Author Archive
Derek B. Johnson
Cybersecurity
Rural telecoms face $1.8 billion tab to replace Huawei and ZTE equipment
The Federal Communications Commission has added up how much it will cost to replace the Huawei and ZTE equipment in America's rural telecommunications infrastructure: $1.84 billion.
Cybersecurity
Administration moving forward with vulnerability disclosure policies
The Office of Management and Budget and the Cybersecurity and Infrastructure Security Agency have issued guidance to federal agencies on how to set up vulnerability research and disclosure programs.
Cybersecurity
How government is delivering better election security
While it becomes increasingly difficult to ensure the security and integrity of the 2020 election, plenty of progress has been made on the cybersecurity front since 2016, experts say.
Cybersecurity
Vishing attacks on the rise, FBI, CISA warn
Hackers are targeting employees working from home during the coronavirus pandemic with “vishing” or voice phishing campaigns, since at least mid-July, according to an alert from the FBI and Cybersecurity and Infrastructure Security Agency.
Cybersecurity
COVID relief phishing emails spoof SBA
Emails that appear to be from the Small Business Administration are being sent to business owners, CEOs and CFOs enticing them to download malware and hand over personal banking information, according to new research.
Cybersecurity
What will it take for a secure election?
In the face of unprecedented challenges this year, many election officials say most issues can simply be addressed with sufficient political will.
Infrastructure
CISA, NIST issue cloud security guidance
The Cybersecurity and Infrastructure Security Agency has issued finalized core guidance for the Trusted Internet Connection program, and National Institute of Standards and Technology its guide on access controls for IaaS, PaaS and SaaS cloud models.
Cybersecurity
NSA issues BootHole mitigation guidance
Following the disclosure of a widespread vulnerability that could affect potentially billions of Linux and Windows-based devices, the National Security Agency issued a cybersecurity advisory highlighting the bug and offering steps for mitigation.
Cybersecurity
IRS improves its fraud, ID theft detection
The tax agency received high marks for its efforts cracking down on tax refund fraud and identity theft, according to a new audit from the Treasury Inspector General for Tax Administration.
Cybersecurity
Massive vulnerability uncovered in popular networking device
A particularly dangerous vulnerability has been uncovered in F5’s BIG-IP networking devices produced by F5, impacting enterprise networks across the globe.
Cybersecurity
CISA names top 3 threats to government systems
The Cybersecurity and Infrastructure Security Agency’s EINSTEIN intrusion detection system found that remote-access tool exploitation, fileless Trojan malware and cryptocurrency mining software accounted for 90% of the observed threat activity against civilian federal systems and networks in May.
Featured eBooks
Cybersecurity
What drives white-hat hackers?
A recent survey of bug bounty participants found that they don’t hunt bugs for the money, but motivated by the work’s flexible hours and chances to improve their skills.
Infrastructure
Legacy tech, insufficient coordination hampered COVID relief
The CARES Act relief programs overwhelmed federal, state and local IT systems and led to numerous delays and interoperability challenges, according to a new report from the Government Accountability Office
Cybersecurity
Lawmakers combat flood of COVID cyber fraud
Congress has put forward a number of bills designed to address cyber fraud during and after the pandemic.
Cybersecurity
Lawmakers explore tech-friendly banking
As House Democrats consider future relief packages tied to the coronavirus outbreak, they're exploring how make the banking system more tech-friendly and expand access to financially distressed groups using digital services.
Cybersecurity
Census faces pandemic-related delays, cyber and IT challenges
Along with a number of IT testing and cybersecurity challenges already facing the 2020 census, it must now also manage new issues and delays caused by the spread of the coronavirus, according to the Government Accountability Office.
Cybersecurity
Administration’s cyber defense plan stresses 'Made in USA'
To shore up the security of the energy sector, Department of Energy officials said they plan to replace foreign-made parts in U.S. bulk power systems that may pose a national security or economic risk.
Cybersecurity
NSA applies its talents to COVID-related security
The National Security Agency is working to protect its own critical activities, safeguard medical research and get the economy moving.
Cybersecurity
Zero trust doesn’t have to mean zero info sharing
As zero trust can limit data sharing that’s essential to many agency operations, it requires cooperation from both the technology and mission sides of the agency to work.
Cybersecurity
Fraudsters spoof CDC, IRS and other gov sites in phishing scams
Fraudsters are using phishing campaigns promising pandemic relief payments to lure Americans to fake websites and entice them to hand over their banking credentials.
