An industrial control system cybersecurity initiative established by the Biden administration for the electric and pipeline industries will be expanded to include critical infrastructure entities in the water and wastewater sectors.

The America COMPETES Act, released Tuesday by House Speaker Nancy Pelosi, D-Calif., includes $52 billion in financial incentives to entice semiconductor manufacturers to set up shop in the United States.

The $6.8 million project is expected to align DoD with President Joe Biden's cybersecurity executive order while emphasizing data protection and newer technologies like secure access service edge (SASE) and software-defined wide-area networks (SD-WAN).

The Federal Energy Regulatory Commission is considering mandating owners and operators of bulk electric systems to implement internal network security monitoring.

An IRS plan to use ID.me and facial recognition software would represent "a massive expansion" of the federal government's (long and controversial) biometric surveillance record and carries real privacy and cybersecurity concerns, experts say.

A law originally designed to push IT modernization in the federal government should be used to evaluate how agencies are meeting a number of government-wide cybersecurity goals, from modernization and supply chain threats to implementing post-quantum encryption protocols, experts told Congress.

The White House memo places the NSA in a role similar to the one the Cybersecurity and Infrastructure Security Agency (CISA) plays among federal civilian agencies.

Congress will lose a substantial chunk of its cyber expertise as Reps. Jim Langevin, John Katko and others eye the exits.

The new malware, which is designed to mimic the appearance of ransomware but includes no mechanism for ransom recovery, has not been tied to any currently tracked APT group or nation, but was found in “dozens” of Ukrainian systems across the government, non-profit and information technology sectors.

The arrests of REvil members are viewed as "significant" and have all but wiped out the group's remaining IT infrastructure, but they're also likely part of a broader conversation happening between Russia and the United States over Ukraine, a potential Russian invasion and the threat of sanctions.