government
Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys
Senator Bernie Sanders published an op-ed in the New York Times last week demanding that the federal government seize a 50% equity stake ...
5 Steps to Turn Your RMF Backlog Into a Continuous ATO: The CSRMC Migration Playbook
Let's be honest about the legacy Risk Management Framework (RMF): for the last decade, achieving an ATO has been less about actual cybersecurity and more about creative writing. We built three-year "snapshot" ...
Securing Colorado’s Government from the Inside: A Public Sector Cybersecurity Feature
Government cybersecurity does not get the same headlines as a Fortune 500 breach, but the stakes are just as real. The systems being protected hold resident data, election infrastructure, court records, financial ...
The Time Is Now to Prepare for CRA Enforcement
When the EU Cyber Resilience Act (CRA) was introduced into law in 2024, it represented one of the most significant regulatory shifts we've seen anywhere in the world with implications for how ...
When AI Writes Code, Who Governs the Dependencies?
The Department of War'sCall for Solutions on AI-enabled coding capabilities (CDAO_26-01) arrives at exactly the right moment. Today's AI coding assistants have moved beyond experiments in productivity to becoming the basis for ...
What Golden Dome Requires from Federal DevSecOps Teams
The threat environment facing the United States is growing more complex and interconnected. Executive Order 14186 identifies the threat of attack by ballistic, hypersonic, and cruise missiles, along with other advanced aerial ...
OMB Rolled Back the Rules. Security Did Not Get Easier
The U.S. Office of Management and Budget (OMB)'s decision to rescind M-22-18 and M-23-16 and replace them with M-26-05 has been framed as a win for flexibility and a rollback of security ...
Things Were Even Worse at CISA Than We Thought
Just last week I wrote that CISA was on life support. That was before we knew how bad it really was. When Jen Easterly stepped down and the agency was left without ...
Emulating the Mutative BlackByte Ransomware
AttackIQ has released a new attack graph that emulates the behaviors exhibited by BlackByte ransomware, a strain operated under the Ransomware-as-a-Service (RaaS) model that emerged in July 2021. Since its emergence, BlackByte ...
Securing the Software Supply Chain: A Federal Imperative for 2026
As federal systems continue to underpin mission execution, software supply chain security has moved from a technical concern to a leadership responsibility. In 2026, the ability to understand, manage, and defend software ...
