CISA launches ransomware education program
The effort encourages governments, schools and private companies to take steps to protect their systems and data from ransomware.
The effort encourages governments, schools and private companies to take steps to protect their systems and data from ransomware.
Cybersecurity experts remain skeptical that the newfound funding focus will be enough to draw the necessary talent.
The number of SolarWinds victims will likely grow in the upcoming months, but direct insured costs should remain close to the current estimate since many of the organizations hit – particularly federal agencies – do not carry insurance against cyber risks.
NSA’s Anne Neuberger will assume her new role on the heels of some other shifts among cyber leaders: John Costello resigned as deputy assistant secretary for intelligence and security at the Commerce Department, and ousted CISA director Chris Krebs is heading to SolarWinds.
The agency has found evidence of authentication token abuse in networks infected with corrupted versions of Orion software and say restoring integrity will require a full network rebuild in certain cases.
Contributing $5.4 trillion to the U.S. economy, the maritime transportation system will adhere to guidelines for threat information sharing, creating a cybersecurity workforce, and establishing a risk framework for operational technology.
While much is speculative, a few aspects of how the government may handle interactions with the private sector on information security have begun to crystalize.
The DHS advisory covers the various Chinese laws allowing Beijing to access data with employees, leadership, or ownership within its borders.
The department formally confirmed the hackers’ tentacles had reached into the agency, but that the malware injected had been isolated to its business networks. Some security experts argue, however, that visibility into the IT network may give hackers a path to the OT network.
The incoming Biden administration may see several opportunities to take up the cause, potentially devoting significant federal resources to researching and defending critical infrastructure and critical supply chain components like SolarWinds, and demanding more of vendors.