Cybersecurity
City & State’s 2025 Digital Summit explores AI, vulnerabilities to cyberattacks
The event featured keynote remarks from Dru Rai, the state’s chief information officer and a fireside chat with New York City Chief Technology Officer Matt Fraser.
FedRAMP to announce major overhaul next week
The initiative would seek to automate much of the cloud security program’s approval workflow and shift more control to the private sector.
Trump order put states at the forefront of cyber and natural disaster response
The executive order signed this week is part of a wider push to put the onus on states and localities to prepare for disasters, rather than the federal government.
Texas mulls establishing new Cyber Command
Legislation would create the command and mandate that it set up a cybersecurity strategy. Gov. Greg Abbott said it is vital to protect the Lone Star State from bad actors.
What’s next for cybersecurity, election info sharing?
Federal funding has been slashed by $10 million for two information sharing centers, which both have tens of thousands of members. A more fragmented and expensive future could follow as states and others go it alone.
Progressives seek health privacy protections in California, but Newsom could balk
Democratic state lawmakers in California have proposed bills to protect women, transgender people, and immigrants in response to concerns that their health data could be used against them. If the measures reach his desk, Gov. Gavin Newsom could lay such legislation aside to focus on securing federal funds.
Big Tech lobbies New Mexico for AG-backed bill
Democratic lawmakers in the state differ on how to protect consumer information online, while a lobbyist for Big Tech companies including Amazon, Google, Meta, Target and General Motors personally lobbied lawmakers on at least one data privacy bill.
Water systems’ cybersecurity dogged by ‘turf war’ between IT, OT
It can be hard to break down siloes between the operational and information technology in water utilities. But speakers at a recent panel called for more visibility and cooperation to keep critical infrastructure safe.
82% of schools suffered recent cyber breaches, report says
The Center for Internet Security said it observed nearly 14,000 security events and confirmed 9,300 cyber incidents, which tend to surge during high-stakes periods like exams.
Critical infrastructure leaders must ‘wake up’ and invest in cyber, report says
A new report from the Multi-State Information Sharing and Analysis Center warned of the threats faced by critical infrastructure and urged states to spend more to protect themselves.
Featured eBooks
Top considerations for adopting a whole-of-state cybersecurity strategy
COMMENTARY | A chain is only as strong as its weakest link, so states must emphasize collaboration and resource sharing across their entire ecosystem to better protect themselves.
Trump’s cuts to federal cybersecurity agency CISA leave election officials worried
The agency partnered with state and local offices and helped combat misinformation. But under Trump, about 130 of its employees have been fired.
New Jersey report warns stolen credentials remain top cyber threat
Bad actors are still looking to take advantage of phishing attacks to steal passwords, a recent report from the state’s Office of Homeland Security and Preparedness said.
Kept in the dark: Inside the St. Landry Parish Schools ransomware attack
A 74 investigative series: Meet the hired guns who make sure school cyberattacks stay hidden. Here’s what we uncovered about a massive attack on the school district in St. Landry Parish, Louisiana.
Treasurer Stacy Garrity bans DeepSeek AI platform from Pennsylvania Treasury devices
The state treasurer said the move is necessary to safeguard the data and sensitive information of Pennsylvanians.
Salt Typhoon hackers exploited stolen credentials and a 7-year-old software flaw in Cisco systems
The Chinese hacking collective has used vulnerabilities in communications infrastructure to breach dozens of telecom providers in the U.S. and overseas.
Building cyber resilience: A roadmap for state CIOs in 2025
COMMENTARY | Threats are growing, especially against critical infrastructure. But several strategies, including a shift in mindset, can help protect against disaster.
Exclusive: StateRAMP to rebrand later this year
The voluntary program will be rebranded as “GovRAMP” to better reflect that its offerings can be used by local governments, educational institutions and others, the organization’s executive director told Route Fifty.
Arizona police procedures exposed in massive policy database hack
Some agencies said they were unconcerned with the breach since the final documents are already publicly available.
Navigating the increasing government cybersecurity challenges in 2025 and beyond
COMMENTARY | Identity security, resiliency and a whole-of-state approach are just some of the ways agencies can steel themselves against the ever-increasing threat landscape.
