The Cybersecurity and Infrastructure Security Agency will hold sector-by-sector town halls in the coming weeks to get feedback on a stalled regulation requiring critical infrastructure owners and operators to report when they suffer major cyberattacks. The meeting dates, set to be published in the Federal Register Friday, would “allow external stakeholders a limited additional opportunity…
Category: Policy
AI, EU, Europe, Global Security News, News, openai, Policy, privacy
OpenAI updates Europe privacy policy, adding new data categories
OpenAI has updated its Europe-facing privacy policy following the November 2024 EU revision, clarifying scope, expanding coverage, and detailing user controls. The updated document is longer, with dedicated sections for data controls and practical resources. It explains key controls and settings within the text, making available choices easier to understand without moving between documents. “This…
AI, EU, Europe, Global Security News, News, openai, Policy, privacy
OpenAI updates Europe privacy policy, adding new data categories
OpenAI has updated its Europe-facing privacy policy following the November 2024 EU revision, clarifying scope, expanding coverage, and detailing user controls. The updated document is longer, with dedicated sections for data controls and practical resources. It explains key controls and settings within the text, making available choices easier to understand without moving between documents. “This…
AI, Compliance, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Exploits, Global Security News, Government, Network Security, Policy, Politics, privacy, Risk Management
CISA tells agencies to stop using unsupported edge devices
A Cybersecurity and Infrastructure Security Agency order published Thursday directs federal agencies to stop using “edge devices” like firewalls and routers that their manufacturers no longer support. It’s a stab at tackling one of the most persistent and difficult-to-manage avenues of attack for hackers, a vector that has factored into some of the most consequential…
critical infrastructure, Global Security News, Government, Policy
What’s next for DHS’s forthcoming replacement critical infrastructure protection panel, AI information sharing
A revised government-industry council devoted to critical infrastructure protection could be set up to have broader and more specific discussions on things like cybersecurity and threats to hardware and software that monitor and control industrial processes, known as operational technology (OT). A top official at the Cybersecurity and Infrastructure Security Agency (CISA), Nick Andersen, said…
Cybersecurity, Global Security News, Government, information sharing, Policy, Uncategorized
Sean Cairncross’ cybersecurity agenda: less regulation, more cooperation
The Trump administration needs help from industry to reduce the cybersecurity regulatory burden and to back important cyber legislation on Capitol Hill, among other areas, National Cyber Director Sean Cairncross said Tuesday. “You know your regulatory scheme better than I do: Where there’s friction, where there’s frustration with information sharing, what sort of information is…
AI, Geopolitics, Global Security News, Policy
US wants to push its view of AI cybersecurity standards to the rest of the world
The U.S. government wants the rest of the world to adopt its artificial intelligence cybersecurity standards, a top official with the Office of the National Cyber Director said Thursday. As part of an effort to advance American AI, the administration will be “undertaking diplomacy efforts to promote American AI cybersecurity standards and norms, establishing industry…
Biden administration, Global Security News, Policy, privacy
Lawmakers wonder when Trump administration will weigh on soon-expired surveillance powers
There’s a growing question on Capitol Hill as the expiration of sweeping U.S. government surveillance powers looms: Where is the Trump administration? The Senate Judiciary Committee held a hearing Wednesday on the 2024 law that revised the surveillance authorities known as Section 702, a part of the Foreign Intelligence Surveillance Act. Advocates have said that…
Exploits, Global Security News, Government, Institute for Security and Technology, Policy
OMB rescinds ‘burdensome’ Biden-era secure software memo
The Trump administration is rescinding a Biden-era memo that was intended to help agencies buy secure software, with the current Office of Management and Budget saying it relied on “unproven and burdensome” processes. A former Biden administration official said the move is “the first major policy step back that I have seen in the administration…
Congress, Global Security News, Government, Policy, privacy
Watchdog group sues for TSA data sharing agreement with ICE
A nonprofit is suing the federal government for records surrounding a data sharing agreement between the Transportation Security Administration and Immigrations and Customs Enforcement that saw domestic travel data used for immigration enforcement. Government watchdog group American Oversight filed suit against the agencies Thursday in the U.S. District Court for the District of Columbia, a…
AI, Asia Pacific, Cybersecurity, Global Security News, Policy, Research, Uncategorized
HackerOne rolls out industry framework to support ‘good faith’ AI research
Four years ago, the Department of Justice announced it would no longer seek criminal charges against independent and third-party security researchers for “good faith” security research under the Computer Fraud and Abuse Act. Now, a prominent bug bounty platform is attempting to build a framework for industry to offer similar protections to researchers who study…
critical infrastructure, Cybersecurity, Global Security News, Government, Policy, Threats
Sources: DHS finalizing replacement for disbanded critical infrastructure security council
The Department of Homeland Security is finalizing plans for a new body that would replace the functions of the Critical Infrastructure Partnership Advisory Council (CIPAC) and serve as a communications hub between industry and government to discuss ongoing threats to U.S. critical infrastructure, including from cyber attacks. Under previous administrations, CIPAC served as a nerve…
Asia Pacific, Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy, Workforce
Sean Plankey re-nominated to lead CISA
President Donald Trump re-nominated Sean Plankey to lead the Cybersecurity and Infrastructure Security Agency on Tuesday, after Plankey’s bid for the position ended last year stuck in the Senate. It’s not clear whether or how Plankey’s resubmitted nomination will overcome the hurdles that left many observers convinced his chance of becoming CISA director had likely…
AI, Asia Pacific, Cybersecurity, Global Security News, Government, Policy, Technology
CESER chief touts AI projects as congressional Dems point to federal cuts
A Trump administration official endorsed a slate of congressional bills Tuesday targeting cybersecurity in the energy sector while touting the office’s new emphasis on AI-driven cyber defenses. Meanwhile, Democratic members repeatedly pressed him over the cybersecurity and reliability impacts from thousands of job cuts that have taken place at the Department of Energy over the…
Bennie Thompson, Geopolitics, Global Security News, Government, North America, Policy
Hill warning: Don’t put cyber offense before defense
Amid budding sentiment in the Trump administration and Congress to expand offensive cyber operations, some lawmakers and experts are warning that the United States needs to get its defenses in order before going too far down that road. A House Homeland Security subcommittee on Tuesday examined how to deter foreign cyberattacks, with an emphasis on…
AI, Congress, Cybercrime, Europe, Global Security News, Government, Policy
Dems pressure Google, Apple to drop X app as international regulators turn up heat
A trio of Senate Democrats are calling on Apple and Google to drop Elon Musk’s X from app stores as international regulators in Europe and Britain took steps towards investigations of the site’s mass undressing of users using Grok’s AI tool. On Friday, Senators Ron Wyden, D-Ore., Ben Ray Luján, D-N.M., and Ed Markey, D-Mass.,…
Commentary, Cybersecurity, Global Security News, Government, Policy, Threats
Time to restore America’s cyberspace security system
China’s campaign to break into our critical infrastructure and federal government networks is persistent and growing. Beijing is stealing information while also planting tools and maintaining access in key systems, giving it the option to pressure the United States in the future. Russia also continues to test our critical infrastructure with increasingly sophisticated operations, support…
Exploits, Geopolitics, Global Security News, Government, Policy, privacy
Treasury removes Intellexa spyware-linked trio from sanctions list
The Trump administration this week removed three Iranians from its sanctions list who were previously accused of working for Intellexa, the consortium behind the Predator spyware that recent investigations say has circumvented human rights safeguards. The Biden administration imposed sanctions against the trio in 2024 as part of a broader move to sanction spyware operators.…
alibaba, Asia Pacific, Geopolitics, Global Security News, Government, Policy, Technology
Senate Intel chair urges national cyber director to safeguard against open-source software threats
Senate Intelligence Committee Chairman Tom Cotton is raising the spectre of foreign adversaries playing too heavy a role in open-source software, and asking the national cyber director to counter the risks. The Oklahoma Republican wrote to National Cyber Director Sean Cairncross Thursday, saying he was concerned about reports that “state-sponsored software developers and cyber espionage…
Andrew Garbarino, Artificial Intelligence (AI), Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Policy
Key lawmaker says Congress likely to kick can down road on cyber information sharing law
With a little more than a month left before a foundational cyber threat information sharing law expires for a second time, Congress might have to do another short-term extension as negotiations on a longer deal aren’t yet bearing fruit, a key lawmaker said Tuesday. House Homeland Security Chairman Andrew Garbarino, R-N.Y., said the problem with…
Federal Bureau of Investigation (FBI), Global Security News, Government, North America, Policy, privacy
Warrant requirements, Democratic worries could factor into spy law renewal debate
A fresh effort is mounting in Congress to require federal agents to obtain a warrant before searching a government surveillance database for information about U.S. citizens, as Congress again faces an impending deadline, in four months, to renew a major surveillance law. But there are also signs that renewal of Section 702 of the Foreign…
AI, Asia Pacific, Cybersecurity, Geopolitics, Global Security News, Government, Policy
As White House moves to send AI chips to China, Trump’s DOJ prosecutes chip smugglers
As the Trump administration considers loosening restrictions on the sale of high-performance computer chips that power modern artificial intelligence systems to China, his Department of Justice continues to prosecute businesses and individuals who sell or divert these same technologies to companies based in China. On Monday, federal prosecutors announced that it had secured a guilty…
Commentary, Cybersecurity, Emerging Tech, Global Security News, Government, Policy
The ten key reforms that can close America’s cybersecurity gaps
For decades, the United States government and private sector have worked tirelessly to secure cyberspace, yet our nation remains frighteningly vulnerable to a litany of cyberthreats posed by cybercriminals and foreign adversaries alike. Daily news reports of cyber intrusions ranging from criminal ransomware attacks to foreign state-sponsored intrusions into power, water, and other critical infrastructure systems…
Artificial Intelligence (AI), Congress, Global Security News, Government, North America, Policy
Defense bill addresses secure phones, AI training, cyber troop mental health
The Defense Department would require that senior leaders have secure mobile phones, that personnel would get cybersecurity training that includes a focus on artificial intelligence and that cyber troops would have access to mental health services under a compromise annual defense policy bill released over the weekend. The deal between House and Senate negotiators on…
Global Security News, Government, Healthcare, Policy
Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues
A bipartisan group of senators are looking to tackle health care cybersecurity by reviving legislation that would update regulations and guidelines, authorize grants, offer training and clarify federal agency roles. It’s a subset of cybersecurity where Congress hasn’t enacted any sweeping changes to date. The resurrected Health Care Cybersecurity and Resiliency Act from Health, Education…
AI, Cybersecurity, Global Security News, Government, Policy, privacy
Sen. Mark Kelly: Investing in safe, secure AI is key to U.S. dominance
Sen. Mark Kelly, D-Ariz., called for robust safeguards in U.S.-developed AI systems to prevent abuse and misuse, arguing that both the technology and its development standards should reflect “American” values. In a speech Thursday at the Center for American Progress, a left-leaning think tank, Kelly called for massive investment in data centers, water and electricity…
Artificial Intelligence (AI), Asia Pacific, china, critical infrastructure, Global Security News, Government, Policy
Five-page draft Trump administration cyber strategy targeted for January release
The Trump administration is aiming to release its six-part national cybersecurity strategy in January, according to multiple sources familiar with the document. The document, which is a mere five pages long, will possibly be followed by an executive order to implement the new strategy. The administration has been soliciting feedback in recent days, which one…
Asia Pacific, Congress, Cybersecurity, FCC, Global Security News, Government, Policy
The Congressional remedy for Salt Typhoon? More information sharing with industry
When news broke approximately a year ago that Chinese hackers had systemically penetrated at least nine major U.S. communications networks, the level of alarm from policymakers was clear. At a hearing held Tuesday by the Senate Committee on Commerce, experts offered differing assessments of the threat. While intelligence officials have characterized the Salt Typhoon operation’s…
Cybersecurity, Geopolitics, Global Security News, Government, North America, Policy
Legislation would designate ‘critical cyber threat actors,’ direct sanctions against them
A House Republican introduced legislation Tuesday aimed at deterring cyberattacks against the United States at a time when the Trump administration is prioritizing the punishment of malicious hackers. Rep. August Pfluger, R-Texas, revived legislation he first sponsored in 2022, the Cyber Deterrence and Response Act. The legislation would direct the executive branch to formally designate…
AI, Cybersecurity, Emerging Tech, Geopolitics, Global Security News, Government, Policy
Congress calls on Anthropic CEO to testify on Chinese Claude espionage campaign
The House Homeland Security Committee is calling on Anthropic CEO Dario Amodei to provide testimony on a likely-Chinese espionage campaign that used Claude, the company’s AI tool, to automate portions of a wide-ranging cyber campaign targeting at least 30 organizations around the world. The committee sent Amodei a letter Wednesday commending Anthropic for disclosing the…
Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Top Senate Intel Dem warns of ‘catastrophic’ cyber consequences of Trump admin national security firings, politicization
Politicization of intelligence in the Trump administration, as well as the “hollowing out” of government expertise, is leaving the United States dangerously vulnerable to cyberattacks and other threats, the top Democrat on the Senate Intelligence Committee said in a floor speech Thursday. Mark Warner of Virginia chastised the president over what he called the politically-motivated…
Cybersecurity, Federal Communications Commission, Global Security News, North America, Policy, Salt Typhoon
Why Anna Gomez believes the FCC is letting telecoms off easy after Salt Typhoon
The Federal Communications Commission is set to vote Thursday on whether to rescind a set of last-minute Biden administration regulations following a massive Chinese compromise of U.S. telecommunications infrastructure last year. Chair Brendan Carr has called the rule ineffective and unlawful, and with the likely support of newly confirmed commissioner Olivia Trusty, there is a…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Global Security News, Government, North America, Policy
Information sharing law’s expiration could squander government vulnerability hunting efforts, senator says
Letting a cyber threat data sharing law expire could waste government efforts to find vulnerabilities, since companies would no longer be able to discuss these issues without fear of legal repercussions, a top senator said Tuesday. Sen. Mike Rounds, R-S.D., made his remarks less than a week after the hotly contested legislation to end a…
Cybersecurity, Geopolitics, Global Security News, Government, Policy, Technology
Dozens of groups call for governments to protect encryption
On Monday, more than 60 digital commerce and trade groups called on governments around the globe to reject efforts or requests to weaken or bypass encryption, saying strong encrypted communications provides critical protections for user privacy, secure data protection and trust that underpin some of society’s most important interactions. “Encryption is a vital tool for…
Asia Pacific, Australia, Geopolitics, Global Security News, Policy, Threats
While White House demands deterrence, Trump shrugs
The Trump administration’s top cyber officials have emphasized the urgent need to take aggressive action to deter increasingly brazen foreign cyberattacks. Trump himself, however, has repeatedly brushed aside the notion that foreign cyber activity is anything even really noteworthy. When Trump’s team talks about foreign hacking, be it China’s alleged massive cyberespionage campaign against telecommunications…
Cybercrime, Financial, Geopolitics, Global Security News, North America, Policy, Threats
Google files lawsuit against Lighthouse ‘phishing for dummies’ text scammers
Google on Wednesday filed a lawsuit against pesky text message scammers — like those who flood targets with notices that they have unpaid road tolls, or have a package waiting — in an attempt to disrupt a “phishing for dummies” operation the company accuses of victimizing more than 1 million people. The lawsuit against 25…
Andrew Garbarino, budget, Congress, Global Security News, Government, Policy
Cyber information sharing law would get extension under shutdown deal bill
Legislation to end the federal government shutdown includes a provision that would extend an expired cybersecurity information sharing law through the end of January. Extension of the Cybersecurity Information Sharing Act of 2015 is something industry groups have coveted since even before its sunset at the end of September. Previous attempts to extend it fell…
CISA, Commentary, Cybersecurity, Global Security News, Government, Policy
CISA’s expiration leaves a dangerous void in US cyber collaboration
On Sept. 30, 2025, the Cybersecurity Information Sharing Act (CISA 2015) officially expired, ending a decade-long framework that helped government and industry share cyber-threat data safely and consistently. For the first time in ten years, the United States lacks the statutory foundation that underpinned its public-private threat-intelligence ecosystem. At a time when adversaries are exploiting…
Commentary, Compliance, Cybersecurity, Exploits, Global Security News, op-ed, Policy
The quiet revolution: How regulation is forcing cybersecurity accountability
Cybersecurity headlines still focus on the headline-grabbing moments, whether it’s the latest breach, a zero-day exploit, or an eye-catching product launch. However, beneath the surface noise, a quieter but more profound transformation is taking place—driven by regulations that are changing the way organizations think about, approach, and communicate on security.” Across the globe, new standards…
Commentary, Cybersecurity, Election Security, Exploits, Global Security News, Government, Policy
How the F5 breach, CISA job cuts, and a government shutdown are eroding U.S. cyber readiness
The federal cybersecurity system is weathering a series of crises that couldn’t have arrived at a worse time. The F5 security breach from Oct. 15, the proposed elimination of more than 1,000 jobs at the Cybersecurity and Infrastructure Security Agency (CISA), and the ongoing federal government shutdown have created a perfect storm that is not…
Asia Pacific, Cybercrime, Financial, Geopolitics, Global Security News, Government, Policy
North Korean companies, people sanctioned for money laundering from cybercrime, IT worker schemes
The Treasury Department on Tuesday sanctioned eight people and two companies it accused of laundering money obtained from cybercrime and IT worker schemes to fund North Korean government objectives. According to the department, over the last three years North Korea-linked cybercriminals have stolen over $3 billion, mostly in cryptocurrency. In addition, it said, North Korean…
Artificial Intelligence (AI), Global Security News, Government, Policy, Workforce
OPM plans to give CyberCorps members more time to find jobs after shutdown ends
The Office of Personnel Management plans to collaborate on a “mass deferment” for a cyber scholarship-for-service program after the government shutdown ends, a spokesman said Monday, as scholarship recipients have sounded fears about being on the hook for their schooling costs during federal hiring freezes and budget cuts. The National Science Foundation (NSF) leads and…
Bennie Thompson, budget, Global Security News, Money, North America, Policy, Workforce
Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt
A landmark program that offers scholarships in exchange for federal service is threatening to saddle students with hundreds of thousands of dollars worth of debt amid hiring freezes and budget cuts, raising questions about the future of an initiative proponents say has helped close the government’s cyber workforce gap. Some CyberCorps: Scholarship for Service participants…
china, Geopolitics, Global Security News, Government, North America, Policy
National cyber director says U.S. needs to counter Chinese surveillance, push American tech
The United States needs to counter China’s “attempt to export a surveillance state across planet Earth,” and instead push a “clean American tech stack” globally, National Cyber Director Sean Cairncross said Friday. “It’s important that we send that message and engage with not only partners that we have now, but potential partners who are looking…
Cybersecurity, Global Security News, Government, Policy
F5 vulnerability highlights weak points in DHS’s CDM program
Last week, Cybersecurity and Infrastructure Security Agency officials spoke candidly about the challenges they faced tracking the use of F5 products across the civilian federal government. While CISA knows there are thousands of instances of F5 currently in use, it admitted it wasn’t certain where each instance was deployed. The uncertainty came as the agency…
Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Policy, Workforce
US ‘slipping’ on cybersecurity, annual Cyberspace Solarium Commission report concludes
The Trump administration should reverse cyber personnel and budget cuts, strengthen the Office of the National Cyber Director and expand federal workforce initiatives, the successor organization to the Cyberspace Solarium Commission recommended in a report published Wednesday. The annual implementation report from CSC 2.0 is the first of five iterations to actually determine that the…
Congress, Cybersecurity, Global Security News, Government, North America, Policy, Technology
Robocalling task force bill advances in Senate
The federal government is shut down and the House remains out of session, but work in the Senate continues, as a bipartisan bill designed to crack down on overseas robocalls advanced through a key committee Tuesday. The Foreign Robocall Elimination Act, sponsored by Sens. Ted Budd, R-N.C., and Peter Welch, D-Vt., would create a new…
Exploits, Global Security News, Government, Policy, privacy, Technology
Apple and Google challenged by parents’ rights coalition on youth privacy protections
A nonprofit organization has filed a formal complaint with the Federal Trade Commission, claiming Google’s business practices around children and teenagers violates U.S. privacy laws and constitutes unfair and deceptive practices. The complaint, filed by the Digital Childhood Institute, lays out five core claims against the tech giant: that it “knowingly” markets adult-themed or age-restricted…
Congress, Election Security, Global Security News, Government, Policy, Uncategorized
Dems introduce bill to halt mass voter roll purges
The Trump administration wants your voter data. Since President Donald Trump took office in January, the Department of Justice has made an ambitious effort to collect sensitive voter data from all 50 states, including information that one election expert described as “the holy trinity” of identity theft: Social Security numbers, driver’s license numbers and dates…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
A top Senate Democrat introduced legislation Thursday to extend and rename an expired information-sharing law, and make it retroactive to cover the lapse that began Oct. 1. Michigan Sen. Gary Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, introduced the Protecting America from Cyber Threats (PACT) Act, to replace the expired…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
A top Senate Democrat introduced legislation Thursday to extend and rename an expired information-sharing law, and make it retroactive to cover the lapse that began Oct. 1. Michigan Sen. Gary Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, introduced the Protecting America from Cyber Threats (PACT) Act, to replace the expired…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
A top Senate Democrat introduced legislation Thursday to extend and rename an expired information-sharing law, and make it retroactive to cover the lapse that began Oct. 1. Michigan Sen. Gary Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, introduced the Protecting America from Cyber Threats (PACT) Act, to replace the expired…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
A top Senate Democrat introduced legislation Thursday to extend and rename an expired information-sharing law, and make it retroactive to cover the lapse that began Oct. 1. Michigan Sen. Gary Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, introduced the Protecting America from Cyber Threats (PACT) Act, to replace the expired…
Congress, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
A top Senate Democrat introduced legislation Thursday to extend and rename an expired information-sharing law, and make it retroactive to cover the lapse that began Oct. 1. Michigan Sen. Gary Peters, the ranking member of the Homeland Security and Governmental Affairs Committee, introduced the Protecting America from Cyber Threats (PACT) Act, to replace the expired…
Cybersecurity, Europe, Geopolitics, Global Security News, Policy, privacy, Technology
Potential EU law sparks global concerns over end-to-end encryption for messaging apps
Tech experts and companies offering encrypted messaging services are warning that pending European regulation, which would grant governments broad authority to scan messages and content on personal devices for criminal activity, could spell “the end” of privacy in Europe. The European Union will vote Oct. 14 on a legislative proposal from the Danish Presidency known…
Cybersecurity, Europe, Geopolitics, Global Security News, Policy, privacy, Technology
Potential EU law sparks global concerns over end-to-end encryption for messaging apps
Tech experts and companies offering encrypted messaging services are warning that pending European regulation, which would grant governments broad authority to scan messages and content on personal devices for criminal activity, could spell “the end” of privacy in Europe. The European Union will vote Oct. 14 on a legislative proposal from the Danish Presidency known…
Cybersecurity, Europe, Geopolitics, Global Security News, Policy, privacy, Technology
Potential EU law sparks global concerns over end-to-end encryption for messaging apps
Tech experts and companies offering encrypted messaging services are warning that pending European regulation, which would grant governments broad authority to scan messages and content on personal devices for criminal activity, could spell “the end” of privacy in Europe. The European Union will vote Oct. 14 on a legislative proposal from the Danish Presidency known…
Cybersecurity, Europe, Geopolitics, Global Security News, Policy, privacy, Technology
Potential EU law sparks global concerns over end-to-end encryption for messaging apps
Tech experts and companies offering encrypted messaging services are warning that pending European regulation, which would grant governments broad authority to scan messages and content on personal devices for criminal activity, could spell “the end” of privacy in Europe. The European Union will vote Oct. 14 on a legislative proposal from the Danish Presidency known…
Cybersecurity, Europe, Geopolitics, Global Security News, Policy, privacy, Technology
Potential EU law sparks global concerns over end-to-end encryption for messaging apps
Tech experts and companies offering encrypted messaging services are warning that pending European regulation, which would grant governments broad authority to scan messages and content on personal devices for criminal activity, could spell “the end” of privacy in Europe. The European Union will vote Oct. 14 on a legislative proposal from the Danish Presidency known…
Asia Pacific, budget, Global Security News, Government, Money, Policy, Workforce
CISA work not ‘degraded’ by Trump administration cuts, top agency official says
A top official at the Cybersecurity and Infrastructure Security Agency on Thursday rejected concerns that personnel and program cuts at CISA have hindered its work. Nick Andersen, who just began serving as executive assistant director of cybersecurity at CISA this month, said he’s seen the agency function at a high level from both the outside…
critical infrastructure, Geopolitics, Global Security News, Government, North America, Policy
Critical infrastructure security tech needs to be as good as our smartphones, top NSC cyber official says
The top cyber official at the National Security Council said Tuesday that he’s dismayed by the lag in security technology embedded in critical infrastructure, saying it pales in comparison to the tech in modern smartphones. “I worry a lot about critical infrastructure cybersecurity,” Alexei Bulazel said at the Billington Cybersecurity Summit. “I also think about…
Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Global Security News, Government, Policy
National cyber director: U.S. strategy needs to shift cyber risk from Americans to its adversaries
The United States needs a “new, coordinated strategy” to counter its cyber adversaries and “shift the burden of risk in cyberspace from Americans to them,” National Cyber Director Sean Cairncross said Tuesday. “Collectively, we’ve made great progress in identifying, responding to and remediating threats, but we still lack strategic coherence and direction,” he said at…
Andrew Garbarino, Financial, Global Security News, Government, Policy, Threats
CISA pushes final cyber incident reporting rule to May 2026
The Cybersecurity and Infrastructure Agency is delaying finalization of a rule until May of next year that will require critical infrastructure owners and operators to swiftly report major cyber incidents to the federal government, according to a recent regulatory notice. Under the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) of 2022, CISA was supposed…
AI, Cybersecurity, Exploits, Global Security News, Government, Policy, Technology
AI can help track an ever-growing body of vulnerabilities, CISA official says
Artificial intelligence could be a key tool for helping organizations keep track of an ever-expanding catalog of identified software flaws, a top official at the Cybersecurity and Infrastructure Security Agency said Thursday. CISA sponsors the Common Vulnerabilities and Exposures (CVE) program, which publishes standardized data about known cyber vulnerabilities. The number of vulnerabilities the CVE…
Asia Pacific, Australia, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy, Technology
CISA guide seeks a unified approach to software ‘ingredients lists’
Compiling an “ingredients list” for software can help organizations reduce cyber risks, avoid fines and save time, among other benefits, a Cybersecurity and Infrastructure Security Agency-led guide published Wednesday advises. The CISA document, produced with the National Security Agency and cyber agencies from 14 other countries, aims to produce a shared vision on advancing the…
AI, Andrew Garbarino, Asia Pacific, Global Security News, Government, Policy, Technology
House panel approves cyber information sharing, grant legislation as expiration deadlines loom
A House panel advanced legislation Wednesday that would reauthorize a major cyber threat information sharing law and a big-dollar state and local cyber grant program before they’re set to expire at the end of this month. Trump administration officials and nominees, as well as cybersecurity organizations and experts, have voiced support for renewing them both…
Geopolitics, Global Security News, North America, Policy, Ransomware
Google previews cyber ‘disruption unit’ as U.S. government, industry weigh going heavier on offense
Google says it is starting a cyber “disruption unit,” a development that arrives in a potentially shifting U.S. landscape toward more offensive-oriented approaches in cyberspace. But the contours of that larger shift are still unclear, and whether or to what extent it’s even possible. While there’s some momentum in policymaking and industry circles to put…
Asia Pacific, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy, Ron Wyden, Workforce
CISA says it will release telecom security report sought by Sen. Wyden to lift hold on Plankey nomination
Sean Plankey’s path to leading the Cybersecurity and Infrastructure Security Agency might have one obstacle set to be cleared for removal. With the Senate Homeland Security and Governmental Affairs Committee scheduled to hold a vote on his nomination for CISA director Wednesday, the next and final step for Plankey pending approval from the panel would…
Geopolitics, Global Security News, Government, Money, Policy, Technology
Contract lapse leaves critical infrastructure cybersecurity sensor data unanalyzed at national lab
Data from sensors that detect threats in critical infrastructure networks is sitting unanalyzed after a government contract expired this weekend, raising risks for operational technology, a program leader at Lawrence Livermore National Laboratory told lawmakers Tuesday. That news arrived at a hearing of a House Homeland Security subcommittee on Stuxnet, the malware that was discovered…
Europe, Financial, Geopolitics, Global Security News, Money, Policy
UK sanctions Russian hackers, spies as US weighs its own punishments for Russia
As the U.S. government contemplates additional sanctions on Moscow, the United Kingdom went ahead and levied its own Friday against what it said was a group of Russia’s hackers and spies. The sanctions target 18 military intelligence officers and three divisions of the Russian military unit known as the GRU. Cyber operations in support of…
Asia Pacific, Global Security News, Jay Obernolte, Jennifer McClellan, NTIA, Policy
House passes bill to formalize NTIA’s cyber role following Salt Typhoon attacks
As cyber officials work to contain Salt Typhoon inside U.S. telecom networks, the House on Monday passed a bill that would officially designate one federal agency to lead efforts in protecting the nation’s digital infrastructure from such threats. The National Telecommunications and Information Administration Organization Act cleared the House via voice vote and is now…
Asia Pacific, budget, china, Global Security News, Government, Policy, Workforce
GOP domestic policy bill includes hundreds of millions for military cyber
The tax and spending bill Congress sent to President Donald Trump and that he signed into law over the holiday weekend contains hundreds of millions of dollars for cybersecurity, with a heavy emphasis on military-related spending. The biggest single pot of money under the “One Big Beautiful Bill” would be for Cyber Command, a $250…
Cybersecurity Information Sharing Act, Global Security News, Government, information sharing, Information Technology Industry Council, Policy
Short-term extension of expiring cyber information-sharing law could be on the table
With time running short before expiration of a cyber information-sharing law highly valued by the private sector, Congress is taking a look at the possibility of a short-term extension. The 2015 Cybersecurity Information Sharing Act, which provided legal safeguards for companies to share threat data, is due to sunset at the end of September, and…
Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Gary Peters, Global Security News, Government, grants, Josh Hawley, National Cyber Director, office of management and budget, Policy, Salt Typhoon, Sean Cairncross, Senate Homeland Security and Governmental Affairs Committee, State Government, Volt Typhoon, Workforce
Sean Cairncross has policy coordination in mind if confirmed as national cyber director
Sean Cairncross laid out his vision to senators Thursday for the Office of the National Cyber Director if he is confirmed to lead it. “A goal of mine is to make sure this office sits at the place that this committee and I believe Congress intended in the statute, and that is to lead cyber…
Andrew Garbarino, Asia Pacific, china, Congress, critical infrastructure, Cybersecurity and Infrastructure Security Agency (CISA), deepseek, Department of Homeland Security (DHS), Global Security News, Government, House Homeland Security Committee, ICE, Mobile App Vetting, Mobile Security, Money, Policy, Russia, Salt Typhoon, sector risk management agencies, TikTok
Rep. Garbarino: Ending CISA mobile app security program for feds sends ‘wrong signal’
The chairman of the House Homeland Security subcommittee on cybersecurity is apprehensive about the Department of Homeland Security’s plans to end a program that vets mobile apps for federal agencies. Rep. Andrew Garbarino, R-N.Y., sent a letter to DHS Secretary Kristi Noem on Thursday saying that especially in light of the massive Salt Typhoon telecommunications…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
federal contractors, Global Security News, Government, James Lankford, Mark Warner, NIST, Policy, vdp
Senators take another swing at vulnerability disclosure policy bill for federal contractors
A bipartisan pair of senators is taking another shot at legislation that would require federal government contractors to follow National Institute of Standards and Technology guidelines on vulnerability disclosure policies. The Federal Contractor Cybersecurity Vulnerability Reduction Act from Sens. Mark Warner, D-Va., and James Lankford, R-Okla., advanced out of the chamber’s Homeland Security and Governmental…
doge, Eric Swalwell, Global Security News, Government, Marcy Kaptur, ONCD, Pat Fallon, Policy, Workforce
Federal cyber workforce training institute eyed in bipartisan House bill
The federal cybersecurity workforce — an ever-shrinking group of tech talent under the Trump administration — would get a government-run training and development boost under a new bill from a bipartisan pair of House lawmakers. The Federal Cyber Workforce Training Act from Reps. Pat Fallon, R-Texas, and Marcy Kaptur, D-Ohio, calls on the National Cyber…
Global Security News, Government, Policy
DOGE could scrap identity protections for those impacted by OPM breach, senator warns
The post DOGE could scrap identity protections for those impacted by OPM breach, senator warns appeared first on CyberScoop.
Andrew Garbarino, Cybersecurity Information Sharing Act, Eric Swalwell, Global Security News, Government, House Homeland Security Committee, House Intelligence Committee, Information Technology Industry Council, National Technology Security Coalition, Open RAN Policy Coalition, Policy, Senate Homeland Security and Governmental Affairs Committee
Consensus forms on reauthorizing 2015 cyber info-sharing law now, upgrading it later
The message was consistent at a House cybersecurity hearing Thursday: pass legislation extending an expiring information-sharing law before it lapses in September, and worry about improving it later. Both lawmakers and witnesses at the hearing of the Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection shared that view about the pending expiration of the 2015…
Exploits, Global Security News, Government, Jonathan McKernan, Policy, Rohit Chopra, Russell Vought
CFPB to withdraw rule targeting data brokers
The Consumer Financial Protection Bureau is set to withdraw a Biden-era rule aimed at cracking down on data brokers and their selling of Americans’ personal and financial information. In a notice set to publish Thursday in the Federal Register, the CFPB said legislative rulemaking on the data broker industry “is not necessary or appropriate at…
AI, Global Security News, Government & Policy, IBM, Policy
IBM CEO urges the Trump Administration to increase — not cut — federal AI R&D funding
Like many leaders in tech, Arvind Krishna, the CEO of IBM, thinks federal R&D funding for AI and related technologies should be increased — not the other way around. “We have been an extremely strong advocate — and this is both the company and me personally — on that federally funded R&D should be increased,”…
Asia Pacific, budget, china, CISA, Cybercrime, Cybersecurity and Infrastructure Security Agency, Department of Homeland Security (DHS), Global Security News, Government, House Appropriations Committee, Policy
House appropriators have reservations — or worse — about proposed CISA cuts
House appropriators on Tuesday challenged proposed budget cuts for the Cybersecurity and Infrastructure Security Agency, with Democrats saying the Trump administration was disturbingly moving money away from the agency and a key Republican saying he needed to see justifications for the reductions. The Trump administration has proposed cutting CISA funding by $491 million, and some…
china, Global Security News, Government, House Energy and Commerce Committee, microchips, Nanette Barragan, North America, Policy, Richard Hudson, Salt Typhoon, Tariffs, telecommunications, Telecommunications Industry Association, undersea cables
Tariffs could slow replacement of telecom networks, according to industry official
Tariff hikes will drive up prices and make it harder for telecommunications providers to replace networks more vulnerable to Chinese hacker intrusion, an industry official told lawmakers Wednesday. “Tariffs will only raise prices,” David Stehlin, CEO of the Telecommunications Industry Association, told Rep. Darren Soto, D-Fla. While it makes sense to find ways to bring…
Emerging Tech, Global Security News, Government, Government Accountability Office, House Foreign Affairs Committee, Policy, State Department
Cyber experts, Democrats urge Trump administration not to break up cyber coordination in State reorg
Cyber experts are urging Congress to ensure that a planned reorganization of the State Department continues to integrate cyber diplomacy at the highest levels of decision-making, while providing the resources, staffing and structure necessary to project American digital security policy abroad with both allies and adversaries. Secretary of State Marco Rubio’s reorganization plan would split…
Asia Pacific, Global Security News, modems, Policy, Robin Kelly, routers, ROUTERS Act, Salt Typhoon
House passes bill to study routers’ national security risks
A bill requiring the Department of Commerce to study national security issues posed by routers and modems controlled by U.S. adversaries passed the House on Monday, advancing legislation that lawmakers say is “crucial” to understanding the devices’ cybersecurity risks. The House has moved quickly on the Removing Our Unsecure Technologies to Ensure Reliability and Security…
Cybersecurity, Electronic Frontier Foundation, Executive order, Global Security News, Policy
Cybersecurity experts issue response to Trump order targeting Chris Krebs, SentinelOne
SAN FRANCISCO — A sweeping public statement signed by more than 30 prominent cybersecurity professionals and academics has condemned what they describe as political retaliation against Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) and his employer, SentinelOne. The letter, released Monday, comes in the wake of an executive order…
blockchain, Cybercrime, Federal Bureau of Investigation (FBI), financial fraud, Global Security News, Josh Gottheimer, pig butchering, Policy, Scott Fitzgerald, Zach Nunn
House bill seeks better tech to combat financial fraud scams against elderly
A bipartisan trio of House lawmakers is pushing a bill that would give law enforcement more resources to tackle financial fraud, pig butchering and other scams that specifically target older Americans. The Guarding Unprotected Aging Retirees from Deception (GUARD) Act from Reps. Zach Nunn, R-Iowa, Josh Gottheimer, D-N.J., and Scott Fitzgerald, R-Wis., would give state,…
CISA, Cybersecurity, Global Security News, Government, Policy, resigns, secure by design, Technology, Workforce
Multiple top CISA officials behind ‘Secure by Design’ resign
Two top officials at the Cybersecurity and Infrastructure Security Agency who worked with the private sector to manufacture secure products and technology are leaving the agency. Bob Lord, senior technical adviser and Lauren Zabierek, senior advisor at CISA, were both chief architects behind CISA’s Secure by Design initiative, which garnered voluntary commitments from major vendors…
Asia Pacific, china, CISA, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), disinformation, Exclusive, Gary Peters, Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Joint Cyber Defense Collaborative, Local Government, Mike Rounds, misinformation, North Carolina, Policy, privacy, Russia, Salt Typhoon, Senate Armed Services Committee, Senate Homeland Security and Governmental Affairs Committee, SolarWinds, State Government, Volt Typhoon
Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing law
A bipartisan pair of senators are kicking off the race Wednesday to reauthorize a 2015 cyber threat information sharing law, a move that industry groups and cyber experts are eager to see happen before it’s set to expire in September. Advocates say the 10-year-old Cybersecurity Information Sharing Act has been vital to sharing threat information…
Andrew Garbarino, CISA, Congress, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Eric Swalwell, Global Security News, Government, House Homeland Security Committee, Mark Green, Policy, Workforce
Rep. Swalwell demands Hill briefing on planned CISA personnel cuts
The Cybersecurity and Infrastructure Security Agency must brief Congress on proposed deep cuts to agency personnel, a top Democrat said in a letter to its acting director. California Rep. Eric Swalwell, ranking member of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, wrote in the letter to acting Director Bridget Bean on Thursday…
Asia Pacific, Global Security News, modems, Policy, Robin Kelly, routers, ROUTERS Act
Bill to study national security risks in routers passes House committee
A federal study into the national security risks posed by routers, modems and similar devices controlled by U.S. adversaries moved one step closer to law Tuesday by advancing out of the House Energy and Commerce Committee. The Removing Our Unsecure Technologies to Ensure Reliability and Security (ROUTERS) Act from Reps. Bob Latta, R-Ohio, and Robin…
fbi, Federal Bureau of Investigation (FBI), FISA, Global Security News, Government, House Judiciary Committee, Jamie Raskin, jim jordan, Kash Patel, National Security Agency, North America, Policy, privacy, Privacy and Civil Liberties Oversight Board (PCLOB), Section 702, surveillance
Privacy fights over expiring surveillance law loom after House hearing
Lawmakers on the House Judiciary Committee say privacy protections under a bill Congress passed to re-up a major surveillance law aren’t strong enough, and are gearing up for additional changes for when the legislation is set to expire next year. Legislative battles over Section 702 of the Foreign Intelligence Surveillance Act (FISA) — under which…
estonia, France, Germany, Global Security News, Hungary, Ireland, Italy, kosovo, Luxembourg, Moldova, Netherlands, North America, Pall Mall Process, poland, Policy, privacy, Slovakia, Slovenia, Spyware, Sweden, switzerland, Technology, United Kingdom (U.K.), vulnerability disclosure
Voluntary ‘Pall Mall Process’ seeks to curb spyware abuses
Twenty-one nations signed on to a voluntary accord last week in Paris to govern the use of commercial hacking tools commonly known as spyware, after more than a year of work on the agreement. The Pall Mall Process, or Code of Practices for States, has four pillars for the responsible use of the surveillance tech,…
Cybercrime, Global Security News, Policy, Secret Service
Senators re-up bill to expand Secret Service’s financial cybercrime authorities
A bipartisan pair of senators is taking another shot at their bill to expand the U.S. Secret Service’s investigative powers for financial cybercrime probes. The Combatting Money Laundering in Cyber Crime Act from Sens. Catherine Cortez Masto, D-Nev., and Chuck Grassley, R-Iowa, would update federal law to strengthen the Secret Service’s authority, enabling the agency…
Andrew Garbarino, CISA, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Eric Swalwell, Global Security News, Government, House Homeland Security Committee, Joint Cyber Defense Collaborative (JCDC), Local Government, Policy, Senate Homeland Security and Governmental Affairs Committee, State Government
Don’t cut CISA personnel, House panel leaders say, as they plan legislation giving the agency more to do
Leaders of a key House subcommittee criticized the Trump administration’s personnel cuts at the Cybersecurity and Infrastructure Security Agency on Wednesday, with its chairman saying he wants CISA to take on more responsibilities, not less — some of which figure into his legislative priorities. Rep. Andrew Garbarino, the New York Republican who chairs the House…
Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Exploits, FDA, Global Security News, Government, Medical Devices, Policy
Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity Tuesday called out the need for more proactive tracking of products used across the country, saying the status quo leaves many health system owners and operators in the dark about vulnerabilities, exploitation and patching updates. Testifying before the House Energy and Commerce Subcommittee on Oversight and…
Andrew Garbarino, budget, CISA, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Eric Swalwell, Federal Emergency Management Agency, FEMA, Global Security News, Government, House Homeland Security Committee, Kentucky, Local Government, Money, MS-ISAC, Policy, State Government, Threats, Utah
Renew — but improve — billion-dollar cyber grant program to states and locals, House witnesses say
It’s vital that Congress renew the expiring $1 billion state and local cybersecurity grant program, witnesses testified before a House panel, but they added that it could benefit from some upgrades, too. New York Rep. Andrew Garbarino, chairman of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection that held the hearing Tuesday, said…