Discover and connect with journalists and influencers around the world, save time on email research, monitor the news, and more.
Recent: |
|
Past: |
|
New legislation would create stricter penalties for cyberattacks against critical infrastructure and give the Justice Department more options for bringing charges against criminals in foreign countries. → Read More
The water industry, like most critical infrastructure sectors, shows a range of cybersecurity preparedness levels even as threats grow, according to a new survey. → Read More
The new survey data from an information sharing and analysis center was published on the same day a news outlet reported a water treatment facility in California was easily breached by an individual who possessed a former employee's credentials. → Read More
A senior TSA official told House lawmakers on Tuesday that it is preparing to issue a second security directive focused on cybersecurity mitigation measures used by pipeline companies. → Read More
In some cases, the attackers disguised their phishing emails to look as though they came from the U.S. Agency for International Development. → Read More
The Biden administration released its $6 trillion fiscal year 2022 budget proposal on Friday, including $1.5 trillion in discretionary spending across federal agencies. → Read More
DHS chief Alejandro Mayorkas cited the attack on Colonial Pipeline as the impetus for the new regulations. → Read More
The Biden administration’s long-anticipated cybersecurity executive order lays the groundwork for modernizing cyber defenses and protecting critical services from attack by improving incident response and information sharing between the public and private sectors. → Read More
In the wake of the ransomware attack on Colonial Pipeline's business systems, lawmakers and government officials are re-examining where the responsibility for the cybersecurity of energy pipelines should be housed. → Read More
The cyberattack against Colonial Pipeline, which led to the precautionary shutdown of fuel pipelines serving the East Coast, underscores the dangers of ransomware. → Read More
The Department of Homeland Security and the White House are putting the spotlight on combatting ransomware, actively developing plans to confront the issue. → Read More
The Cybersecurity and Infrastructure Security Agency is testing how well aggregated cloud logs can feed its cybersecurity analysis efforts and improve cloud network visibility. → Read More
A new advisory describes how organizations can counter tactics and techniques used by Russia’s SVR foreign intelligence service, the attackers behind the intrusion involving SolarWinds. → Read More
A Chinese hacking campaign is using known flaws in a virtual private network application to breach entity networks and implant the SUPERNOVA malware. → Read More
A number of federal agencies were compromised through vulnerabilities found in virtual private networking software made by Pulse Connect Secure, the Cybersecurity and Infrastructure Security Agency confirmed. → Read More
The White House is suspending the two interagency groups tasked with managing the government's response to the cybersecurity incidents involving SolarWinds and Microsoft Exchange, citing improving trends in patching. → Read More
While the new vulnerabilities are separate from the four zero-day exploits found in March, the National Security Agency is urging organizations to immediate apply the Microsoft patches. → Read More
Chris Krebs, the former CISA director, has been vocal in recent months about the need for his old job to be filled in short order while the administration confronts multiple cybersecurity problems within the federal government. → Read More
Old vulnerabilities in enterprise software from Fortinet is allowing advanced persistent threat actors to gain access to government and industry networks. → Read More
The advisory warns that an unattributed threat actor is using known vulnerabilities in a Fortinet security product to gain access to government and industry networks. → Read More