Stay updated with breaking news from டீசா. Get real-time updates on events, politics, business, and more. Visit us for reliable news and exclusive interviews.
The Government Accountability Office found that missing or vague cybersecurity requirements in acquisitions contracts for weapons systems often led to DOD getting a system that didn t meet its security needs. ....
By Justin Katz Mar 10, 2021 To design a software vulnerability program for the federal government, the National Institute of Standards and Technology is reviewing work done by the Defense and Homeland Security Departments. The Internet of Things Cybersecurity Improvement Act of 2020, passed in December, tasks the NIST director with publishing guidelines for receiving, reporting, coordinating and publishing information related to security vulnerabilities not limited to IoT devices in agency systems as well as the resolving those issues. DOD published its vulnerability disclosure policy in 2016, and in September 2020 DHS issued Binding Operational Directive 20-01, “Improving Vulnerability Identification, Management, and Remediation.” ....
By Justin Katz Mar 10, 2021 The Pentagon has ordered its agencies and commands to take actions in line with the emergency directive recently issued by the Cybersecurity and Infrastructure Security Agency in response to vulnerabilities found in Microsoft s Exchange software. Joint Force Headquarters - DODIN coordinated with the Cybersecurity and Infrastructure Security Agency and then issued a Cyber Tasking Order in line with CISA s emergency directive to all DOD agencies and commands directing them to take actions necessary to protect DoD networks and IT systems, Russell Goemaere, a Pentagon spokesman, told FCW Tuesday. Goemaere added the Defense Department is also coordinating with the National Security Agency on further steps to protect its networks. ....
Colin Kahl, the Biden administration s pick to be the undersecretary of defense for policy, talked cyber and defense while dodging critiques on past social media posts. ....
Federal agencies still reeling from the effects of a massive hack involving SolarWinds may face a new challenge of evicting any adversaries that breached their networks through recently discovered vulnerabilities in Microsoft s Exchange software. Patching and mitigation is not remediation if the servers have already been compromised, the National Security Council said in a tweet on Friday. It is essential that any organization with a vulnerable server take immediate measures to determine if they were already targeted. President Joe Biden s National Security Advisor Jake Sullivan also took to Twitter to urge U.S. think tanks and defense industrial base contractors to patch ASAP. ....