The Cybersecurity and Infrastructure Security Agency and the Norwegian National Cyber Security Centre have released guidance on an actively exploited vulnerability in Ivanti Endpoint Manager Mobile, a mobile device management solution formerly known as MobileIron Core. According to the joint cybersecurity advisory, advanced persistent threat actors executed a zero-day attack on Ivanti’s software, compromising the […]
The Biden administration has issued a strategy document calling on the government, private sector and civil society groups to work together in addressing cybersecurity workforce shortages. The National Cyber Workforce and Education Strategy highlights four important goals: equipping Americans with cyber skills, transforming cyber education, expanding the national cyber workforce and strengthening the federal cyber […]
Nathaniel Fick, the Department of State’s ambassador at large for cyberspace and digital policy, is advocating for greater cybersecurity assistance to allies as digital matters grow more important to national security. Fick added that the United States should ramp up its role in building up these countries’ cyber infrastructure while incorporating artificial intelligence, quantum computing […]
Booz Allen Hamilton has secured a potential five-year follow-on contract from the Defense Information Systems Agency to expand the deployment of the Thunderdome zero trust security and network architecture program. The follow-on production other transaction authority agreement has a one-year base period that will begin in August and four one-year option periods. Under the OTA, […]
A new office has been officially established within the Program Executive Office Intelligence, Electronic Warfare and Sensors to better meet the cyber warfare needs of the U.S. Army. The Project Management Cyber and Space office will use an acquisition approach tailored to support the Army cyber community. Brig. Gen. Ed Barker, PEO for IEW&S, said […]
A joint advisory from U.S. and Australian cybersecurity agencies has identified common security vulnerabilities in websites and web apps that can be easily exploited and abused in large-scale data breaches. The National Security Agency and the Cybersecurity and Infrastructure Security Agency partnered with the Australian Cyber Security Centre on the cybersecurity advisory titled “Preventing Web […]
Harley Geiger, a counsel at the Center for Cybersecurity Policy and Law, said the Securities and Exchange Commission’s new cyber incident reporting policy could put businesses at greater risk. On Wednesday, the SEC approved rules that give public companies four days to reveal breaches classified as material to investors. Such disclosures will be publicly viewable […]
The Transportation Security Administration has released an updated security directive requiring oil and natural gas pipeline owners and operators to test and evaluate at least two cybersecurity incident response plan objectives. The oil and gas industry was ordered to create incident response plans to strengthen their cyber resilience and defense capabilities against cyberattacks under previous […]
The White House announced on July 25 the intention of President Joe Biden to nominate Harry Coker as the next national cyber director. According to his LinkedIn profile, Coker served in the U.S. Navy from 1980 to 2000. Afterward, he joined the U.S. government, serving on the Community Management Staff of the Intelligence Community, holding […]
Kurt DelBene, the chief information officer of the Department of Veterans Affairs, said the agency is using cybersecurity telemetry and analytics to protect the sensitive data of veterans. The effort is included in the VA’s strategy for zero trust adoption, dubbed Zero Trust First. In an email to Nextgov/FCW, DelBene described cybersecurity telemetry and analytics […]
