Policy & Regulation: Page 14
-
iStock / Getty Images Plus via Getty Images
Broad SBOM adoption takes root as businesses watch their supply chains
Research from Sonatype shows major companies are increasingly mandating outside vendors to account for the security of their applications.
By David Jones • Aug. 4, 2023 -
Kevin Dietsch via Getty Images
White House looks to close massive cyber skills gap
The Biden administration is moving to address a yearslong shortage of qualified IT security and technology industry workers.
By David Jones • Aug. 1, 2023 -
Explore the Trendline➔
Nattakorn Maneerat via Getty Images
-
Courtesy of Merck & Co.
New Jersey Supreme Court to hear Merck insurance dispute over NotPetya attack
The pharmaceutical giant previously won lower court rulings regarding war exclusion language.
By David Jones • July 28, 2023 -
Drew Angerer via Getty Images
TSA revises security directives for oil and gas pipelines to test resilience
The updated requirements come amid heightened threats and security incidents, including the recent attack against Suncor Energy in Canada.
By David Jones • July 27, 2023 -
Chip Somodevilla via Getty Images
SEC votes to overhaul disclosure rules for material cyber events
After a fierce debate, the agency voted to require companies to come clean on material breaches and attacks within four business days of determination.
By David Jones • July 26, 2023 -
PorqueNoStudios/iStock via Getty Images
To execute the national cyber strategy, it’s going to take the whole US government
Experts applaud the desired outcomes, but the tasks and responsibilities now assigned to agencies underscore the challenges that lie ahead.
By Matt Kapko • July 25, 2023 -
Ultima_Gaina via Getty Images
New York cyber lead warns of what states face in critical infrastructure defense
Government agencies and the private sector must work collaboratively to combat increasingly sophisticated threat activity, Colin Ahern said.
By David Jones • July 25, 2023 -
Kevin Dietsch via Getty Images
White House secures safety commitments from 7 AI companies
OpenAI, Microsoft and Google are among the companies committing to robust testing and investments in cybersecurity safeguards to defend AI models prior to release.
By Lindsey Wilkinson • July 21, 2023 -
Getty via Getty Images
US government plays catchup on phishing-resistant MFA
Security tools have evolved to include more accessible protocols that meet stringent authentication requirements. The government wants to embrace that.
By Matt Kapko • July 20, 2023 -
Drew Angerer / Staff via Getty Images
Microsoft offers free security logs amid backlash from State Department hack
Federal officials and rivals blasted the company for charging customers for additional security features.
By David Jones • July 19, 2023 -
Photo: Obtained by Industry Dive
UKG agrees to pay up to $6M in lawsuit tied to 2021 breach
The payroll services provider reached an agreement to settle a class action lawsuit tied to a ransomware attack that targeted its Kronos Private Cloud service.
By Matt Kapko • July 18, 2023 -
gorodenkoff/iStock via Getty Images
White House unveils consumer labeling program to strengthen IoT security
The voluntary program is designed to protect millions of consumers and remote workers amid increased threat activity against smart home and IoT devices.
By David Jones • July 18, 2023 -
Chip Somodevilla via Getty Images
FCC chair proposes $200M investment to boost K-12 cybersecurity
The funds would go toward a three-year pilot program aimed at enhancing cybersecurity protections for school and library networks.
By Anna Merod • July 14, 2023 -
Win McNamee via Getty Images
Fed ends Capital One breach-related enforcement action
The Office of the Comptroller of the Currency 10 months earlier freed the bank from a separate consent order tied to a former AWS employee’s hack that exposed the data of 106 million customers.
By Dan Ennis • July 13, 2023 -
Permission granted by Office of the National Cyber Director
White House shares the 69 initiatives slated to shore up national cybersecurity
“If the strategy represents the president’s vision for the future, then this implementation plan is the roadmap to get there,” Acting National Cyber Director Kemba Walden said.
By Matt Kapko • July 13, 2023 -
Alex Wong via Getty Images
Microsoft warns China-linked APT actor hacked US agency, other email accounts
U.S. officials alerted Microsoft about what emerged as a targeted, monthlong hacking campaign.
By David Jones • July 12, 2023 -
Spencer Platt via Getty Images
IronNet in NYSE compliance crosshairs after failing to file quarterly earnings on time
Management at the cybersecurity firm has been in talks on a deal to raise additional capital and go private.
By David Jones • July 6, 2023 -
TriggerPhoto via Getty Images
White House releases cyber budget priorities for fiscal year 2025
Federal agencies are advised to demonstrate how their spending aligns with the national cybersecurity strategy.
By Matt Kapko • June 29, 2023 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images
SEC notifies SolarWinds CISO and CFO of possible action in cyber investigation
Executives were alerted to possible enforcement action related to the Russia-linked supply chain attack.
By David Jones • June 26, 2023 -
Kevin Dietsch/Getty Images via Getty Images
SEC delays final rule on cyber incident disclosure as industry pushes back
The agency was seeking prompt reporting of material cyber breaches and attacks, but faced a range of concerns from stakeholders.
By David Jones • June 16, 2023 -
Permission granted by AWS
Cloud services seen as key tool in shifting balance of cyber risk
The acting national cyber director says more oversight may be necessary, but a resilient cloud infrastructure is critical to the national cybersecurity strategy.
By David Jones • June 12, 2023 -
Laser1987 via Getty Images
Existing security policy for critical infrastructure needs major overhaul, commission says
The Cyberspace Solarium Commission 2.0 says the federal relationship with the private sector is based on outdated policy.
By David Jones • June 7, 2023 -
Permission granted by Tusk Venture Partners
FTC chair warns that AI businesses must still operate within existing laws
The rapidly expanding technology cannot be used for fraud or discrimination and dominant players must allow the market to remain competitive, Lina Khan said Thursday.
By David Jones • June 2, 2023 -
Chainarong Prasertthai via Getty Images
CISA updates ransomware guide 3 years after its debut
The #StopRansomware guide, updated in partnership with the FBI, NSA and MS-ISAC, reflects aggressive new techniques used by threat actors, including double extortion.
By David Jones • May 24, 2023 -
MicroStockHub via Getty Images
Critical infrastructure security spending to grow 83% by 2027: ABI Research
Analysts forecast cybersecurity spending among critical infrastructure organizations to grow from an estimated $129 billion in 2022 to almost $236 billion by 2027.
By Matt Kapko • May 19, 2023
Previous
