A bipartisan pair of senators today announced their plan to introduce companion legislation to strengthen Federal cybersecurity by requiring government contractors to implement vulnerability disclosure policies (VDPs).  […]

The Office of the National Cyber Director (ONCD) today released a summary report detailing a dozen actions the Federal government is currently taking to advance security in open-source software (OSS). […]

Members of Congress are calling on the Department of Veterans Affairs (VA) to improve data privacy, awareness, and website accessibility as veterans and their families fall victim to an uptick in scams by “claim predators.”   […]

The U.S. Air Force said it is looking for a cloud-based system to manage high security flights for top officials after identifying “significant cybersecurity vulnerabilities” in their current system.   […]

The Department of Defense (DoD) may rely on public infrastructure for 5G networks in the future, according to Thomas Rondeau, the principal director for FutureG in the DoD.  […]

Sen. Charles Grassley, R-Iowa, said this week he sent letters to 15 Federal agencies – along with the FBI and the White House – demanding information about their exposure to an AT&T data breach disclosed by the company last month that includes most wireless customer call and text records from May to October 2022. […]

The Government Accountability Office (GAO) credited the Federal government’s Thrift Savings Plan (TSP) for solving technical issues that participants faced while using its latest online platform when it launched in 2022, but also cautioned in an Aug. 1 report that the Federal Retirement Thrift Investment Board (FRTIB) “needs to greatly improve” oversight of TSP acquisition management and contractor oversight going forward.   […]

To highlight the one-year anniversary of the White House’s National Cyber Workforce and Education Strategy (NCWES), the Biden administration held a workshop focused on expanding opportunities for veterans to obtain good-paying cyber jobs. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced on Thursday the release of its “Software Acquisition Guide for Government Enterprise Consumers: Software Assurance in the Cyber-Supply Chain Risk Management (C-SCRM) Lifecycle.” […]

In response to a probe from the Government Accountability Office (GAO), the Environmental Protection Agency (EPA) says it plans to release a national cybersecurity strategy for the water sector in January 2025. […]

The Senate Homeland Security and Governmental Affairs Committee (HSGAC) passed a House-led bill on Wednesday that would reauthorize the Technology Modernization Fund (TMF) through 2030. […]

As the Cybersecurity and Infrastructure Security Agency (CISA) prepares to issue its final rule to implement the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA), the agency is also preparing to implement new technology solutions and hire additional staff to help with the coming influx in cyber incident reports. […]

The Cybersecurity and Infrastructure Security Agency (CISA) made public a report Monday detailing the findings of a pilot that examined whether current Federal vulnerability detection software products that use AI – including large language models – are more effective. […]

The Internal Revenue Service (IRS) wants to expand its use of authentication services that employ the Login.gov sign-on service developed by the General Services Administration (GSA), but the Treasury Inspector General for Tax Administration (TIGTA) said in a July 23 report that IRS is facing security hurdles in that process.   […]

The Department of Health and Human Services (HHS) today announced a reorganization that will streamline and bolster technology, cybersecurity, data, and AI strategy and policy functions. […]

Several U.S. government agencies including the FBI and the National Security Agency (NSA) issued an advisory today warning about a North Korean state-sponsored hacking group that they say is conducting a “global espionage campaign” aimed at advancing North Korean military and nuclear programs. […]

A group of industry cybersecurity leaders told lawmakers today that harmonizing “overlapping and inconsistent” government cybersecurity regulations would help reduce the administrative burden on their cyber workforces and free up additional resources for fighting threats. […]

Rep. Ritchie Torres, D-N.Y., is planning to introduce a bill that would codify the Department of Homeland Security’s (DHS) Cyber Safety Review Board (CSRB) following Friday’s Microsoft outage linked to the cybersecurity giant CrowdStrike. […]

Department of Defense (DoD) operations were unaffected by the ongoing Microsoft outage caused by a flawed CrowdStrike security update, the chairman of the Joint Chiefs of Staff said on Friday. […]

Anne Neuberger, the White House’s deputy national security advisor for cyber and emerging technologies, said that today’s CrowdStrike outage – one of the largest IT outages in history – highlights the need for a tough look at digital resilience capabilities. […]

The ongoing Microsoft outage caused through a faulty update by cybersecurity giant CrowdStrike has disrupted several Federal and state and local government (SLG) services nationwide. […]

A top cybersecurity official at the State Department said Tuesday that the agency is leveraging artificial intelligence (AI) to “buy back time” for the cyber workforce. […]

The Cybersecurity and Infrastructure Security Agency (CISA) said today it is promoting to permanent titles Jeff Greene as the executive assistant director for cybersecurity, and Trent Frazier as the assistant director for stakeholder engagements.   […]

A bipartisan group of senators introduced a new bill last week that would direct the Cybersecurity and Infrastructure Security Agency (CISA) to hire a special liaison to the Department of Health and Human Services (HHS) to coordinate during cybersecurity incidents. […]

A new report from the Department of Homeland Security (DHS) Office of Inspector General (OIG) says that the United States Coast Guard needs to do more to improve the cybersecurity of the Marine Transportation System (MTS) in order to better protect the U.S. supply chain. […]

Sens. Gary Peters, D-Mich., and John Cornyn, R-Texas, have introduced new legislation that would prohibit Federal agencies from buying technology products from “grey-market” sellers rather than authorized dealers. […]

The White House on Wednesday released a memo for the heads of all Federal agencies laying out its “cross-agency cybersecurity investment priorities” for fiscal year (FY) 2026. […]

Sen. Gary Peters, D-Mich., officially introduced bipartisan legislation Monday that would establish an interagency committee to harmonize cybersecurity regulations. […]

Despite the Department of Defense (DoD) placing a renewed emphasis on addressing recommendations made to the agency by the Government Accountability Office (GAO), a recent report from the Federal watchdog reveals that DoD’s implementation rate on recommendations continues to fall short of the government-wide average. […]

The Department of Energy (DoE) still has significant work to do to address open priority recommendations from the Government Accountability Office (GAO) related to insider threats and cybersecurity. […]