Cyber
FBI: Cyber-enabled strategic cargo theft on the rise
The Federal Bureau of Investigation announced cyber tactics enabling cargo theft have surged recently. In a Public Service Announcement, the FBI said cyber threat actors are increasingly using cyber-enabled tactics to impersonate legitimate businesses as a means to hijack freight, steal... Read More »
Defense Department announces agreements with AI companies on classified network deployment
The U.S. Department of Defense, referred to as the U.S. Department of War by the Trump administration, announced that it has entered into agreements with eight of the world’s leading artificial intelligence companies to deploy AI capabilities on the department’s classified networks. The... Read More »
CISA, partners release guidance for Zero Trust adaptation in operational technology
The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with the U.S. Departments of War, Energy, State, and the Federal Bureau of Investigation, have published a guide to applying Zero Trust principals to operational technology systems within organizations. The guide,... Read More »
Investigation launched into national security risk posed by AI models from Chinese companies
U.S. Reps. Andrew Garbarino (R-NY) and John Moolenaar (R-MI) announced the launch of a joint investigation into the national security risks posed by artificial intelligence models developed by Chinese companies. Garbarino, chair of the House Committee on Homeland Security, said his committee... Read More »
Coalition to address production code vulnerabilities
Project QuiltWorks, a tech industry coalition, recently launched to assess, prioritize and continuously remediate production code vulnerabilities that frontier artificial intelligence models are uncovering. Project QuiltWorks uses the CrowdStrike Falcon platform with remediation input from... Read More »
CISA, global partners issue warning on Chinese government-linked covert networks
The Cybersecurity and Infrastructure Security Agency (CISA) joined the United Kingdom’s National Cyber Security Centre and other federal and international partners to release a new cybersecurity advisory about China. The advisory, “Defending Against China-Nexus Covert Networks of... Read More »
Florida man pleads guilty to being ransomware negotiator
The U.S. Department of Justice announced a Florida man has pleaded guilty to conspiring to commit ransomware attacks after being employed as a ransomware negotiator. According to court documents, Angelo Martino, 41, of Land O’Lakes, Fla., collaborated with the operators of the Blackcat/ALPHV... Read More »
Marine Corps award $21M contract for cyber services
Marine Corps Installations Command (MCICOM) awarded a Pennsylvania nonprofit organization specializing in applied scientific research and development professional services, a $21 million contract to provide facility-related control systems cyber services in the Marine Corps Installations Pacific... Read More »
Reps. Fong, Garbarino host cybersecurity roundtable in California
U.S. Reps. Vince Fong (R-CA) and Andrew Garbarino (R-NY) hosted a cybersecurity roundtable last week with the Cybersecurity and Infrastructure Security Agency (CISA), local military installations and local community members. As part of the discussion, attendees focused on current, existing, and... Read More »
Multi-national law enforcement campaign disrupts cryptocurrency fraud scheme
A multi-national effort, Operation Atlantic, has identified more than $45 million (US) in cryptocurrency fraud schemes around the world, the U.S. Secret Service said recently. The law enforcement effort carried out with agencies in the U.S., United Kingdom and Canada identified and contacted... Read More »
CISA issues advisory on Iran-affiliated cyber threat to U.S. infrastructure
The Cybersecurity and Infrastructure Agency (CISA) on April 7 issued a public advisory warning of cyberthreats to American critical infrastructure sectors from Iran-affiliated threat actors. The agency joined the National Security Agency (NSA), Environmental Protection Agency (EPA), Department of... Read More »
FBI, DOJ dismantle Russian GRU cyber operation targeting U.S. home and office routers
The Department of Justice and FBI said Tuesday they have successfully disrupted a Russian military intelligence operation that hijacked thousands of small office and home office routers across the United States to conduct espionage against government, military, and critical infrastructure... Read More »
FBI, CISA warn of Russian intelligence phishing campaign
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) warned Russian intelligence is using commercial messaging applications to gain access to individual’s accounts. In a joint public service announcement, the agencies said Russian... Read More »
GAO: Government agencies not using dashboard created to address IT professional shortages
According to a new report by the Government Accountability Office, a shortage of IT professionals in the face of growing need for a talented cyber workforce is one of the federal government’s most important challenges. But a dashboard created by the Office of Personnel Management to help... Read More »
DNI announces cybersecurity investment, modernization effort
The Office of the Director of National Intelligence recently announced that the year-long intelligence community-wide technology and cybersecurity modernization effort was beginning to fulfill its mission. On March 26, director Tulsi Gabbard announced the effort, spearheaded by the ODNI, was... Read More »
FCC updates list of foreign-made routers that threaten national security
On Monday, the Federal Communications Commission updated a list of foreign-made routers that post a threat to national security. The list includes all consumer-grade routers that were determined by the White House-convened Executive Branch interagency body that “pose unacceptable risks to the... Read More »
Congressman requests GAO review of threats posed by AI-enabled terrorism
U.S. Rep. August Pfluger (R-TX) has requested the Government Accountability Office (GAO) to perform a comprehensive review of how foreign terrorists use emerging technologies against the United States. In a letter to the GAO, Pfluger, the chair of the House Subcommittee on Counterterrorism and... Read More »
Congressional subcommittee hearing focuses on risks posed by Chinese AI, robotics and other technologies
The U.S. House Subcommittee on Cybersecurity and Infrastructure Protection held a hearing on March 17 to examine the national security risks stemming from artificial intelligence, robotics, and autonomous sensing technologies developed by companies affiliated with the People’s Republic of China... Read More »
CISA urges management system hardening after cyberattack
The Cybersecurity and Infrastructure Security Agency is urging U.S. organizations to harden their endpoint management system configurations after a cyberattack on Stryker Corporation. CISA said on March 11, Stryker was the victim of a cyberattack targeting their endpoint management system which... Read More »
International law enforcement moves to disrupt crypto fraud
American law enforcement agencies joined those from the United Kingdom and Canada to conduct a joint international law enforcement initiative focusing on crypto assets. The initiative, Operation Atlantic, worked to identify victims who may have lost, or are at risk of losing, crypto assets... Read More »
GAO urges Defense Department to address contractor cybersecurity
A report from the U.S. Government Accountability Office has found that the U.S. Department of Defense should do more to ensure that its contractors meet cybersecurity certification requirements. The GAO said it had reviewed the DOD’s implementation of its Cybersecurity Maturity Model... Read More »
Defense Department names chief data officer
The U.S. Department of Defense, referred to by the Trump administration as the Department of War, announced Gavin Kliger would assume the position of the chief data officer for the department. Kliger, previously a senior member of the technical staff at DataBricks, will serve as a key leader in... Read More »
French cybersecurity company raises $30M
Paris-based Qevlar AI, a computer and network security company, recently raised $30 million in funding for its autonomous AI SOC platform. The company will use the funding to turn alert investigations into security insights that will help security operations centers (SOCs) strengthen their... Read More »
Trump signs executive order combating cybercrime, fraud
President Donald Trump issued an executive order on March 6 that would require his administration to address cybercrime, fraud and predatory schemes targeting Americans as a way to protect U.S. interests. “Cybercrime, fraud, and predatory schemes are draining American families of their life... Read More »
Administration for Strategic Preparedness and Response releases cybersecurity module
The Administration for Strategic Preparedness and Response (ASPR), a U.S. Department of Health and Human Services division, recently launched a cybersecurity module within its Risk Identification and Site Criticality (RISC) 2.0 Toolkit. RISC 2.0 is a free, web-based platform that health systems,... Read More »
DOJ, law enforcement partners seize one of world’s largest online forums used by cybercriminals
The U.S. Department of Justice (DOJ) and its law enforcement partners recently seized the database of one of the world’s largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. Law enforcement agents and officers in 14 countries conducted synchronized actions... Read More »
Astelia raises $35M to invest in AI-powered exposure management
Cybersecurity platform Astelia announced it has raised $35 million in funding to use artificial intelligence to expose real risks to organizations. Company officials said Astelia uses a deep analysis of clients’ real environments via AI to map its network topology, segmentation and security... Read More »
California tech engineers charged with theft of trade secrets, and transferring data to Iran
Three Silicon Valley engineers have been indicted for conspiring to commit trade secret theft from Google and other technology companies, the U.S. Department of Justice said Feb. 19. According to the U.S. Attorney's Office, in the Northern District of California, Samaneh Ghandali, 41,... Read More »
CrowdStrike, Qualtrics announce new security layers in latest integration
The integration of CrowdStrike Falcon Shield with the Qualtrics Platform will bring greater visibility and automated protections to customers, the companies stated. The new integration connects the two products to provide organizations with real-time visibility and automated protections for... Read More »
Report: 70 percent of ransomware activity focused on English-speaking countries
A new Nozomi Networks Labs OT & IoT Security Report finds that 70 percent of global ransomware activity is targeted against English-speaking countries. The company annually leverages their network of wireless monitoring sensors, inbound telemetry, partnerships, threat intelligence and other... Read More »
CISA to hold town halls on cyber incident reporting for critical infrastructure
The Cybersecurity and Infrastructure Security Agency (CISA) will hold a series of virtual town hall meetings to gather stakeholder input on the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA( of 2022 rulemaking. The meeting, scheduled to begin March 9, are in response to... Read More »
Air Force commanders visit Texas cybersecurity forces
Gen. Adrian Spain, Air Combat Command commander, and Jeremy Unterseher, ACC command chief, conducted a three-day tour of cybersecurity forces in Texas earlier this month. “It is reassuring knowing that as cyber threats evolve our Airmen are at the forefront of safeguarding military assets and... Read More »
American Systems wins $172M contract to support Navy in evaluating emerging warfare tech
American Systems, the McLean, Va.-based information engineering company, announced recently it had been awarded a $172 million contract to continue its support to the Naval Surface Warfare Center Indian Head Division’s Demonstration and Assessment Team (DAT). The company said the contract... Read More »
CISA releases secure communications guidelines for critical infrastructure users
The Cybersecurity and Infrastructure Security Agency (CISA) released new guidelines this week to help operational technology users implement secure communications. In the guide, Barriers to Secure OT Communications: Why Johnny Can’t Authenticate, CISA provides insight from control system... Read More »