Intelligence bill would elevate ransomware to a terrorist threat

Amid a rash of ransomware attacks, the Senate Intelligence Committee wants to treat the phenomenon like terrorism.

The post Intelligence bill would elevate ransomware to a terrorist threat appeared first on CyberScoop.

Continue reading Intelligence bill would elevate ransomware to a terrorist threat

$858 billion defense bill focuses heavily on cyber. These are some highlights.

The National Defense Authorization Act omits some efforts such as one to compel federal contractors to provide software bills of material.

The post $858 billion defense bill focuses heavily on cyber. These are some highlights. appeared first on CyberScoop.

Continue reading $858 billion defense bill focuses heavily on cyber. These are some highlights.

Langevin amendment to boost cyber defenses for critical infrastructure wins House approval

The designated entities will be required to report how they manage cyber risk for critical assets.

The post Langevin amendment to boost cyber defenses for critical infrastructure wins House approval appeared first on CyberScoop.

Continue reading Langevin amendment to boost cyber defenses for critical infrastructure wins House approval

CISA’s advisory panel is announced, set to make recommendations on major cyber topics

The Cybersecurity and Infrastructure Security Agency on Wednesday named members to a new cyber advisory panel that will make recommendations on subjects ranging from battling misinformation to gaining aid from the hacker community on national cyber defense. Among the 23 members selected are leaders from social media, cybersecurity companies, major technology firms and critical infrastructure sectors such as finance and energy. It includes officials from Johnson & Johnson and Walmart, as well as a longtime cybersecurity journalist and the mayor of Austin, Texas. “We’re at a pivotal moment in our history — one that demands we think anew about ensuring the security and resilience of our digital infrastructure in the face of increasingly sophisticated cyber threats,” said CISA Director Jen Easterly, whose agency is a part of the Department of Homeland Security. “I look forward to partnering with these distinguished leaders from across industry, academia, and government to tackle some […]

The post CISA’s advisory panel is announced, set to make recommendations on major cyber topics appeared first on CyberScoop.

Continue reading CISA’s advisory panel is announced, set to make recommendations on major cyber topics

Deepfake laws emerge as harassment, security threats come into focus

A new flurry of state and federal legislation that aims to better understand the creation of doctored video and audio files — and help victims respond — couldn’t have come soon enough, analysts say.  The manipulated content, better known as deepfakes, has been used to falsely portray House Speaker Nancy Pelosi as ill or inebriated in a video that went viral in 2019. Other examples include a faked video of former president Obama, and an artificial intelligence service that has been enabling users to transform photos of women into nude pictures, enabling abuse, blackmail and other kinds of harassment.  Potential malicious uses of deepfakes include fraud, inciting acts of violence or sowing political unrest. Last week, several Trump supporters proposed on Parler that Trump’s concession speech may have been a manipulated video. The chatter is only more evidence that the existence of deepfakes, and the lack of truly effective screening […]

The post Deepfake laws emerge as harassment, security threats come into focus appeared first on CyberScoop.

Continue reading Deepfake laws emerge as harassment, security threats come into focus

Biden transition fills some top cybersecurity personnel spots

The incoming Biden administration has spent the week heralding some of its cybersecurity-related personnel decisions, even as a couple key jobs remain a question mark. The Biden transition on Friday announced a slew of National Security Council picks. Among them is Caitlin Durkovich to serve as senior director for resilience and response, reflecting a similar role she once held at a Department of Homeland Security division that Congress later renamed and reorganized as the Cybersecurity and Infrastructure Security Agency. Andrea Kendall-Taylor will take the job of senior director for Russia and Central Asia, areas she worked on during a prior government stint in the intelligence community. “This outstanding team of dedicated public servants will be ready to hit the ground running on day one to address the transnational challenges facing the American people — from climate to cyber,” said Vice President-elect Kamala Harris. “They reflect the very best of our […]

The post Biden transition fills some top cybersecurity personnel spots appeared first on CyberScoop.

Continue reading Biden transition fills some top cybersecurity personnel spots

Lawmakers throw cold water on splitting Cyber Command from NSA

Although Pentagon officials have suggested in recent days that the nation’s offensive cyber arm should split away from the National Security Agency, Cyber Command is a long way from being ready to stand on its own, according to a bipartisan group of lawmakers. The proposal, which some DOD officials have been entertaining in the last several days, would separate out the command from the Department of Defense’s foreign signals intelligence agency, which it has been co-located with for 10 years in order to help it find its footing. Both the NSA and Cyber Command are currently run by the same leader, Gen. Paul Nakasone, and some critics say the Trump administration has been interested in separating the two in order to carve out a leadership spot for a political ally at the helm of the NSA before his time in the Oval Office expires, according to The Washington Post. But […]

The post Lawmakers throw cold water on splitting Cyber Command from NSA appeared first on CyberScoop.

Continue reading Lawmakers throw cold water on splitting Cyber Command from NSA

Republican senators ask DOT, FAA to cease using Chinese drones

A group of Republican senators sent a letter to the Department of Transportation and the Federal Aviation Administration Wednesday asking them to exclude Chinese drones, particularly DJI drones, from future partnerships due to national security concerns. The letter comes days after one of the participants in the FAA’s Unmanned Aircraft System Integration Pilot Program announced it would be working with DJI drones, which the U.S. government has found to contain vulnerabilities that could allow adversaries to steal sensitive data — or to even take control of their systems. “We … urge you to immediately restrict the use of this equipment and technology that has the potential to jeopardize the security of critical information and infrastructure gained through this and other FAA programs,” the Senators write. “American taxpayer dollars should not fund state-controlled or state-owned firms that seek to undermine American national security and economic competitiveness.” The authors of the letter — Sens. Tom […]

The post Republican senators ask DOT, FAA to cease using Chinese drones appeared first on CyberScoop.

Continue reading Republican senators ask DOT, FAA to cease using Chinese drones

Congressional pressure builds for White House to share classified cyber authorizations

Almost one year after President Donald Trump issued a classified memorandum that has made it easier for the Pentagon to run offense cyber-operations against U.S. adversaries, lawmakers still haven’t seen the details of the memorandum, and they want the White House to change course. Thursday evening the House of Representatives added a provision to the National Defense Authorization Act that would compel the White House to turn over the memorandum as well as any others relating to the Pentagon’s cyber-operations.  The amendment was part of an “en bloc” package, meaning both sides accepted by voice vote without debate, signaling to the White House just how much interest there is — on both sides of the aisle — in allowing the legislative branch to see the memorandum. Part of the concern is that with increased authorizations to run offensive operations against adversaries, the administration runs the risk of escalating tensions with adversaries in cyberspace without proper Congressional oversight, […]

The post Congressional pressure builds for White House to share classified cyber authorizations appeared first on CyberScoop.

Continue reading Congressional pressure builds for White House to share classified cyber authorizations

House’s defense bill looks to protect Pentagon’s tech supply chain

The cybersecurity proposals in the House Armed Services Committee’s draft of the national defense bill for fiscal 2020 include provisions that would create new directives on the Department of Defense’s tech acquisitions and supply chain. Chairman Adam Smith’s mark of the National Defense Authorization Act (NDAA), issued Monday, seeks to prevent the DOD from acquiring foreign telecommunications and video surveillance equipment from companies that could pose security risks to the Pentagon. The provision effectively would ban or suspend contractors and subcontractors from doing business with not just the Pentagon but also the entire U.S. government, too. Chinese-based companies Huawei and ZTE, both of which have been under intense scrutiny by the Trump administration, are not directly named in the provision. The measure appears to align with an executive order the White House issued just last month that seeks to bar U.S. companies from using telecommunications equipment made by foreign firms, with the concern that the gear […]

The post House’s defense bill looks to protect Pentagon’s tech supply chain appeared first on CyberScoop.

Continue reading House’s defense bill looks to protect Pentagon’s tech supply chain