government
Response to CISA Advisory (AA24-057A): SVR Cyber Actors Adapt Tactics for Initial Cloud Access
AttackIQ recommends that customers take the following testing actions in alignment to the recently published CISA Advisory (AA24-057A) which details recent Tactics, Techniques, and Procedures (TTPs) exhibited by the Russian Foreign Intelligence ...
A demand for real consequences: Sonatype’s response to CISA’s Secure by Design
In the fast-changing fields of cybersecurity and software development, the importance of creating secure software is more crucial than ever. Recently, my colleagues and I at the Open Source Security Foundation (OpenSSF) ...
DoD Email Breach: Pentagon Tells Victims 12 Months Late
Richi Jennings | | Anurag Sen, azure, Azure cloud, Azure Government Cloud, Compliance Automation Platform for FedRAMP, data privacy PII, defense department, Department of Defense, devops in government, DevSecOps in Government, digital government, DoD, email, Federal Government, Federal Government Bids, FedRAMP, fedramp accreditation;, fedramp ato, fedramp certification, fedramp compliance, government, Microsoft Azure, Microsoft Azure Security, Microsoft Exchange, Microsoft Exchange Server, pentagon, pii, PII Leakage, SB Blogwatch, U.S. Department of Defense, United States Department of Defense, US DOD, USDoD, USSOCOM
3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password ...
Security Boulevard
Dream Job, or Is It?
Madison Steel | | Aerospace, AttackIQ Flex, Defense, Energy, government, Lazarus Group, Operation Dream Job, social engineering
In the summer of 2020, ClearSky, a venture capital and growth equity firm investing in innovative companies in the cybersecurity and sustainable energy sectors, investigated into a campaign dubbed "Dream Job," highly ...
In the Cyber Jungle, the Mighty Mustang Panda Phishes Tonight
A mischievous threat actor known as Mustang Panda prowls silently through the cyber underbrush, orchestrating sophisticated spear-phishing campaigns. The post In the Cyber Jungle, the Mighty Mustang Panda Phishes Tonight appeared first ...
Why the US Needs Comprehensive Cybersecurity Legislation
Kevin Smith | | Blog, Customer Story, Cybersecurity, Drinking Water, government, threats, Threats and Trends
Taking a hands-off approach to cybersecurity is no longer good enough for any organization. In ...
OpenSSF responds to CISA, advocates for a multifaceted approach to software identification
In October 2023, the Cybersecurity and Infrastructure Security Agency (CISA) published a white paper Software Identification Ecosystem Option Analysis. Following the release of that paper, the Department of Homeland Security (DHS), CISA's ...
FBI’s Warrantless Spying on US Must Continue, Says FBI
Richi Jennings | | 4th Amendment, Democracy, FBI, FBI Director Christopher Wray, Federal Government, FISA, Fourth Amendment, government, government access, government surveillance, Government Surveillance Reform Act (GSRA), lawful surveillance, mass surveillance, nsa, police surveillance, Privacy, SB Blogwatch, Section 702, surveillance, US Constitution, US FBI, warrantless search
Privacy, schmivacy: FBI head Christopher Wray (pictured) doesn’t see what all the fuss is about. Just renew FISA section 702 already! ...
Security Boulevard
The Importance of Opting Out of CPNI Data Sharing
Tom | | ATT, CPNI, CPNI Data Sharing, CPNI Opt Out, Cybersecurity, Data Privacy, Digital Privacy, fcc, Federal Communications Commission, government, Information Security, Infosec, Internet, Internet Provider, Mobile, mobile phone, Mobile Provider, Phone Call, Phone Calls, Podcast, Privacy, Privacy on the Internetz, regulation, security, smartphone, T-Mobile, technology, telecommunications, telephone, verizon
Let’s talk about a topic that’s incredibly important for your privacy and data security. In this blog I’m going to talk about why you should opt out of the sharing of CPNI ...
Understanding the Joe Biden Executive Order on AI and Enhancing Cybersecurity: Key Takeaways and Recommendations
Joe Ariganello | | AI, AI Cybersecurity, AI Cybersecurity News, AI News, Blog, Cyber Security News, Cybersecurity News, federal cybersecurity, generative AI, government, Third Wave AI, White House
On October 30, 2023, the White House issued an Executive Order promoting safe, secure, and trustworthy artificial intelligence (AI) deployment. This Executive Order recognizes the global challenges and opportunities presented by AI ...