What the Census Bureau Can Learn From the IRS About Detecting Cyberattacks

In separate reports, agency watchdogs demonstrated the difference proper implementation of detection controls can make in limiting the impact of attempted cyber intrusions: one, a foiled ransomware attack against the Internal Revenue Service; the other, an internal penetration test of the Census Bureau’s resilience.  IRS […]

 66 total views

Agencies Push Deadline to Comment on Would-Be Federal Cyber Insurance Program

The Treasury Department and the Cybersecurity and Infrastructure Security Agency extended their original deadline—Monday—to Dec. 14 for receiving public comment on whether federal funds should be used to help insure the provision of critical infrastructure against losses from cyberattacks, and if so, how a federal […]

 51 total views

Big Tech Tells CISA to Exempt Third-Party Providers from Incident Reporting Rule

Providers of commercial information and communications technology shouldn’t be required to report cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency, a trade association for some of the largest such companies told the agency, which is leading a rulemaking process to implement an incident reporting […]

 5 total views

White House Sprint Ends With Nearly 200 New Cyber Apprenticeship Programs

The Biden administration has ended the 120-day Cybersecurity Apprenticeship Sprint on Tuesday—during National Apprenticeship Week—as part of ongoing efforts to address workforce needs. President Joe Biden created the sprint to help meet the nation’s growing cybersecurity needs, while striving to build a diverse, robust and […]

 4 total views

How Federal Agencies are Using Innovative Tech to Protect Critical Infrastructure Cybersecurity

A Wednesday meeting of the President’s Council of Advisors on Science and Technology heard expert opinions on better constructing a cyber-resilient digital infrastructure at the national level, with current government officials advocating for a combination of emerging technologies and risk mitigation.  The Defense Advanced Research […]

 133 total views

NIST Official Warns Against Device-only Approach to Securing IoT

As federal agencies near a Congressional deadline to control their procurement of devices capable of connecting to the internet, a key official from the National Institute of Standards and Technology highlighted the role cloud services and other infrastructure providers—beyond the device manufacturers—play in mitigating cyberattacks […]

 8 total views