Cybersecurity
Russian hackers breached, sabotaged Texas water treatment plant, cyber firm says
If confirmed by U.S. officials, it would add Moscow to the list of American adversaries that have infiltrated water infrastructure in the past year.
Cybersecurity
Hackers tried to breach, disable widely used open-source Java tools, groups warn
The alert comes just after a possible nation state entity attempted to hijack an open-source Linux tool last month.
Cybersecurity
New bill would create a governing body for water system cyber standards
The legislation comes after the Biden administration rescinded a memorandum that would have tied water sector cyber reviews to existing sanitation surveys.
Cybersecurity
HHS removed Login from its grantee payment system after funding theft
Hackers used data from a federal contracting hub to steal funding from seven grantee organizations in an HHS breach that occurred last year. Both HHS and GSA say that Login.gov was not compromised or connected to the theft.
Cybersecurity
Russian hackers accessed U.S. government emails in Microsoft breach, CISA says
The alert comes a week after Microsoft was faulted in a DHS report for fostering a security culture that enabled a similar China-backed cyberattack last year.
Exclusive
Cybersecurity
Some Volt Typhoon victims ‘won’t know they’re impacted,’ Mandiant CEO says
The efforts of the Beijing-linked Volt Typhoon hacking group represent the “natural progression” of Chinese espionage, according to Kevin Mandia.
Cybersecurity
CISA alerts Sisense breach that possibly exposed customer data
An internal company note appears to show some firm info may have been exfiltrated.
Cybersecurity
Microsoft report signals ‘great concern’ for dam cybersecurity, top FERC official says
The company’s products are heavily used in the dam sector, the official said.
Cybersecurity
Cyber Command deployed personnel on 22 missions in 17 countries last year, commander says
The DOD previously said it’d be taking a more offensive approach to cyberspace.
Cybersecurity
Congress tries again for comprehensive data privacy bill
The bill would establish national data privacy standards, with the Federal Trade Commission crafting rules for enforcement.
Cybersecurity
China-backed operatives used fake social profiles to gauge US political division, Microsoft says
Some of the fake accounts used AI-generated images, and have doubled or tripled their followers since being detected, the company told Nextgov/FCW.
Cybersecurity
Linux backdoor was a long con, possibly with nation-state support, experts say
If the XZ Utils vulnerability hadn’t been caught in time, hackers would have had a “skeleton key to the world,” one analyst told Nextgov/FCW.
Cybersecurity
Return of net neutrality will hamstring some foreign broadband firms, FCC official says
The reclassification of broadband as a Title II service will give the Federal Communications Commission new power over internet service providers, and the agency says it will be a boon to U.S. network security.
Cybersecurity
Microsoft at fault for ‘avoidable errors’ leading to Chinese email hack last year, DHS group finds
The company’s cybersecurity culture contributed to an environment that enabled the incident, according to the findings.
Cybersecurity
Practical quantum computing is coming in 3 to 5 years, but will be cloud based, NSA official predicts
Cloud architectures will allow organizations to more easily access quantum capabilities, he said.
Cybersecurity
CISA resource looks to help high-risk groups thwart cyberattacks
Civil society organizations, community groups and others often lack budgets and resources needed to defend against hackers.
Cybersecurity
CISA sounds alarm on deep-seated vulnerability in Linux tool
The malicious code was introduced by a user that has long-contributed to the open-source ecosystem.
Cybersecurity
DOD stands up new civilian-facing cyber policy office
The nominated head of the new Pentagon office is awaiting confirmation in Congress.
Cybersecurity
2 wireless protocols expose mobile users to spying — the FCC wants to fix that
The protocols are a cornerstone of wireless communications but may contain flaws that enable hackers to tap into Americans’ mobile activities, the agency says.
Cybersecurity
CISA's proposed framework for cyber incident reporting rules includes subpoena power
The rules also require that covered entities that pay ransomware hackers to regain control of their systems and data must report such payments to CISA.
Almost There!
Help us tailor content specifically for you: