Cybersecurity bills targeted at addressing vulnerabilities in open-source software and satellites have been approved by the House and Senate Homeland Security Committees, reports The Record, a news site by cybersecurity firm Recorded Future.
Bipartisan legislation mandating the Cybersecurity and Infrastructure Security Agency to create a risk framework for open-source software usage in the federal government has been advanced by the House panel to accompany a measure approved by the Senate panel in March, which also seeks to significantly mitigate open-source vulnerabilities that have gained the spotlight following the widespread Log4j hack.
The House panel has also passed a measure that would order CISA to provide a cybersecurity training program for Department of Homeland Security employees not involved in cybersecurity.
Meanwhile, the Senate Homeland Security Committee has advanced a bipartisan measure that would provide better cyber defenses to satellite owners and operators by compelling CISA to provide threat information and resources.
Another bipartisan bill creating a civilian cybersecurity reserve pilot program has been passed by the Senate panel.
Twenty-five percent of operational technology organizations in the U.S., and other parts of the world have evaded data breaches this year, compared with only 6% in 2022, mostly due to the 17% decline in insider breaches from 2022 to 2023, reports SecurityWeek.
Several U.S. defense and government organizations have been targeted by state-backed Chinese hacking group Bronze Silhouette, also known as Volt Typhoon, for military intelligence over a period of at least two years, according to The Record, a news site by cybersecurity firm Recorded Future.