China-based hackers have breached government email accounts in a cyber attack intended to collect intelligence, The New York Times reported Tuesday. In total, approximately 25 organizations and government agencies have been affected by
More
U.S. and Canadian authorities are alerting organizations to watch out for new malware variants of the robot network Truebot, which are increasingly infecting the IT systems of private and public entities in
More
Lloyd Austin, secretary of the Department of Defense and a 2023 Wash100 inductee, has concluded his assessment of findings and recommendations of a 45-day review of DOD’s security programs, procedures and policies
More
The Cybersecurity and Infrastructure Security Agency is pursuing vendors to help protect the national critical functions through CyberSentry, a public-private threat monitoring and detection program for U.S. critical infrastructure. In a blog
More
U.S. Cyber Command is expanding its collaborative program that enables it to exchange cyber threat intelligence with industry partners to support national security efforts. Under Advisement was launched by the command’s Cyber
More
A study by security company Censys has found hundreds of internet-exposed devices on federal systems that could be exploited by cyberthreat actors. Censys researchers discovered over 13,000 distinct hosts, including firewalls, virtual
More
The National Security Agency and the Cybersecurity and Infrastructure Security Agency jointly released an information sheet recommending security best practices for organizations with Continuous Integration/Continuous Delivery coding platforms. The guidance was published
More
The Department of Homeland Security revised its acquisition regulation to enhance the protection and privacy of controlled unclassified information, and improve security incident reporting to the agency. The rule, which takes effect
More
The Department of Defense Cyber Crime Center partnered with George Mason University to help address challenges in the full-scale launch of its Vulnerability Disclosure Program. The collaboration was made possible through the
More
The General Services Administration has released a request for information on vendors that could provide post-quantum cryptography products and services. GSA has asked several questions regarding PQC-related tools and services that companies
More