Anne Neuberger – Page 4 – WindowsTechs.com

Michael Sulmeyer, who held cyber posts under Trump and Obama, gets Biden White House gig

Posted on January 19, 2021 by Tim Starks

Michael Sulmeyer, a senior adviser to National Security Agency and U.S. Cyber Command leader Gen. Paul Nakasone, will take the position of senior director for cyber in the Biden White House. Sulmeyer’s selection came with no formal announcement. Instead, the transition website posted his position Monday evening. Sulmeyer is a cybersecurity veteran with broad experience, one of many to join the Biden administration. He’s also one of several whose tenures have included roles in the Trump administration. Beyond serving under Nakasone, he also served in the Obama administration at the Defense Department, where he was director for plans and operations for cyber policy. Between roles in the Trump and Obama administrations, he was director of the Belfer Center’s Cyber Security Project at the Harvard Kennedy School. He also wrote extensively for Lawfare on subjects like election security, federal cybersecurity strategy and DOD-related cybersecurity issues. In the past, the National Security […]

The post Michael Sulmeyer, who held cyber posts under Trump and Obama, gets Biden White House gig appeared first on CyberScoop.

Continue reading Michael Sulmeyer, who held cyber posts under Trump and Obama, gets Biden White House gig→

Rob Joyce named new NSA cybersecurity director

Posted on January 15, 2021 by Shannon Vavra

Rob Joyce, the National Security Agency’s special U.S. liaison officer at the U.S. Embassy in London, will replace Anne Neuberger as director in the agency’s Cybersecurity Directorate, the NSA announced Friday. The Biden transition team announced Wednesday that Neuberger will soon be joining the Biden administration as deputy national security adviser for cyber and emerging technology on the National Security Council (NSC). It was not immediately clear who would take on Joyce’s role as the NSA’s senior cryptologic representative in the U.K. Joyce has a long track record of working in cybersecurity leadership roles in the U.S. government. He previously served as senior advisor for cybersecurity strategy to the NSA director, and before that served as special assistant to the president and cybersecurity coordinator on the NSC at the White House. At the NSC Joyce was responsible for national and international cybersecurity strategy and policy for the government. His expertise in cyber-operations […]

The post Rob Joyce named new NSA cybersecurity director appeared first on CyberScoop.

Continue reading Rob Joyce named new NSA cybersecurity director→

Biden team taps NSA Cybersecurity Director Anne Neuberger for NSC

Posted on January 13, 2021 by Shannon Vavra

Anne Neuberger, the National Security Agency’s cybersecurity director, will be joining the Biden administration as deputy national security adviser for cyber and emerging technology, the Biden transition team announced Wednesday. Neuberger has been serving in her role as the director of the year-old Cybersecurity Directorate at the Pentagon’s foreign signals intelligence agency for just over a year, but she has a track record of leadership at the NSA. She has previously served as the lead on the NSA’s task force to counter Russian threats to U.S. elections, previously known as the “Russia Small Group,” as well as its chief risk officer. She has also overseen cyber-operations at the NSA during her time serving as assistant deputy director of the Operations Directorate. Neuberger’s selection could be a signal the Biden administration intends to prioritize cybersecurity issues at the NSC. The Biden transition team has already announced a whole slew of other […]

The post Biden team taps NSA Cybersecurity Director Anne Neuberger for NSC appeared first on CyberScoop.

Continue reading Biden team taps NSA Cybersecurity Director Anne Neuberger for NSC→

Biden transition fills some top cybersecurity personnel spots

Posted on January 8, 2021 by Tim Starks

The incoming Biden administration has spent the week heralding some of its cybersecurity-related personnel decisions, even as a couple key jobs remain a question mark. The Biden transition on Friday announced a slew of National Security Council picks. Among them is Caitlin Durkovich to serve as senior director for resilience and response, reflecting a similar role she once held at a Department of Homeland Security division that Congress later renamed and reorganized as the Cybersecurity and Infrastructure Security Agency. Andrea Kendall-Taylor will take the job of senior director for Russia and Central Asia, areas she worked on during a prior government stint in the intelligence community. “This outstanding team of dedicated public servants will be ready to hit the ground running on day one to address the transnational challenges facing the American people — from climate to cyber,” said Vice President-elect Kamala Harris. “They reflect the very best of our […]

The post Biden transition fills some top cybersecurity personnel spots appeared first on CyberScoop.

Continue reading Biden transition fills some top cybersecurity personnel spots→

The NSA is piloting a secure DNS service for the defense industrial base

Posted on June 18, 2020 by Shannon Vavra

In an effort to better protect the U.S. defense industrial base from malware-based threats, the National Security Agency has launched a pilot program on securing Domain Name System use for U.S. defense contractors. The NSA’s cybersecurity directorate has been working on the the pilot, called secure DNS, for six weeks, the directorate’s chief, Anne Neuberger, said during a virtual event Thursday. “Our analysis highlighted that using secure DNS would reduce the ability for 92% of malware attacks … from a command and control perspective, deploying malware on a given network,” Neuberger said. DNS, is the protocol by which IP addresses are translated to access specific websites with their more familiar domain names and URLs. Attackers have long exploited DNS to deliver malware to targets or run credential-stealing campaigns, according to security researchers and the Department of Homeland Security. Since the NSA Cybersecurity Directorate was established last fall, shoring up the cybersecurity of […]

The post The NSA is piloting a secure DNS service for the defense industrial base appeared first on CyberScoop.

Continue reading The NSA is piloting a secure DNS service for the defense industrial base→

Russian interference in 2016 election allowed for better information sharing, top DHS cyber official says

Posted on February 25, 2020 by Shannon Vavra

There was a time when the National Security Agency and the Department of Homeland Security primarily kept to themselves when it came to information sharing. That time is in the past. Two top government cybersecurity officials — Director of DHS’s Cybersecurity and Infrastructure Security Agency (CISA), Chris Krebs, and Anne Neuberger, the director of the NSA’s Cybersecurity Directorate — said Monday that information sharing and collaboration on cybersecurity issues has dramatically improved in recent years. “I really honestly think four-to-five years ago having a CISA … or NSA person sitting next to each other talking about how great things are — you would think you were in a really bizarre time,” Krebs said while speaking at San Francisco CyberTalks, an event produced by CyberScoop. “I don’t think we really had as close a partnership as it could have been.” Why has the relationship improved? Krebs said he attributes the bolstered collaboration between […]

The post Russian interference in 2016 election allowed for better information sharing, top DHS cyber official says appeared first on CyberScoop.

Continue reading Russian interference in 2016 election allowed for better information sharing, top DHS cyber official says→

The NSA discovered a severe flaw in Microsoft Windows 10

Posted on January 14, 2020 by Shannon Vavra

The National Security Agency recently uncovered a severe vulnerability in Microsoft’s Windows operating system, helping the company issue patches and publicly raise awareness instead of using the flaw for its intelligence operations. The flaw, for which Microsoft issued a patch, makes Windows 10 and Windows Server 2016/2019 “fundamentally vulnerable,” according to a NSA advisory. Listed as CVE-2020-0601, the vulnerability occurs because Microsoft Windows CryptoAPI fails to properly validate certificates that use elliptic curve cryptography, which may allow an attacker to spoof the validity of certificate chains. “The certificate validation vulnerability allows an attacker to undermine how Windows verifies cryptographic trust and can enable remote code execution,” the NSA’s advisory reads. Anne Neuberger, the Director of the NSA’s Cybersecurity Directorate, said on a call Tuesday that the vulnerability caused great concern inside the Department of Defense because it’s fundamental to the trust of critical systems throughout the DOD and the U.S. government. “We […]

The post The NSA discovered a severe flaw in Microsoft Windows 10 appeared first on CyberScoop.

Continue reading The NSA discovered a severe flaw in Microsoft Windows 10→

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

Posted on January 13, 2020 by BrianKrebs

Sources tell KrebsOnSecurity that Microsoft Corp. is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. Those sources say Microsoft has quietly shipped a patch for the bug to branches of the U.S. military and to other high-value customers/targets that manage key Internet infrastructure, and that those organizations have been asked to sign agreements preventing them from disclosing details of the flaw prior to Jan. 14, the first Patch Tuesday of 2020. Continue reading Cryptic Rumblings Ahead of First 2020 Patch Tuesday→

NSA: ‘We know we need to do some work’ on declassifying threat intel

Posted on October 24, 2019 by Shannon Vavra

One of the National Security Agency’s newly minted Cybersecurity Directorate’s goals is quickly share information on adversarial threats with the private sector — but the process for doing that needs to be refined, the directorate’s leader said Thursday. “The process in place today is where we know we need to do some work,” Anne Neuberger said while speaking at CyberTalks, produced by CyberScoop. “When we find indications of a threat, we see planning to execute a particular operation, or we see the operation being executed. [But] because we learn about it in a classified way, we treat it as classified.” Part of the difficulty the NSA faces is adversaries often run operations and then discard their compromised infrastructure, making a protracted declassification process near useless since “indicators of compromise pretty much they have a ticking time clock for how useful they are,” Neuberger said. The new directorate, which started operations […]

The post NSA: ‘We know we need to do some work’ on declassifying threat intel appeared first on CyberScoop.

Continue reading NSA: ‘We know we need to do some work’ on declassifying threat intel→

‘Kicking out the adversary’ is part of new Cybersecurity Directorate’s mission, NSA says

Posted on October 11, 2019 by Shannon Vavra

The National Security Agency’s new Cybersecurity Directorate, charged with helping protect the defense industrial base and sensitive government computers by providing insights on foreign hackers, is now at initial operating capability, senior NSA officials informed reporters at a rare briefing Thursday at Fort Meade. Just this week the fledgling directorate took one of its first public actions, issuing an unclassified alert about nation-state hacking groups actively exploiting vulnerabilities on virtual private networks. Beyond the usual job of such alerts — identifying the bugs and recommending mitigations — the directorate made a point to provide ways for organizations to check whether they have been victimized, something the directorate intends to continue in unclassified ways moving forward. “We need to be sure that people who own networks that are vital to the national security systems and defense systems of this nation can figure out if adversaries have gained access into their networks,” NSA spokesperson Natalie Pittore said. “It’s about […]

The post ‘Kicking out the adversary’ is part of new Cybersecurity Directorate’s mission, NSA says appeared first on CyberScoop.

Continue reading ‘Kicking out the adversary’ is part of new Cybersecurity Directorate’s mission, NSA says→