Thursday, April 15, 2021

Subscribers Only

Free

Legislators Urge White House to Nominate National Cyber Director

Some lawmakers are growing impatient waiting for President Biden to nominate someone to fill the position of national cyber director, which was created in the FY2021 NDAA with bipartisan support. The White House has said that it is still organizing the office this person will lead. Senator Angus King (I-ME), whose commission recommended creating the office, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

DHS Using Data Literacy, Analytics to Bolster Cyber Workforce Training

In the dynamic world of Homeland Security, planning for and maintaining the right workforce presents a major imperative. For some insight and how they do it, Federal Drive spoke with Kimya Lee, the Executive Director of Strategic Workforce Planning and Analysis at the Department of Homeland Security. Source: Federal News Network: DHS Using Data Literacy, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

SolarWinds Hackers Accessed Email, Schedules of DHS, DOE Secretaries

The hackers behind the massive breach of SolarWinds' Orion software were able to access the email accounts of top officials at the Department of...

List of SolarWinds Victims Has “Solidified”; Exchange Scope Less Clear

CISA acting director Brandon Wales says that the list of victims from the attack on SolarWinds Orion and Microsoft Office 365 users has solidified, and that the agency is not expecting many more targets to come forward. A reported nine federal agencies and roughly 100 private companies were victimized. Wales acknowledged that the list of […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

House’s Ranking Homeland Security Republican Calls for $5 Billion CISA Budget, “Quarterback” Status

House Homeland Security Committee Ranking Member John Katko (R-NY) says that CISA should play “quarterback” for cybersecurity in the federal government, and therefore be funded accordingly. Katko said the agency needs “a lot more money” and “a lot more resources” to meet its mission, and that he could easily see Congress giving CISA a $5 […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA’s Wales Promises New Software Vendor Standards

Acting CISA director Brandon Wales, says that the government will be establishing new security standards for providers of its IT in the coming weeks....

CISA Prepares to Exercise Subpoena Authority with ISPs over Customer ID

The Cybersecurity and Infrastructure Security Agency was granted specific subpoena powers by the 2021 NDAA, empowering it to compel internet service providers to supply the identity of their customers, so officials can warn them about vulnerabilities in their systems. Acting director Brandon Wales says they plan to begin exercising this authority in about two months, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Will Focus on Monitoring within Federal Networks in Addition to Guarding Perimeter

Brandon Wales, acting director of CISA, concedes that the EINSTEIN system that guards federal networks from intrusion cannot detect a threat like SolarWinds, which was deployed from within that perimeter. To address this area, CISA will transition some of the $650 million in funding it received in the American Rescue Plan to programs for detecting […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

New CISA Tool Can Help Detect SolarWinds Hack Activity

The Cybersecurity and Infrastructure Agency has released a new tool that will allow victims of the SolarWinds breach scan their systems for traces of hacker activity left behind after the breach. The CISA Hunt and Incident Response Program (CHIRP) scans for signs of Advanced Persistent Threat compromise within a system, CISA explained in a release announcing […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Protective DNS Leverages Domain Name System to Improve Cybersecurity

A guide from the National Security Agency and Cybersecurity and Infrastructure Security Agency describes “Protective DNS”, a service that leverages the Domain Name System which translates internet names into numeric addresses, to provide some protective services by intercepting and analyzing DNS queries. The document describes ways that PDNS can improve security, implementation pitfalls, and a […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.