Article

What a Government Shutdown means for Cybersecurity

Though you may have heard of the possible government shutdown looming overhead, you may not have thought about its implications for national cybersecurity. In the event of a shutdown, the Cybersecurity and Infrastructure Security Agency (CISA) plans to furlough over 80% of its employees, with only 571 of the current 3,117 employees being retained, as described in the latest version of the DHS’ Procedures Relating to a Lapse in Appropriations. Unless Congress can come to an agreement on the spending budget, the government will shut down on Sunday, October 1st, as the funding for these federal agencies would run out at 12:01 am.

Read Post

Article

The MGM and Caesars Entertainment Cyberattacks

Nearly two and a half years have passed since Colonial Pipeline put ransomware into the headlines. Since then, ransomware has ebbed and flowed, but high-profile companies continue to fall prey to cybercrime threat actors, with no end in sight. In a stark reflection of this reality, two behemoth Las Vegas-based casinos—MGM and Caesars Entertainment—became the latest targets, though with one key factor making a difference in the aftermath.

Read Post

Article

Bryan Vorndran

Many people consider Bryan Vorndran to be the face of the FBI’s cyber efforts. His strategies for the disruption of cybercriminal infrastructure have been successful and are improving the world of cybersecurity.

Read Post

Article

The FBI & US Department of Justice

The US Department of Justice, particularly through the FBI is making great strides in the fight against ransomware. Their recent focus on disrupting cybercrime has been crucial in the takedown of notorious cybercriminals like Hive, and the breakdown of malware tools like Qakbot.

Read Post

Article

Anne Neuberger

Anne Neuberger is an influential figure in US policy on cybersecurity as a member of President Biden's National Security Council. In the fight against cybercrime, Neuberger has proposed banning ransomware payments, a strategy that has strong ties to changes in federal foreign policy.

Read Post

Article

CIRCIA

The Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) is a key centerpiece of the National Cybersecurity Strategy Implementation Plan.

Read Post

Article

Jen Easterly

Director of CISA, Jen Easterly emphasizes the need for companies to prioritize product safety over speed and advocates for software to be "secure by design." This is just one of many policy changes that demonstrate the government's commitment to cybersecurity improvement.

Read Post

Article

New NIST Cybersecurity Framework

The latest version of the National Institute of Standards and Technology (NIST) Cybersecurity Framework is more widely applicable than previous versions and includes more elements that will help business owners manage cybersecurity risk.

Read Post

Article

New SEC Rules

The U.S. Securities and Exchange Commission (SEC) has released new rules that call for standardized reporting of cyber incidents, with the aim of providing better security to investors. This new transparency requirement involves disclosure of the company's cyber expertise and a four-day reporting deadline.

Read Post

Article