says.

Cyber competition builds skills, teamwork

Participating in the International Cyber League helps the IT team at the Illinois State Treasurer’s office test their skills against real-world network threats.

Authentication considerations for state and local governments

Multifactor authentication adds a layer of security to accessing accounts but agencies should know the differences between methods.

Software bill of materials is about more than compliance, expert says

As organizations look to hammer out the standards for SBOMs, they’re also looking at how to automate the vulnerability checking process.

EPA seeks funding to improve the cybersecurity of America’s water systems

The Environmental Protection Agency aims to invest $4 billion in upgrades to the nation’s water and wastewater infrastructure with a strong focus on cybersecurity.

How XDR can identify and fill the cracks in state and local government’s cybersecurity posture

By enabling security solutions to do what they’re intended to do—identify threats—extended detection response better equips security personnel to analyze these identified vulnerabilities and respond to inbound threats.

Postal Service should 'act swiftly' to scale up identity services, IG says

USPS is working with the General Services Administration on more in-person options for, according to a new whitepaper from the U.S. Postal Service's Inspector General.

Ransomware attacks on hospitals put patients at risk

The University of Vermont Medical Center in Burlington, Vt., was hit by a massive ransomware attack during the COVID-19 pandemic. A growing number of health care systems have faced cyberattacks.

New cybersecurity bill authorizes DHS to ramp up incident response efforts nationwide

The National Cybersecurity Preparedness Consortium Act gives the Department of Homeland Security a range of opportunities to bolster cybersecurity preparedness at the state and local level, including and technical assistance services.

Senators ask DHS for strategy to protect U.S. critical infrastructure from Russia

They also raised a series of questions about modern cyber and disinformation threats.

Data and the cyber workforce

A Bureau of Cybersecurity Statistics could help government collect more granular data and metrics on the state of cyber employment.

House Committee's cyber training bill targets public sector responders 

The legislation calls for development of new cybersecurity training and education programs for federal and state homeland security employees in advance of widespread ransomware or digital attacks.

Layered defenses, segmented networks key in shoring up infrastructure, NSA says

A new report from the NSA details why layered defenses are especially important in environments incorporating industrial control systems, which have been targeted in Russian state-sponsored operations.

Preparing for the quantum revolution

The emerging computing technology offers the potential for significant advancements, but also carries the possibility of never-before-seen threats.

Schools would receive funding for cyber education programs under bipartisan bill

The proposed Cybersecurity Grants For Schools Act of 2022 establishes federal grants for schools to promote cybersecurity education.