The Office of Management and Budget has released a memorandum to provide agencies with fiscal year 2025 reporting guidance and deadlines in compliance with the Federal Information Security Modernization Act of 2014,
More
President Joe Biden has signed an executive order that outlines additional measures to improve the country’s cybersecurity by enhancing the U.S. government’s cyber sanctions authorities against ransomware attackers and other threat actors
More
The Government Accountability Office on Thursday released a report detailing the results of a study it had conducted on five federal non-military departments to determine the extent to which they had implemented
More
Public and private sector users of the standard Microsoft Purview Audit can now access new logging capabilities designed for cybersecurity through the Microsoft Expanded Cloud Log Implementation Playbook that the Cybersecurity and
More
The Cybersecurity and Infrastructure Security Agency has released a new guidebook detailing how to facilitate voluntary information exchange about cyber threats and defenses within the artificial intelligence community. The playbook also lists
More
The Department of Defense has failed to effectively implement the process by which third-party organizations are authorized to carry out Level 2 assessments under Cybersecurity Maturity Model Certification 2.0. This is the
More
The National Cybersecurity Center of Excellence has released an initial public draft of “Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile” and is calling for feedback on the publication. Managing Ransomware
More
The National Security Agency, together with the Cybersecurity and Infrastructure Security Agency and other partner organizations, has issued a guidance to assist operational technology owners and operators in selecting secure OT products. Cybersecurity Information Sheet
More
The Cybersecurity and Infrastructure Security Agency has reported significant progress in improving critical infrastructure cybersecurity and resilience since the implementation of its cross-sector Cybersecurity Performance Goals. The agency on Friday published the
More
The Cybersecurity and Infrastructure Agency has published guideposts for the IT industry to help improve cybersecurity throughout the software development lifecycle. The guidance, called IT Sector-Specific Goals, or IT SSGs, recommends voluntary
More