Policy & Regulation: Page 22
-
Permission granted by Billington CyberSecurity
CISA Director: Tech industry should infuse security at product design stage
Agency director Jen Easterly outlined a push for faster incident reporting and closer industry collaboration.
By David Jones • Sept. 7, 2022 -
Getty Images
Feds push for developers to take lead in securing software supply chain
The guidelines from CISA and the NSA come amid a growing movement to “shift left” and evaluate software security earlier in the development cycle.
By David Jones • Sept. 2, 2022 -
Explore the Trendline➔
Getty Images
-
Carol Highsmith. (2005). "The Apex Building" [Photo]. Retrieved from Wikimedia Commons.
Twitter whistleblower claims may bolster federal privacy push
Bipartisan efforts to protect consumer information may gain momentum following allegations that Twitter failed to safeguard private data.
By Jim Tyson • Aug. 23, 2022 -
DOE to support development of ‘next-generation cyber tools’ to protect grid
The agency announced $45 million will be available for up to 15 “next-generation” cybersecurity research, development and demonstration projects.
By Robert Walton • Aug. 19, 2022 -
Getty Images
Zero trust adoption skyrockets, nearing universal adoption
A report from Okta shows organizations fully embracing zero-trust principles, as hybrid work requires long-term changes to identity management.
By David Jones • Aug. 16, 2022 -
Matt Kapko/Cybersecurity Dive
CISA director lauds first-year efforts of public-private cyber collaborative
One year into the Joint Cyber Defense Collaborative, Jen Easterly says the partnership has helped limit the scale of threats.
By David Jones • Aug. 15, 2022 -
Getty Images
US falters while ‘cybercriminals have been eating our lunch,’ ex-CISA chief Krebs says
A dizzying array of agencies and disorganized efforts bolsters Chris Krebs’ call for a cybersecurity governance overhaul.
By Matt Kapko • Aug. 12, 2022 -
Getty Images
Don’t count on government, tech vendors to fix security woes, former CISA chief Krebs says
The state of cybersecurity is bad and it’s going to get worse, Chris Krebs said at Black Hat. But somehow things might eventually get better.
By Matt Kapko • Aug. 10, 2022 -
Getty Images
Blockchain, privacy advocates push back on Tornado Cash sanctions
Groups are decrying the Treasury Department's virtual currency mixer sanctions, saying they harm the ability of crypto users to conduct secure and private transactions.
By David Jones • Aug. 10, 2022 -
Chip Somodevilla / Staff via Getty Images
White House to incorporate performance metrics into national cybersecurity strategy
The Office of the National Cyber Director is working across multiple federal agencies and private sector partners to set priorities and assess effectiveness.
By David Jones • Aug. 5, 2022 -
Stefan Zaklin via Getty Images
US must take a lead role in cyber diplomacy, State Dept. nominee says
Nathaniel Fick told lawmakers the U.S. should promote international cyber norms to protect national security from authoritarian threats.
By David Jones • Aug. 4, 2022 -
Retrieved from Jen Easterly/CISA.
CISA expands cyber relationship with Ukraine authorities
The agreement formalizes closer ties between Ukraine and the key U.S. cybersecurity agency after the war with Russia led to increased threat activity.
By David Jones • July 28, 2022 -
Drew Angerer via Getty Images
Uber reaches non-prosecution deal with feds after concealing data breach
The ride-sharing firm had been under investigation by the Federal Trade Commission, when the 2016 data breach occurred, an event undisclosed until new management entered the picture.
By David Jones • July 26, 2022 -
Getty Images
Breach rule would give credit unions longer reporting window than banks
The 72-hour timeframe falls in line with the Critical Infrastructure Act that President Joe Biden signed in March, but is twice as long as the reporting window banks have had to comply with since May.
By Anna Hrushka • July 26, 2022 -
Justin Sullivan/Getty Images via Getty Images
T-Mobile agrees to $500M settlement for 2021 cyberattack
The wireless carrier suffered a massive data breach in the summer of 2021, the fifth publicly acknowledged incident of its type in three years.
By Matt Kapko • July 25, 2022 -
Courtesy of Colonial Pipeline Company
TSA revises cybersecurity requirements for oil and gas pipelines
The agency released performance-based requirements after extensive industry debate following the May 2021 Colonial Pipeline ransomware attack.
By David Jones • July 22, 2022 -
Getty Images
California privacy rules target dark patterns through technology design
California Privacy Rights Act provisions that will go into effect in January will provide more control to consumers over how companies use their data.
By Robert Freedman • July 21, 2022 -
Retrieved from Jen Easterly/CISA.
White House takes on cyber workforce gap through 120-day apprenticeship sprint
A cyber workforce and education summit at the White House Tuesday was designed to address the long-standing shortage of qualified and diverse candidates for security operations teams.
By David Jones • July 20, 2022 -
Drew Angerer via Getty Images
Google deal to buy Mandiant clears key antitrust hurdle
The Department of Justice cleared the deal last week, but the $5.4 billion agreement remains subject to approval by foreign regulators.
By David Jones • July 19, 2022 -
Kevin Frayer via Getty Images
US effort to rip and replace hardware made in China is ballooning in cost
A yearslong push to remove telecom equipment deemed a national security threat continues to vex regulators.
By Matt Kapko • July 18, 2022 -
Getty Images
CISA eyes cross-pond cyber cooperation with London office
Federal agencies have worked closely with allies to combat malicious cyber activity and illicit use of cryptocurrency.
By David Jones • July 18, 2022 -
Mark Makela/Getty Images via Getty Images
The US is losing the cyberspace race
Decades-old policies have failed to stem a growing threat, the Council of Foreign Relations said. What if the U.S. embraced a more limited and realistic strategy?
By Matt Kapko • July 15, 2022 -
Naomi Eide/Cybersecurity Dive
Log4j is far from over, cyber review board says
Exploitation of Log4j occurred at lower levels than experts predicted, yet it remains an "endemic vulnerability," the Cyber Safety Review Board said.
By Naomi Eide • July 14, 2022 -
David Ramos/Getty Images via Getty Images
What to watch with 5G network security
For wireless network carriers, 5G is a model of what’s next. But it also introduces features and services that dramatically expand the threat surface.
By Matt Kapko • July 8, 2022 -
Carol Highsmith. (2005). "The Apex Building" [Photo]. Retrieved from Wikimedia Commons.
Lawmakers amplify calls for federal agencies to increase data privacy after Dobbs decision
Seventy-two Democratic members of Congress want the FTC to use its full power to guard patients from data brokers collecting and selling data that could be used to prosecute pregnancy-related crimes.
By Rebecca Pifer Parduhn • July 7, 2022
Previous
