CGI Federal said the data breach that affected the Government Accountability Office was caused by a vulnerability in the Atlassian Confluence suite. According to Mercedes Marx, a spokesperson for CGI, the Cybersecurity and Infrastructure Security Agency singled out the Atlassian Confluence vulnerability in October. The company said it took immediate remediation upon receiving CISA’s warning […]
Threat intelligence company OpenText has announced its entry into the Joint Cyber Defense Collaborative, a public-private group founded by the Cybersecurity and Infrastructure Security Agency. The JCDC is tasked with strengthening the cybersecurity posture of the United States and its international allies, OpenText said. The group aims to protect the government’s sensitive data by promoting […]
The Department of Justice’s Office of Public Affairs has announced the seizure of internet domains selling the Warzone remote access trojan malware, which enables covert intrusions into computers to steal credentials, take screenshots and watch users through their webcams. Investigations by the FBI’s Boston and Atlanta field offices led to the indictment of two individuals […]
Sens. Mark Warner, D-Va., and John Thune, R-S.D., introduced on Wednesday the Drone Evaluation to Eliminate Cyber Threats Act, a bill that will require the National Institute of Standards and Technology to create a guidebook on the use and management of civilian-made unmanned aircraft systems owned or controlled by an agency and regularly used to […]
The U.S. Marine Corps Recruiting Command has granted breach and attack simulation solutions provider AttackIQ a continuous authorization to operate, enabling the command to support continuous active penetration testing. Thurman Dubberly, deputy chief information officer at MCRC, said the partnership with AttackIQ will enable the command to provide near-real-time answers to whether an organization is […]
National Cyber Director Harry Coker has revealed that his office is developing liability regimes to hold software makers responsible for flawed code. He told attendees of a recent Information Technology Industry Council conference that the Office of the National Cyber Director aims to figure out software measurability issues that make it difficult to understand code quality, The Record reported. Another […]
The Cybersecurity and Infrastructure Security Agency, the National Security Agency, the FBI and domestic and international agencies have released a joint cybersecurity advisory on Volt Typhoon, a China-backed hacker group found to have attacked U.S. critical infrastructure. Volt Typhoon has compromised communications, energy, transportation and water and wastewater entities, CISA said Wednesday. According to the agency, data […]
Government officials said the Cybersecurity and Infrastructure Security Agency could enhance its network security support for other agencies. Speaking at a Center for Strategic and International Studies-hosted event, Jeff Spaeth, deputy chief information officer at the Department of Veterans Affairs, said CISA could improve the speed at which it notifies agencies about new vulnerabilities in a vendor’s […]
The Department of Veterans Affairs’s deputy chief information security officer said cyber resilience should be one of the priorities federal agencies consider when modernizing systems. Speaking at a Center for Strategic and International Studies-hosted event, Amber Pearson shared that several agencies still use outdated systems and need to look at which areas should be prioritized […]
The National Centers of Academic Excellence in Cybersecurity has designated the University of Alabama in Huntsville as a Center of Academic Excellence in Cyber Research for the second time. Tommy Morris, director of the university’s Center for Cybersecurity Research and Education, said that the designation allows the institution to be at the cutting edge of […]
