Collaborate Disseminate
Jennifer Martin and Calvin Cohen write: On January 9, the House of Representatives passed the Cyber Vulnerability Disclosure Reporting Act by voice vote. The Act directs the Secretary of the U.S. Department of Homeland Security (“DHS”) to prepare a re… Continue reading House Passes Cyber Vulnerability Disclosure Reporting Act
We have a successful track record protecting federal government customers from known and unknown attacks Leading government security awards program recognizes Bromium’s continued commitment to the public sector Bromium provides defense-grade prot… Continue reading Bromium Honored for Excellence in Government Cybersecurity
The Department of Homeland Security has notified more than 240,000 current and former employees of a data breach that was discovered as part of a criminal investigation into the actions of a former staff member of the Office of the Inspector General. In a letter sent to affected employees on Wednesday, DHS says an unauthorized copy of its investigative case management system was found in the possession of a former DHS OIG employee. The department says the data included information on “approximately 247,167 current and former federal employees that were employed by DHS in 2014.” The agency says the breach, which it categorizes as a “privacy incident,” did not stem from an external cyberattack. The exposed data also included information on “subjects, witnesses, and complainants associated with DHS OIG investigations from 2002 through 2014.” The breached data was not exposed to malicious activity, DHS said. Despite learning about the breach in May, DHS […]
The post DHS confirms data breach affecting more than 240,000 current and former employees appeared first on Cyberscoop.
Continue reading DHS confirms data breach affecting more than 240,000 current and former employees
The Department of Homeland Security has notified more than 240,000 current and former employees of a data breach that was discovered as part of a criminal investigation into the actions of a former staff member of the Office of the Inspector General. In a letter sent to affected employees on Wednesday, DHS says an unauthorized copy of its investigative case management system was found in the possession of a former DHS OIG employee. The department says the data included information on “approximately 247,167 current and former federal employees that were employed by DHS in 2014.” The agency says the breach, which it categorizes as a “privacy incident,” did not stem from an external cyberattack. The exposed data also included information on “subjects, witnesses, and complainants associated with DHS OIG investigations from 2002 through 2014.” The breached data was not exposed to malicious activity, DHS said. Despite learning about the breach in May, DHS […]
The post DHS confirms data breach affecting more than 240,000 current and former employees appeared first on Cyberscoop.
Continue reading DHS confirms data breach affecting more than 240,000 current and former employees
Gregory Bautista, Jeremy T. Merkel, and Alex Moh of Wilson Elser Moskowitz Edelman & Dicker LLP write: Senate Democrats have introduced a third iteration of a federal data breach notification bill, the Data Security and Breach Notification Act of 2… Continue reading (Another) Federal Data Breach Notification Law Introduced in Congress
Jason C. Gavejian writes: The United State Supreme Court recently denied certiorari in Nosal v. United States, 16-1344, declining to weigh in on the scope of unauthorized access under the Computer Fraud and Abuse Act (“CFAA”). The Ninth Circuit held in Nosal that David Nosal violated the CFAA by using his past assistant’s password to […] Continue reading SCOTUS Will Not Review CFAA Password Sharing Case
A senior U.S. official pushed back against a Democratic senator’s criticism Thursday concerning the 90-day timeframe provided by the Department of Homeland Security for federal agencies to uninstall Kaspersky Lab products after the technology was linked to Russian intelligence efforts. In an open congressional hearing Thursday, Missouri Sen. Claire McCaskill questioned why the Homeland Security Department would offer such a grace period when the threat of foreign espionage is apparently evident. She implied that the Kremlin, if found in a similar situation, would be handling the situation much more rapidly. “You’re giving them a long time,” said McCaskill. “Do you think if this happened in Russia, if they found a system of ours was looking at all their stuff, that they would give their government 90 days to remove it? Seriously? The point I am making I mean is that why don’t you just say you have to remove it […]
The post Senator questions DHS’s handling of Kaspersky software ban in federal agencies appeared first on Cyberscoop.
Continue reading Senator questions DHS’s handling of Kaspersky software ban in federal agencies
The Department of Homeland Security is promising to better coordinate with state and local government officials in efforts to defend election systems from hackers in the upcoming 2018 congressional campaign season. The pledge, by acting Secretary Elaine Duke, comes after a chaotic 2016 cycle which saw hackers probe and in some cases breach voter registration databases in multiple states. There is no publicly available evidence to suggest that election results were significantly altered as a result of these intrusions. Duke spoke Wednesday on Capitol Hill alongside FBI Director Christopher Wray and Nicholas Rasmussen, director of the National Counterterrorism Center, in a congressional hearing focused on existing homeland security threats. At one point, lawmakers pressed Duke and Wray to answer how their individual agencies were preparing for possible cyberattacks against election systems in the coming year — especially those that could go further and potentially impact voting tallies. Duke highlighted the role DHS […]
The post DHS, FBI promise to improve defense of election systems ahead of 2018 campaign season appeared first on Cyberscoop.
AP reports what I’ve basically been telling everyone already. Prospects are good for a public shaming in the Equifax data breach, but it’s unlikely Congress will institute sweeping new regulations after hackers accessed the personal information of an estimated 143 million Americans. Since early this year, President Donald Trump and the Republican-led Congress have strived […] Continue reading Public shaming likely but GOP wary of new laws after Equifax breach
Chris Sanders reports: U.S. Senator Elizabeth Warren said on Friday she has begun an investigation into Equifax’s (EFX.N) massive data breach and, along with 11 other Democratic senators, will introduce a bill to give consumers the ability to freeze their credit for free. Warren, who has built a reputation as a champion of consumers and […] Continue reading Senator Warren introduces Equifax bill; launches industry probe