A joint FBI/CISA advisory highlighting Snatch’s evolving tactics coincided with the group alleging it had compromised the Florida Department of Veterans’ Affairs.

A hearing ostensibly focused on CISA's CDM and EINSTEIN cybersecurity programs took a detour as witnesses strongly warned Congress that a shutdown could imperil federal cybersecurity efforts.

According to a relator and the federal government, Penn State has been falsely claiming their adherence to NIST cybersecurity standards for years.

The Cybersecurity and Infrastructure Security Agency officials hope plan will lead to better tracking and spur quick action when a vulnerability is disclosed.

The tax agency is making due for now with voluntary memorandums of agreement between certain agencies that allow them to provide the kind of inspections and oversight.

A quartet of senators introduced The Small Business Cyber Resiliency Act that would establish a new Central Small Business Cybersecurity Unit within the Small Business Administration.

The compromise of a Microsoft engineer’s account was just one of several factors that allowed threat group Storm-0558 to steal a cryptographic signing key and access U.S. government accounts.

The strategy is designed to focus federal resources towards better investment in a range of emerging technologies while also building an environment for innovation and a stable of qualified domestic workers for businesses and governments to tap.

On the disclosure front, one of the biggest questions businesses have had centers around “materiality,” or how the SEC will define a covered incident.

Rep. Andrew Garbarino, who chairs the House's Homeland cyber subcommittee, expressed concerns that two well-respected information sharing organizations may be getting squeezed out of their leading roles by CISA in favor of its own Joint Cyber Defense Collaborative.