Cyber
Former CISA leader joins cyber technology group
Matt Hartman, former acting head of cyber at the Cybersecurity and Infrastructure Security Agency (CISA), will join Merlin Group, a network of affiliates investing in cyber technology companies, as its chief strategy officer, officials said. Hartman’s appointment will strengthen Merlin... Read More »
South Carolina National Guard Brigadier General selected for leadership role at Army Cyber Center
The U.S. Army Cyber Center of Excellence has named Brigadier General Linda J. Riedel of the South Carolina National Guard to serve as its deputy commanding general. Officials said Riedle is expected to begin serving as the DCG in addition to her Brigadier General role, in January 2026. A... Read More »
Georgia Tech Research Corp. agrees to $875,000 fine over cybersecurity lapses
The U.S. Department of Justice (DOJ) announced Georgia Tech Research Corporation (GTRC) agreed to pay $875,000 to resolve allegations it violated federal law. According to the DOJ, the corporation failed to meet cybersecurity requirements with certain Air Force and Defense Advanced Research... Read More »
CISA announces funding tools to support state and local governments
The Cybersecurity and Infrastructure Security Agency (CISA) announced it would use a new model to equip state, local, tribal and territorial governments with funding, tools and expertise to combat cyber threats. CISA said its cooperative agreement with the Center for Internet Security ended on... Read More »
October is Cybersecurity Awareness Month
October is Cybersecurity Awareness Month and this year’s theme is Building a Cyber Strong America, The Cybersecurity and Infrastructure Security Agency (CISA) announced this week. CISA will provide partner agencies and the private sector with tools, support and information to secure vital... Read More »
AI firm Guidehouse announces leadership expansions
Guidehouse, a global AI-led professional services firm, announced it has expanded its defense and security segment by adding two professionals with more than 40 years of experience to its leadership. Nirali Chawla and Angel Wange will join the company as Partners to drive modernization and... Read More »
New York to award cybersecurity grants to local governments
New York Gov. Kathy Hochul said the state would make more than $13.9 million in Infrastructure Act Grant funding available to eligible entities to apply for multi-factor authentication tokens. Hochul said New York is accepting request for applications for the tokens, and that the RFA was... Read More »
War Department announces cybersecurity defense framework
The U.S. War Department (DoW) will implement a new Cybersecurity Risk Management Construct (CSRMC) to harden defenses against cyber-attacks directed at military assts. The CSRMC is a five-phase construct designed to deliver real-time cyber defense at operational speed, officials said. The... Read More »
Casapulla named CISA’s Executive Assistant Director for Infrastructure Security
Stephen Casapulla, former Director for Critical Infrastructure Cybersecurity in the Office of the National Cyber Director, will serve as the Executive Assistant Director for Infrastructure Security, the Cybersecurity and Infrastructure Security Agency (CISA) announced Tuesday. Casapulla comes to... Read More »
Sen. Peters urges Congress to extend expiring cybersecurity protections
U.S. Sen. Gary Peters spoke on the Senate floor Friday to advocate for the extension of cybersecurity protections that are set to expire on Oct. 1. Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, said the Cybersecurity Information Sharing Act of 2015 has... Read More »
Governors’ association joins local leaders in urging Congress to preserve state, local cyber security grants
On Wednesday, the National Governor’s Association joined local and state leaders to sign a letter pushing for the preservation of cyber security grants. The letter, sent to Congressional leaders, asks Congress to reauthorize the State and local Cyber Security Grant Program that provides local... Read More »
GAO report: Cybersecurity organizations in DOD have opportunities to consolidate
A new report from the U.S. Government Accountability Office has found that some organizations within the U.S. Department of Defense overlap and could benefit from consolidation. In a study of more than 440 organizations within the DOD that conduct cybersecurity operations, the GAO found that... Read More »
Check Point acquires Lakera for end-to-end AI security platform
California-based Check Point Software Technologies announced it had agreed to acquire Lakera, one of the world’s largest AI-native security platforms for Agentic AI applications. The acquisition will allow Check Point to deliver one of the industry’s most advanced AI-native security... Read More »
Cyber technology key to Army’s future, branch cyber adviser says
Cyber technology is key to the U.S. Army’s transformation and to defending critical infrastructure, Brandon Pugh, principal cyber adviser to the secretary of the Army, said at the Billington CyberSecurity Summit on Sept. 11. “This is our effort to make sure the Army is adapting to the future... Read More »
CrowdStrike, Meta launch new AI benchmarking tool for cybersecurity teams
Cybersecurity leader CrowdStrike has teamed up with Meta to release CyberSOCEval, a new set of open-source benchmarks that measure how well artificial intelligence (AI) systems perform in real-world cybersecurity operations. The tool combines Meta’s CyberSecEval framework with CrowdStrike’s... Read More »
Survey shows operational technology leaders expect disruptive cyber incident with the year
A new study by MeriTalk and Claroty found that despite rising investment in secure operational technology, nearly two-thirds of federal operational technology (OT) leaders expect to see a disruptive cyber incident within the year. The study, “Guardians of Government, Vol. 2: Fortifying the... Read More »
CISA document outlines priorities for cyber vulnerabilities, exposures program
The Cybersecurity and Infrastructure Security Agency (CISA) recently released a document identifying priorities that will elevate the Common Vulnerabilities and Exposures (CVE) Program to meet the needs of the global cybersecurity community. Feedback the agency received from domestic and... Read More »
International partnership releases guide on software bill of materials
The Cybersecurity and Infrastructure Security Agency (CISA) joined the National Security Agency (NSA) and 19 other international partners to release a joint guide on the value of implementing a software bill of materials (SBOM). The group said the guide lets producers of software, organizations... Read More »
Treasury Department sanctions Southeast Asian network cyber scams
The U.S. Treasury Department’s Office of Foreign Assets Control announced it has implemented sanctions against large scam centers across Southeast Asia. The centers allegedly use forced labor and violence to scam Americans out of billions of dollars, officials said. The latest action includes... Read More »
Navy Rear Adm. Heidi Berg named as Fleet Cyber commander
Secretary of Defense Pete Hegseth on Sept. 5 announced that President Donald Trump has nominated Navy Rear Adm. Heidi K. Berg as Fleet Cyber Command/commander, and Tenth Fleet/commander, Navy Space Command, in Fort Meade, Md. Berg is currently serving as deputy commander of both the Fleet Cyber... Read More »
Legislation would re-authorize cybersecurity tools
The House Committee on Homeland Security recently advanced two bills that would re-authorize and update two vital cybersecurity tools the Department of Homeland Security (DHS) uses before they expire. The Widespread Information Management for the Welfare of Infrastructure and Government Act... Read More »
Legislation to address online radicalism passes out of committee
U.S. Rep. August Pfluger (R-TX) said his bill to address terror threats posed by online radicalization has passed out of committee. The Generative AI Terrorism Risk Assessment Act passed advanced out of the House Committee On Homeland Security. The legislation requires the U.S. Department of... Read More »
Company raises $10M to develop cyber threat defense products
Virginia-based Tidal Cyber, producer of Threat-Led Defense, announced it had raised $10 million in Series A funding to accelerate its product innovation and company growth. The investment, led by Bright Pixel Capital, with participation from existing Tidal Cyber investors, will help advance the... Read More »
Report: Incident response planning emerges as a way of reducing cyber risk
A new report from the Cyber Risk Intelligence Center (CRIC) of Marsh McLennan (MMC), has found that cyber incident response planning is a key factor in cybersecurity. The report, Cybersecurity signals: Connecting controls and incident outcomes, found that organizations are 13 percent less... Read More »
CrowdStrike to acquire Onum to boost AI-powered cybersecurity
Cybersecurity company CrowdStrike announced Aug. 27 that it plans to buy Onum, a startup known for managing real-time data pipelines. The deal will make CrowdStrike’s Falcon® Next-Gen SIEM platform faster and easier to use, giving customers more control over their data while improving... Read More »
Cybersecurity and Infrastructure Security Agency releases web tool for IT industry
The Cybersecurity and Infrastructure Security Agency (CISA) recently released the free Software Acquisition Guide: Supplier Response Web Tool. The tool is designed for information technology and industry decision makers, procurement professionals and software suppliers. It helps users focus on... Read More »
Trump approves NSA deputy director
President Donald Trump recently approved Joseph Francescon to serve as the National Security Agency's (NSA) 21st deputy director and senior civilian leader. Francescon will be tasked with supporting the U.S. defense and intelligence enterprise in the formulation of national security policies,... Read More »FBI warns of Russian government cyber threats
The Federal Bureau of Investigation (FBI) is warning of a threat from Russian government cyber actors that is impacting computer networks and critical infrastructure. The FBI has detected cyber actors Russian Federal Security Service's (FSB) Center 16 exploiting Simple Network Management Protocol... Read More »
CISA releases new guidance on operational technology
The Cybersecurity and Infrastructure Security Agency (CISA) recently released new guidance to help operational technology (OT) owners and operators create and maintain comprehensive OT asset inventories and taxonomies. “OT systems are essential to the daily lives of all Americans and to... Read More »
Chinese nationals arrested for shipping AI microchips to China
Officials with the U.S. Department of Justice said two Chinese nationals, one in the country illegally, have been arrested for exporting microchips used in artificial intelligence to China. The DOJ alleges that Chuan Geng, 28, of Pasadena, and Shiwei Yang, 29, of El Monte, violated the Export... Read More »
Sandia cybersecurity platform now publicly available
Thorium, a cybersecurity platform developed at Sandia National Laboratories, is now available for the public to download through CISA’s GitHub repository. The platform detects and analyzes advanced malware threats. It supports automation and data processing and allows cyber analysts to... Read More »
DHS launches third phase of remote identity verification tech
The U.S. Department of Homeland Security’s Science and Technology Directorate (S&T) announced it has entered the third phase of the Remote Identity Validation Rally (RIVR). This phase is a series of challenges hosted by DHS S&T that allows the tech industry to test and improve its identity... Read More »
Chinese man accused of hacking arrested in Italy
Xu Zewei, a Chinese national wanted on a nine-count indictment in the Southern District of Texas, was arrested on July 3 in Italy and faces extradition proceedings, according to the Justice Department. Xu and co-defendant Zhang Yu hacked into thousands of computers worldwide between February... Read More »
Action taken against North Koreans who were employed illegally in IT
The Justice Department recently took action regarding the Democratic People’s Republic of North Korea (DPRK) government’s schemes to fund its regime through remote information technology (IT) work for U.S. companies. Actions include searches of 29 known or suspected “laptop farms” in 16... Read More »