Author Archive
Cybersecurity
International guidance pushes security by design
Software and tech manufacturers are urged to revamp their design and development programs to permit only secure-by-design and -default products to be shipped to customers.
Cybersecurity
Report: Increased remote work for many governments also raises cyber risks
Roughly one-third of government employees believe “their actions don’t matter when it comes to security,” according to a new survey.
Cybersecurity
Ransomware payments decreased in 2022 as criminals used other extortion tactics
A report from Recorded Future found that, even as ransomware continues to pose a global challenge for individuals and organizations, threat actors are increasingly using other methods to steal sensitive data and demand payments from victims.
Cybersecurity
Cyber criminals are increasingly exploiting cloud environments, report finds
A new CrowdStrike report found that hackers and digital adversaries are relying less on malware, and more on unpatched vulnerabilities and data weaponization.
Emerging Tech
Lack of emerging tech framework is 'weakening' US stance against China, lawmakers warn
Both Democrats and Republicans said Congress needs to craft national frameworks around data privacy and autonomous vehicles to counter China’s global tech ambitions.
Cybersecurity
CISA releases guide to help safeguard K-12 schools from cyber threats
CISA’s report, which was mandated by the K-12 Cybersecurity Act of 2021, outlined a variety of steps that primary and secondary schools can take to bolster their cyber defenses.
Cloud & Infrastructure
Governments view open source as critical for enhancing digital services, experts say
The U.S. government is “still in the process of organizing and coordinating” its own strategy around the use of open source software, according to a CISA official.
Cloud & Infrastructure
FCC bans sale of new devices from Chinese companies Huawei, ZTE and others
Friday’s order to ban new sales and imports from five Chinese companies is the first time in its history that the agency has blocked the sale of telecommunications equipment on national security grounds.
Cybersecurity
No ‘specific or credible’ cyber threats affected integrity of midterms, CISA says
Despite “a handful” of DDoS attacks targeting state and local election websites and some technical glitches affecting voting equipment, CISA says it saw “no activity” that should undermine faith in the results of the midterm elections.
Cybersecurity
Voting machine myths likely to increase during and after midterms, report finds
Cybersecurity firm Recorded Future identified mis- and disinformation campaigns suggesting that voting machines from three major companies “will be used to falsify the results of the midterms.”
Cybersecurity
FCC proposes to strengthen cybersecurity of emergency alert systems
Emergency alert system participants would be required to disclose cyber breaches within 72 hours of discovery.
Cybersecurity
State and local agencies buying banned Chinese equipment, report finds
Chinese-made smartphones, surveillance cameras, temperature scanners, handheld radios and networking equipment have been deployed in government offices, transit systems, schools, hospitals and prisons.
Cybersecurity
Malicious emails surged for election workers in 2 battleground states ahead of primaries
Research conducted by cybersecurity firm Trellix found that county election workers in Arizona and Pennsylvania saw an increase in phishing schemes ahead of their primary elections.
Cybersecurity
Malicious cyber activity is unlikely to compromise election infrastructure
"Extensive safeguards in place” will make it difficult for bad actors to interfere in upcoming midterm elections, according to a joint public service announcement from the Cybersecurity and Infrastructure Security Agency and the FBI.
Cybersecurity
Communication breakdowns hurt otherwise positive view of federal ransomware support, GAO says
State, local, tribal and territorial governments have “generally positive views” of agencies’ ransomware assistance, but cited “inconsistent communication” from the FBI as a challenge.
Data & Analytics
FAA launches data visualization dashboard to better inform public about the national airspace
New interactive ‘Fact Book’ hopes to make the FAA’s collected data on the U.S. aviation sector easier for readers to comprehend.
Cybersecurity
How simple claims of election interference can be enough to prompt real-world threats
Officials remain on guard against foreign meddling in U.S. elections, as CISA and other agencies work to strengthen partnerships and intelligence sharing efforts with state and local election administrators.
Cybersecurity
Report outlines electromagnetic pulse protection for critical infrastructure
The report uses approaches for safeguarding the National Public Warning System as a blueprint for defending other vital systems and services from electromagnetic pulses.
Cybersecurity
Election officials have been largely successful in deterring cyber threats, CISA official says
Public-private partnerships and enhanced resource sharing activities have been key to defending against outside threats to voting systems, according to the head of CISA’s National Risk Management Center.
Data & Analytics