Collaborate Disseminate
Attacks against critical infrastructure are reaching new heights, but strategy documents outlining federal efforts are a decade old.
The post White House needs to urgently fix nation’s approach to protecting critical infrastructure, group says appeared first on CyberScoop.
Efforts at CISA and the Department of Energy are both meant to encourage the practice of building in better security protections.
The post US cybersecurity officials step up push for companies to adopt secure by design practices appeared first on CyberScoop.
Cybersecurity experts told Congress on Thursday that the unknown amount of Chinese-made grid equipment poses a risk to the energy sector.
The post Dependence on Chinese-made tech threatens US grid, experts warn appeared first on CyberScoop.
Continue reading Dependence on Chinese-made tech threatens US grid, experts warn
Puesh Kumar, director of the Office of Cybersecurity, Energy Security, and Emergency Response, discusses how the DOE fends off hackers.
The post The Energy Department’s Puesh Kumar on grid hacking, Ukraine and Pipedream malware appeared first on CyberScoop.
Continue reading The Energy Department’s Puesh Kumar on grid hacking, Ukraine and Pipedream malware
Dragos says the group behind the tools has a “breadth of knowledge” that’s “beyond” any previously witnessed.
The post Feds warn about foreign government-connected hackers aiming to disrupt vital industrial systems appeared first on CyberScoop.
The incident reporting legislation, long in the works, also comes with nearly $2.6 billion for the agency for fiscal 2022.
The post Major cyber incident reporting requirement, CISA budget hike on precipice of becoming law appeared first on CyberScoop.
The Biden administration is requesting additional funds from Congress to help Ukraine with its digital defenses, strengthen cybersecurity in Europe and enhance U.S. capabilities to respond to the fallout from the Russian invasion. The overall fiscal 2022 supplemental request, sent to Capitol Hill this week, seeks $10 billion in Ukraine-related needs and $22.5 billion in funding related to COVID-19. Among the bigger pots of cybersecurity-focused funding the administration is requesting is $1.25 billion for the Defense Department to assist Ukraine with support on “operational surges across multiple national defense components, including accelerated cyber capabilities, weapons systems upgrades, increased intelligence support, and classified programs.” A $1.75 billion request for the State Department to provide economic aid to Ukraine includes support for “continuity of government” and resilience work, including cybersecurity and efforts to counter disinformation. Other funds sought for Ukraine assistance include Department of Energy money to evaluate cybersecurity needs for connecting Ukraine’s […]
The post Biden administration seeks money to bolster Ukraine war-related cybersecurity at home, abroad appeared first on CyberScoop.
Tech giants and federal agencies will meet at the White House on Thursday to discuss open-source software security, a response to the widespread Log4j vulnerability that’s worrying industry and cyber leaders. Among the attendees are companies like Apple, Facebook and Google, as well as the Apache Software Foundation, which builds Log4j, a ubiquitous open-source logging framework for websites. “Building on the Log4j incident, the objective of this meeting is to facilitate an important discussion to improve the security of open source software — and to brainstorm how new collaboration could rapidly drive improvements,” a senior administration official said in advance of the meeting. The huddle convenes in light of a vulnerability discovered last month known as Log4Shell that could affect up to hundreds of millions of devices, and as federal officials, businesses and security researchers race to contain the potential fallout. It’s the latest of several Biden White House summits […]
The post White House hosts open-source software security summit in light of expansive Log4j flaw appeared first on CyberScoop.
Presdent Joe Biden signed a $1 trillion infrastructure bill into law on Monday that includes nearly $2 billion for cybersecurity and related provisions. The biggest piece of digital security funding is a Federal Emergency Management Agency cyber grant program, administered in consultation with the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, that would distribute $1 billion over four years to state and local governments. An additional $21 million would go toward the Office of the National Cyber Director, which has been unable to make key hires since being established earlier this year due to funding shortages. In all, the legislation — known as the Infrastructure Investment and Jobs Act — is “the largest investment in the resilience of physical and natural systems in American history,” the White House boasted, one that “makes our communities safer and our infrastructure more resilient to the impacts of climate change and cyber-attacks.” […]
The post Biden signs infrastructure bill that provides nearly $2 billion for cybersecurity appeared first on CyberScoop.
Continue reading Biden signs infrastructure bill that provides nearly $2 billion for cybersecurity
President Joe Biden will huddle Wednesday with industry leaders to issue a “call to action” on cybersecurity and make “concrete announcements” to counter the fundamental causes of cyberattacks, according to a senior administration official. It’s a star-studded afternoon gathering scheduled to include the likes of Apple CEO Tim Cook and JPMorgan Chase CEO Jamie Dimon from the financial, technology, energy, insurance and education sectors, then feature discussions led by top administration officials. The White House has been working to secure commitments from industry in advance of the meeting, mostly in the areas of “technology and talent,” the official said in a background call with reporters on Tuesday. Two points of emphasis, the official said, are building technology that is secure from the outset, and better defending critical infrastructure after the ransomware attack on Colonial Pipeline led to a fuel scare. “We need to bake in security by design into tech,” […]
The post Apple, JPMorgan Chase bosses among industry heads set to gather at White House for cyber ‘call to action’ appeared first on CyberScoop.