Intelligence Agencies

How cyber gray zone conflict can shape conventional war

As gray zone conflict becomes the norm, the intelligence community may have to make some changes to adapt.

Zero-trust has a branding problem

A zero-trust approach to cybersecurity is intended to increase vigilance and minimize risk, but without the necessary context, the concept could raise discomfort or even hostility among federal workers.

IC leaders drill in on diversity issues at House hearing

Although there have been some gains in the representation of women and minorities in the IC workforce overall, the highest ranks are less diverse.

CISA chief: Cyber incident reporting can't become a burden

Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, stressed the importance of cyber incident reporting but said mandates should be careful of potentially overburdening companies -- and CISA -- with "reporting noise."

Microsoft touts top secret cloud ATO

Azure Government Top Secret is now "generally available" for national security workloads, Microsoft announced in a blog post.

Senate panel wants DHS to focus intel activities on foreign threats

The Senate version of the annual intelligence authorization bill, which passed out of committee last week, includes a warning to DHS' intelligence arm to distinguish more carefully between its foreign and domestic missions.

Lawmakers seek IG probes of telework cybersecurity

A group of House lawmakers are calling on the inspectors general of nine executive departments and the intelligence community to see what cybersecurity vulnerabilities may have arisen due to the mass increase of telework during the coronavirus pandemic.

IC warns that U.S. adversaries are ramping up cyber attacks

The worldwide threat assessment by the U.S. intelligence community comes one day before the heads of several agencies are scheduled to testify during open and closed session to the Senate Select Committee on Intelligence.

ODNI plans recruitment ad campaign

Intelligence agencies are seeking STEM employees and a more diverse workforce.

IC: Foreign actors tried to affect U.S. election via influence campaigns, but not by hacking

The intelligence community's newly declassified report largely concludes Russia attempted to meddle in the U.S. election through influence operations but did not attempt the kinds of cyberattacks observed in 2016.

CIA nominee: Cyber threats are 'ever greater risk' for U.S. society

William Burns, the president's nominee to lead the Central Intelligence Agency, said the SolarWinds attack was a "harsh wake-up call" about the country’s vulnerabilities in both critical infrastructure and supply chains.

Supply chain hack took a thousand engineers to pull off, tech exec tells Congress

The scope and scale of the attack as described by Microsoft President Brad Smith is in keeping with the attribution being made by public sector and private sector officials that the hack was perpetrated by Russian-sponsored actors.

SolarWinds CEO: This could have happened to anyone

In what will be the first of several public appearances this week, Sudhakar Ramakrishna says his company will be transparent about the supply chain attack it suffered as a way to help other companies prepare for the next attack.

Changes coming to federal cyber in wake of massive breach

The supply chain hack that targeted IT management software SolarWinds and other vendors will result in changes to the federal government's cybersecurity posture, according to the official charged with leading the administration's response.

Krebs: More 'destructive,' 'brazen' attacks possible from Russia

The former CISA director's warning came during one of the first congressional hearings that largely focused on the SolarWinds Orion breach.

Warner, Rubio seek single top official for SolarWinds response

The two leaders of the Senate Select Committee on Intelligence say the government's response to the hack so far has been "disjointed and disorganized."

Lawmakers press NSA for answers about Juniper hack from 2015

A group of Democratic lawmakers is calling on the NSA to explain its part in developing a flawed encryption algorithm that was used and subsequently exploited through Juniper Network's security products, citing the supply chain hack involving SolarWinds Orion.