Wednesday, April 14, 2021

Subscribers Only

Free

DoD Evaluating Use of Guard, Reserve for Cyberattack Response

The Cyberspace Solarium Commission proposed to increase the role of the National Guard and National Reserve in responding to a catastrophic cyberattack, by creating a special cyber reserve force and better utilizing the cyber expertise of guard members. The NDAA now requires the Defense Department to evaluate the cyber reserve idea, and to clarify how […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

NIST Offers Election Cybersecurity Guidelines

The National Institute of Standards and Technology has released draft guidelines that provide a plainly written road map to help local election officials prepare for and respond to cyber threats that could affect elections. Draft Cybersecurity Framework Election Infrastructure Profile takes NIST’s pre-existing cybersecurity best practices and applies them for the first time to election […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

UC Davis Another Victim of Accellion Breach

The University of California, Davis has announced that it is one of many other universities, governments, and corporations impacted by the breach of Accellion’s File Transfer Appliance software. University employees who had used the utility received emails threatening that their personal information had been exposed and that it would soon be published, with links to […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Utah Gets a New Data Breach Defense Law

On March 11, 2021, Utah governor Spencer Cox signed the Cybersecurity Affirmative Defense Act, which creates affirmative defenses to certain causes of action arising out of a breach of system security. The Act provides three affirmative defenses: If a “person” (broadly defined to include individuals and most business organizations but not government agencies or departments) […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Details of SolarWinds Attack Forthcoming from Federal Government

US Cyber Command and the Department of Homeland Security are preparing to publish a detailed analysis of the hacking tools used in the SolarWinds...

DoD’s Vulnerability Disclosure Program Connects DIB to Researchers

The Department of Defense’s Cyber Crime Center (DC3) the systems of defense contractors. According to a center spokesperson, the program received numerous applicants but launched the pilot with a few dozen companies. During the pilot, DC3 will serve as informational conduit between researchers and defense firms. DC3 will validate and prioritize vulnerability reports from more […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

White House Initiative Focused on Critical Infrastructure Cybersecurity

The Biden administration is making an effort to help electric utilities, water districts, and other critical industries protect themselves from cyberattacks, according to deputy national security advisor Anne Neuberger. The objective of this public-private partnership is “to ensure that control systems serving 50,000 or more Americans have the core technology to detect and block malicious […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

DoD Conducting Internal Review of CMMC

The Defense Department is conducting an internal assessment of its Cybersecurity Maturity Model Certification program, which a DoD spokesperson says is routine in the early stages of a high-impact program. Although there is broad support for a supply chain security program of some kind, industry has expressed concern about the costs of the CMMC, the […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

DoD’s Own CMMC Compliance Review Delayed

The Defense Department has asked for more time to deliver an assessment to Congress about whether its own components comply with the Cybersecurity Maturity Model Certification program. The 2021 NDAA requires the CIO and the commander of the Joint Forces Headquarters-Department of Defense Information Network to review each DOD component for cyber hygiene and assess […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Bill Would Direct VA to Educate Vets About Cyber Risks

The Veterans’ Cyber Risk Awareness Act – introduced by Representatives Nancy Mace (R-SC) and Mike Bost (R-IL) – would direct the Department of Veterans Affairs to study how to educate veterans on online dangers such as “disinformation, identity theft, scams, and fraud, spread via the internet or social media,” and to begin an informational campaign. […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.