Reps. Nancy Mace, R-S.C., and Mike Bost, R-Ill., unveiled the Veterans' Cyber Risk Awareness Act to help protect former U.S. military members against identity theft, fraud and scams, which are rampant in social media or the internet, according to Nextgov. This legislation will mandate the Veterans Affairs secretary to develop a campaign that would educate the veterans. "Over the past several months, we've learned a great deal about the prevalence of violent extremist groups in our country and their efforts to prey on our nation's veterans," said Mace. "Veterans are not only targets of scammers and con artists for financial purposes, but also victims of extremists looking to take advantage of our retired troops." The bill, once passed, will also require the VA to maintain a public website that contains information on the cyber risks the veterans could face and how they could report such incidents. Bost added that the bill "will make sure veterans have the information and resources they need to protect themselves. It will also provide an objective look at the potential dangers they face online."
Jill Aitoro is senior vice president of content strategy for CyberRisk Alliance. She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.
Several U.S. defense and government organizations have been targeted by state-backed Chinese hacking group Bronze Silhouette, also known as Volt Typhoon, for military intelligence over a period of at least two years, according to The Record, a news site by cybersecurity firm Recorded Future.
Russian, North Korean, and Iranian advanced persistent threat operations have been launching more attacks aimed at compromising small- and medium-sized businesses, as well as their regional managed service providers, reports SecurityWeek.