Bleeping Computer

FEBRUARY 1, 2024

federal agencies to disconnect all Ivanti Connect Secure and Policy Secure VPN appliances vulnerable to multiple actively exploited bugs before Saturday. [.] CISA has ordered U.S.

VPN 131

VPN 131

The Hacker News

APRIL 11, 2024

Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an emergency directive (ED 24-02) urging federal agencies to hunt for signs of compromise and enact preventive measures following the recent compromise of Microsoft's systems that led to the theft of email correspondence with the company.

Risk 111

Risk Cybersecurity 111

Krebs on Security

JUNE 10, 2022

At the outset of their federal criminal trial for hijacking vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct (now Amobee ) have pleaded guilty to lesser misdemeanor charges of fraud and misrepresentation via email.

Government 245

Government Marketing Internet Internet 245

Bleeping Computer

DECEMBER 12, 2023

​The Ukrainian government's military intelligence service says it hacked the Russian Federal Taxation Service (FNS), wiping the agency's database and backup copies. [.]

Hacking 122

Hacking Backups Government 122

Security Boulevard

MARCH 24, 2024

Cybersecurity experts from state and local government, as well as top federal agencies, gathered this week to discuss everything from critical infrastructure attacks to concerns about China. The post Federal, State, Local Cyber Leaders Meet to Discuss Threats appeared first on Security Boulevard. Here are some top takeaways.

Government 70

Government Cybersecurity 70

Duo's Security Blog

FEBRUARY 23, 2024

Back in November, 2019, Duo achieved a key milestone with its FedRAMP Authorization as a Cloud Service Provider (CSP), and launched its federal products that are FedRAMP Moderate with the sponsorship from the Department of Energy (DOE). Our federal editions are the first standalone cloud-based MFA offerings that are FedRAMP authorized.

Energy and Utilities 56

Energy and Utilities Authentication Mobile Technology 56

The Hacker News

FEBRUARY 24, 2024

federal agencies using Microsoft Purview Audit irrespective of the license tier, more than six months after a China-linked cyber espionage campaign targeting two dozen organizations came to light. Microsoft has expanded free logging capabilities to all U.S.

Accountability 106

Accountability 106

Security Boulevard

MARCH 1, 2023

Federal agencies have 30 days to remove the popular Chinese social media app TikTok from federal government devices, according to a guidance memorandum issued by the White House. The post White House Bans TikTok on Federal Devices appeared first on Security Boulevard.

Media 104

Media Government Data privacy Risk 104

NSTIC

JANUARY 24, 2024

This post is part of a series on privacy-preserving federated learning. Our first post in the series introduced the concept of federated learning—an approach for training AI models on distributed data by sharing model updates instead of training data.

Engineering 63

Engineering 63

NSTIC

FEBRUARY 27, 2024

This post is part of a series on privacy-preserving federated learning. Our first post in the series introduced the concept of federated learning and described how it’s different from traditional centralized learning - in federated learning, the data is distributed among participating organizations, and

Engineering 63

Engineering Technology 63

Schneier on Security

APRIL 29, 2020

in 2018 beat back federal prosecutors seeking to wiretap its encrypted Messenger app. Lawyers for the ACLU and the Washington Post on Tuesday asked a San Francisco-based federal court of appeals to unseal the judge's decision, arguing the public has a right to know how the law is being applied, particularly in the area of privacy. [.].

Encryption 290

Encryption Government Surveillance 290

SecureWorld News

MARCH 6, 2024

With payment systems crippled, hospitals are now pleading for federal intervention to avert a financial crisis that could imperil care delivery. Federal agencies can play a pivotal role. The unprecedented cyberattack on Change Healthcare, a major revenue cycle management firm, has thrown the U.S. healthcare system into disarray.

Healthcare 97

Healthcare Ransomware Scams Government 97

Bleeping Computer

JANUARY 17, 2024

federal agencies to secure their systems against three recently patched Citrix NetScaler and Google Chrome zero-days actively exploited in attacks. [.] Today, CISA ordered U.S.

103

103

Security Boulevard

JUNE 23, 2023

CISA put federal civilian agencies on notice that they were expected to secure network devices within 14 days of discovering they had been exposed on the internet. The post CISA Pressures Federal Civilian Agencies to Secure Network Devices appeared first on Security Boulevard.

Internet 113

Internet Internet Data breaches Cybersecurity 113

Tech Republic Security

NOVEMBER 4, 2021

The Cybersecurity and Infrastructure Security Agency is maintaining a database of known security flaws with details on how and when federal agencies and departments should patch them.

Government 199

Government Cybersecurity 199

Security Boulevard

DECEMBER 9, 2022

The post Federated Authentication vs. SSO: What’s the Difference? The post Federated Authentication vs. SSO: What’s the Difference? If you’ve ever deployed a new application for your organization, you know first-hand the grumbling. appeared first on Axiad. appeared first on Security Boulevard.

Authentication 117

Authentication 117

Security Affairs

NOVEMBER 27, 2023

Ukraine’s intelligence service announced the hack of the Russian Federal Air Transport Agency, ‘Rosaviatsia.’ ’ Ukraine’s intelligence service announced they have hacked Russia’s Federal Air Transport Agency, ‘Rosaviatsia.’ ” reads the announcement. ” reads the announcement.

Hacking 120

Hacking Engineering Manufacturing Government 120

Adam Shostack

JUNE 19, 2021

I’m thrilled that Juneteenth will be a Federal holiday. We need more holidays that celebrate freedom, and there’s few events that increase freedom as much as emancipating people who were enslaved. That is, freeing them from the threat violence would be used against them, and they would have no recourse.

130

130

Security Boulevard

DECEMBER 14, 2023

federal government issued an Executive Order stating that federal agencies must meet specific cybersecurity requirements by the end of fiscal year 2024. The post Zero Trust defense for federal agencies appeared first on Menlo Security. The post Zero Trust defense for federal agencies appeared first on Menlo Security.

Government 70

Government Risk Cybersecurity CISO 70

Security Boulevard

APRIL 5, 2023

MixMode, the leader in AI-driven network security, announces hiring John Phillips as VP of Federal Sales. Phillips will oversee the continued growth of MixMode’s federal business and adoption of the MixMode platform by federal partners, and he will be focused on accelerating MixMode’s triple-digit growth in 2021 and 2022.

Network Security 98

Network Security Cybersecurity 98

Security Boulevard

MAY 19, 2023

The Federal Trade Commission (FTC) sued an online geolocation data broker for unfairly selling data about the physical location. The post Federal Court Dismisses FTC Location Privacy Lawsuit appeared first on Security Boulevard.

Marketing 96

Marketing Data privacy Risk Government 96

Security Boulevard

JANUARY 19, 2024

Of all the SaaS tools used by federal IT teams, cutting-edge cybersecurity tools may be the ones in highest demand. We […] The post Devo Achieves ATO, and Federal CISOs Gain Another Key Resource appeared first on Anitian. We […] The post Devo Achieves ATO, and Federal CISOs Gain Another Key Resource appeared first on Anitian.

CISO 67

CISO Ransomware Cybersecurity 67

Security Boulevard

MAY 26, 2023

The post Federal Appellate Court Approves ‘Pretext’ Border Search appeared first on Security Boulevard. Louis, Missouri, as a research application engineer specializing in hyperspectral imaging technology.

Engineering 104

Engineering Technology Risk Government 104

Security Affairs

NOVEMBER 2, 2023

Clop ransomware gang gained access to the email addresses of more than 632K US federal employees at the departments of Defense and Justice. Russian-speaking Clop ransomware group gained access to the email addresses of about 632,000 US federal employees at the departments of Defense and Justice. ” states Bloomberg.

Data breaches 116

Data breaches Government Ransomware Hacking 116

Security Boulevard

JANUARY 27, 2022

On January 26, 2022, the federal circuit court in California considered the case of Los Angeles-based property management company Ernst and Haas, which. The post Cyberinsurance: Federal Court Interprets Banking Fraud Policy appeared first on Security Boulevard. They had a cybersecurity incident, filed a claim and—guess what?

Banking 130

Banking Insurance Cybersecurity Social Engineering 130

Security Boulevard

NOVEMBER 29, 2023

A federal court judge gave U.S. regulators the green light to prohibit Meta from monetizing the data its various entities – including Facebook and Instagram – collect from users under the age of 18, one of several restrictions the Federal Trade Commission said in May it would put on the giant social media company.

Media 57

Media Data privacy Security Awareness Risk 57

Tech Republic Security

FEBRUARY 21, 2022

The post Ping Identity, Carahsoft partner for enhanced federal cybersecurity measures appeared first on TechRepublic. The two companies announced a joint agreement to work towards bettering the country’s infrastructure against cyber threats.

Cybersecurity 146

Cybersecurity Cyber threats 146

SecureWorld News

AUGUST 30, 2023

has introduced the Federal Cybersecurity Vulnerability Reduction Act of 2023 (H.R. 7842), a bill that would require federal contractors to implement vulnerability disclosure policies (VDPs). Representative Nancy Mace (R-S.C.) Mace said in a statement. The bill has been referred to the House Committee on Oversight and Reform.

Cyber Risk 81

Cyber Risk Cybersecurity Small Business Government 81

Bleeping Computer

NOVEMBER 21, 2023

federal agencies to secure their systems against an actively exploited vulnerability that lets attackers gain root privileges on many major Linux distributions. [.] Today, CISA ordered U.S.

86

86

Bleeping Computer

JUNE 13, 2023

CISA issued this year's first binding operational directive (BOD) ordering federal civilian agencies to secure misconfigured or Internet-exposed networking equipment within 14 days of discovery. [.]

Internet 110

Internet Internet 110

Security Affairs

NOVEMBER 16, 2022

Iran-linked threat actors compromised a Federal Civilian Executive Branch organization using a Log4Shell exploit and installed a cryptomining malware. ” CISA conducted an incident response engagement in the impacted Federal Civilian Executive Branch (FCEB) organization between mid-June and mid-July 2022. Pierluigi Paganini.

Government 119

Government Hacking Malware Software 119

Bleeping Computer

JUNE 27, 2023

federal agencies that have to be secured according to a recently issued CISA Binding Operational Directive. [.] Censys researchers have discovered hundreds of Internet-exposed devices on the networks of U.S.

Internet 108

Internet Internet 108

Security Boulevard

APRIL 16, 2021

DelBene noted that states are surging ahead of the federal government in creating privacy laws, each with their own flavor and each serving the needs of. The post New Federal Data Privacy Legislation Proposed appeared first on Security Boulevard.

Data privacy 117

Data privacy Government Risk Cybersecurity 117

Dark Reading

JUNE 7, 2023

By stepping in to provide aid, the federal government could help protect companies, insurers, and the economy from the impact of a widespread, catastrophic cyberattack.

Insurance 93

Insurance Cyber Insurance Government 93

CyberSecurity Insiders

AUGUST 4, 2021

As per the sources reporting to Cybersecurity Insiders, the attack took place on the computer network of Island Education Federation, locking down access to important documents that might take weeks or months to be restored. The post Ransomware attack disrupts Island Education Federation Servers appeared first on Cybersecurity Insiders.

Education 140

Education Ransomware Cybersecurity Encryption 140

Bleeping Computer

NOVEMBER 16, 2022

The FBI and CISA revealed in a joint advisory published today that an unnamed Iranian-backed threat group hacked a Federal Civilian Executive Branch (FCEB) organization to deploy XMRig cryptomining malware. [.].

Malware 129

Malware Hacking 129

NSTIC

DECEMBER 7, 2023

This post is the first in a series on privacy-preserving federated learning. Training Models: Conventional vs Federated Learning The standard way to train The series is a collaboration between CDEI and NIST.

Healthcare 77

Healthcare 77