Department of Defense Archives

Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada

BrianKrebs | May 21, 2026 | A Little Sunshine, Aisuru, DDoS-for-hire, Defense Criminal Investigative Service, Department of Defense, Dort, Internet of Things (IoT), JackSkid, Jacob Butler, Kimwolf, Mossad, Ne'er-Do-Well News, Ontario Provincial Police

Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of ...

Krebs on Security

Anthropic and the Pentagon

Bruce Schneier | March 6, 2026 | AI, Defense, Department of Defense, LLM, Uncategorized

OpenAI is in and Anthropic is out as a supplier of AI technology for the US defense department. This news caps a week of bluster by the highest officials in the US ...

Schneier on Security

How MOSA Principles Will Reshape the DoD RMF

Tom Tapley | November 25, 2025 | Authorization to Operate, Cybersecurity, Department of Defense, Federal, government, risk management

The Department of Defense (DoD) faces the dual imperative of accelerating technology adoption to maintain operational advantage while also hardening systems against increasingly sophisticated cyber threats ...

2024 Sonatype Blog

CMMC 2.0 in Action: Operationalizing Secure Software Practices Across the Defense Industrial Base

Antoine Harden | November 5, 2025 | Defense, Department of Defense, DevSecOps, Federal, government, SBOM, software bill of materials

For years, the DoD has lost sensitive Controlled Unclassified Information (CUI) through breaches in the Defense Industrial Base (DIB). Adversaries targeted smaller, less secure subcontractors to steal valuable intellectual property tied to ...

2024 Sonatype Blog

DoD-Ready Software: Embracing the SWFT Initiative with Confidence

Aaron Linskens | August 4, 2025 | Continuous Security, Department of Defense, policies, Procurement, SBOM, software bill of materials

The Department of Defense's (DoD) new Software Fast Track (SWFT) Initiative is more than a policy shift — it's a transformation in how software is evaluated, acquired, and deployed across defense agencies ...

2024 Sonatype Blog

Understanding SWFT, the latest effort to modernize DoD software procurement

Tom Tapley | July 24, 2025 | Compliance, Department of Defense, executive order, legislation, SBOM, software bill of materials

Software bill of materials (SBOMs) have become essential tools in securing today's software supply chains. Their ability to provide a unified, shareable, and machine-readable record of an application's components is extremely valuable ...

2024 Sonatype Blog

The Ghost in the Machine

Bob Palmer | June 10, 2025 | Critical Infrastructure Security, Department of Defense, manufacturing

A recent report described the discovery of a cellular device embedded in a solar power inverter, which was not documented or known to be present until the device was dismantled and physically ...

ColorTokens

The Signal Chat Leak and the NSA

Bruce Schneier | March 31, 2025 | Defense, Department of Defense, signal, Uncategorized, Vulnerabilities

US National Security Advisor Mike Waltz, who started the now-infamous group chat coordinating a US attack against the Yemen-based Houthis on March 15, is seemingly now suggesting that the secure messaging service ...

Schneier on Security

Key takeaways from the latest DoD Enterprise DevSecOps Fundamentals update

Daniel Glick | November 26, 2024 | Department of Defense, DevSecOps, SBOM, software bill of materials, software supply chain

As the cybersecurity landscape changes and threats evolve, the Department of Defense (DoD) has updated its Enterprise DevSecOps Fundamentals to align development practices with security imperatives further. This is part of a ...

2024 Sonatype Blog

Drones and the US Air Force

Bruce Schneier | March 18, 2024 | Defense, Department of Defense, drones, economics of security, Uncategorized, War

Fascinating analysis of the use of drones on a modern battlefield—that is, Ukraine—and the inability of the US Air Force to react to this change. The F-35A certainly remains an important platform ...

Schneier on Security

Department of Defense

Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada

Anthropic and the Pentagon

How MOSA Principles Will Reshape the DoD RMF

CMMC 2.0 in Action: Operationalizing Secure Software Practices Across the Defense Industrial Base

DoD-Ready Software: Embracing the SWFT Initiative with Confidence

Understanding SWFT, the latest effort to modernize DoD software procurement

The Ghost in the Machine

The Signal Chat Leak and the NSA

Key takeaways from the latest DoD Enterprise DevSecOps Fundamentals update

Drones and the US Air Force

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On