The Cybersecurity and Infrastructure Security Agency is calling on internet service providers to remediate Rapid Reset, a widespread vulnerability that led to the largest distributed denial-of-service attack ever. In a joint statement on Tuesday, Amazon Web Services, Cloudflare and Google explained that malicious actors exploited a feature in the Hypertext Transfer Protocol/2 system that allows […]
The Department of Defense and the Intelligence Community can now access Axonius Federal Systems’ cybersecurity asset management platform through the Enterprise Software Initiative blanket purchase agreement awarded to TD Synnex Public Sector. The DOD prefers to procure IT products and services via ESI BPAs in compliance with the Defense Federal Acquisition Regulation Supplement. Such procurement […]
The National Security Agency has released a new cyber signature and analytics repository to help cyber officials fend off malicious activities in operational technologies. The ELITEWOLF capability is a set of operational technology intrusion detection signatures and analytics that allows officials to continuously monitor their systems. According to ELITEWOLF’s GitHub page, the signatures and analytics […]
Intelligence community agencies and the Department of the Treasury have produced an open-source software security fact sheet on using operational technology and industrial control systems. Developed alongside public and private-sector partners, the document contains OSS security information and best practices for critical infrastructure entities and OT/ICS vendors, the Cybersecurity and Infrastructure Security Agency said. The […]
Carahsoft Technology has entered into a Master Government Aggregator agreement with Illumio to offer its zero trust platform to the public sector. As Master Government Aggregator, Carahsoft will offer Illumio’s Zero Trust Segmentation platform through various resellers and government contracts. ZTS is a breach containment platform that allows customers to restrict access to high-value applications, […]
Dan Richard, chief CIA cyber policy adviser, said data management and rapid adoption of commercial solutions are the challenges that the agency is working on as it pursues artificial intelligence use. Speaking at the 14th Annual Billington CyberSecurity Summit held from Sept. 5 to 8, Richard noted that AI-powered disinformation and cyberattacks are also areas […]
Tysons, Virginia-based Aeyon has announced that it won a U.S. Marine Corps contract for cybersecurity support services. Aeyon will work with partners Spry Methods, Black & Rossi and Zen Strategics to enhance the Marine Corps’ digital capabilities, internal controls and cybersecurity posture. Aeyon’s cybersecurity and IT teams will also use advanced technologies and best practices […]
Christopher Barnhurst, deputy director at the Defense Information Systems Agency, said protecting data from sophisticated cyberattacks is the main goal of adopting the zero trust cybersecurity principle to ensure warfighters can access critical information securely anywhere in the world. DISA has started implementing a prototype version of its Thunderdome zero trust security and network architecture […]
The U.S. Army’s Program Manager Defensive Cyber Operations has introduced two new programs to help the service improve its cybersecurity and information-sharing capabilities. PM DCO announced the Cyber Platforms and Systems and the Cyber Analytics and Detection programs, which Robert Zoppa, project manager for DCO, said would help with the Army’s information dominance and decision-making […]
The Department of the Treasury has invited industry to provide input on a draft blanket purchase agreement for a multiple-award program to acquire enterprise-wide cybersecurity services. Vendors for the Providing Treasury Enterprise Cybersecurity Technology and Services program are expected to deliver architecture, engineering and management services to the security operations centers within internal bureaus and […]
