Justin Katz
GCN
Washington, DC, United States
Contact Justin
Discover and connect with journalists and influencers around the world, save time on email research, monitor the news, and more.
| Recent: |
|
| Past: |
|
Past articles by Justin:
Senate bill boosts penalties for cyber criminals
New legislation would create stricter penalties for cyberattacks against critical infrastructure and give the Justice Department more options for bringing charges against criminals in foreign countries. → Read More
Survey shows many water utilities struggle with cybersecurity
The water industry, like most critical infrastructure sectors, shows a range of cybersecurity preparedness levels even as threats grow, according to a new survey. → Read More
Survey: Many water utilities lack data on IT, OT assets
The new survey data from an information sharing and analysis center was published on the same day a news outlet reported a water treatment facility in California was easily breached by an individual who possessed a former employee's credentials. → Read More
TSA preps second pipeline cyber directive
A senior TSA official told House lawmakers on Tuesday that it is preparing to issue a second security directive focused on cybersecurity mitigation measures used by pipeline companies. → Read More
SolarWinds hackers launch phishing attack
In some cases, the attackers disguised their phishing emails to look as though they came from the U.S. Agency for International Development. → Read More
Biden's first budget ups cyber and tech spending; gives feds a 2.7% pay raise
The Biden administration released its $6 trillion fiscal year 2022 budget proposal on Friday, including $1.5 trillion in discretionary spending across federal agencies. → Read More
After Colonial attack, TSA issues new cyber regs for pipelines
DHS chief Alejandro Mayorkas cited the attack on Colonial Pipeline as the impetus for the new regulations. → Read More
Cyber EO lays a foundation for securing government
The Biden administration’s long-anticipated cybersecurity executive order lays the groundwork for modernizing cyber defenses and protecting critical services from attack by improving incident response and information sharing between the public and private sectors. → Read More
Should TSA be regulating pipeline cybersecurity?
In the wake of the ransomware attack on Colonial Pipeline's business systems, lawmakers and government officials are re-examining where the responsibility for the cybersecurity of energy pipelines should be housed. → Read More
Pipeline attack highlights ransomware threats to infrastructure
The cyberattack against Colonial Pipeline, which led to the precautionary shutdown of fuel pipelines serving the East Coast, underscores the dangers of ransomware. → Read More
DHS, White House turn spotlight on ransomware
The Department of Homeland Security and the White House are putting the spotlight on combatting ransomware, actively developing plans to confront the issue. → Read More
CISA tests cloud log aggregation to ID threats
The Cybersecurity and Infrastructure Security Agency is testing how well aggregated cloud logs can feed its cybersecurity analysis efforts and improve cloud network visibility. → Read More
Joint advisory warns of Russian operations targeting cloud, email
A new advisory describes how organizations can counter tactics and techniques used by Russia’s SVR foreign intelligence service, the attackers behind the intrusion involving SolarWinds. → Read More
CISA issues warning on exploited VPN flaw
A Chinese hacking campaign is using known flaws in a virtual private network application to breach entity networks and implant the SUPERNOVA malware. → Read More
U.S. agencies compromised by VPN flaws
A number of federal agencies were compromised through vulnerabilities found in virtual private networking software made by Pulse Connect Secure, the Cybersecurity and Infrastructure Security Agency confirmed. → Read More
White House stands down SolarWinds, Microsoft Exchange cyber response groups
The White House is suspending the two interagency groups tasked with managing the government's response to the cybersecurity incidents involving SolarWinds and Microsoft Exchange, citing improving trends in patching. → Read More
NSA spots new Exchange CVEs, Microsoft issues patches
While the new vulnerabilities are separate from the four zero-day exploits found in March, the National Security Agency is urging organizations to immediate apply the Microsoft patches. → Read More
Top cyber slots still unfilled amid multiple crises
Chris Krebs, the former CISA director, has been vocal in recent months about the need for his old job to be filled in short order while the administration confronts multiple cybersecurity problems within the federal government. → Read More
APT threat exploits Fortinet OS flaws, CISA, FBI warn
Old vulnerabilities in enterprise software from Fortinet is allowing advanced persistent threat actors to gain access to government and industry networks. → Read More
CISA, FBI warn of hacking threat against Fortinet product
The advisory warns that an unattributed threat actor is using known vulnerabilities in a Fortinet security product to gain access to government and industry networks. → Read More