///
CISA, FBI Address Cloud Service Threats With Advisory
Published on
CISA, FBI Address Cloud Service Threats With Advisory

The Cybersecurity and Infrastructure Security Agency and the FBI have unveiled an advisory regarding vulnerabilities in the Ivanti Cloud Service Applications, or CSAs.

Responding to Critical Ivanti CSA Threats

CISA said Wednesday the Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications advisory was released to address the active exploitation of numerous vulnerabilities, including administrative bypass, SQL injection and remote code execution.

The two government agencies strongly urge organizations, particularly network administrators and defenders, to safeguard their networks by upgrading to the latest supported version of Ivanti CSA. They should also regularly conduct a thorough search for malicious activities on their networks using detection tactics and indicators of compromise, or IOCs.

The agencies said it is important for the cybersecurity community to visit CISA’s Known Exploited Vulnerabilities Catalog. It’s designed to enable them to mitigate vulnerabilities and address emerging threats.

CISA also encourages cybersecurity professionals to visit its Cross-Sector Cybersecurity Performance Goals to learn more about different methods of protection against threats.

/
DOD OIG Finds Deficiencies in Mgmt. of Contract Actions Supporting Ukraine
Published on
DOD OIG Finds Deficiencies in Mgmt. of Contract Actions Supporting Ukraine

The Department of Defense Office of Inspector General has released a report regarding an audit it had conducted to determine whether contracting officials within the U.S. Army properly managed undefinitized contract actions, or UCAs, awarded in support of Ukraine. UCAs make it possible for the Army to rapidly deliver equipment and services in response to urgent operational needs, DOD OIG said Tuesday.

UCA Management Issues

Twenty-four UCAs were sampled for the audit and of that total, 18 were found to have not been properly managed by Army contracting officers. Qualifying proposals were not obtained by the required dates, UCAs were not definitized within the required timelines and UCAs did not comply with DOD requirements concerning profit adjustments.

The audit attributed the deficiencies to failure by contracting officers to establish realistic definitization timeframes, use their authority to unilaterally definitize or withhold payments and consistently interpret guidance regarding the start of the definitization period. The officers also prepared an outdated form to calculate the profit objective of the government.

Unnecessary Financial Risk

The effect of the deficiencies identified by the audit is that the DOD was subjected to unnecessary financial risk. DOD OIG offered 14 recommendations to address the issues.

Commenting on the matter, Inspector General Robert Storch said, “Undefinitized contract actions require particularly diligent oversight to protect taxpayer resources and maintain accountability. This sort of contracting serves an important purpose, but the Army needs to establish additional procedures and oversight to ensure it is reducing unnecessary financial risk and potential for wasted taxpayer dollars.”

//
GAO Says DOD Must Improve Modular Open Systems Use in Weapons Development
Published on
GAO Says DOD Must Improve Modular Open Systems Use in Weapons Development

The Government Accountability Office has called on the Department of Defense to improve its use of the modular open systems approach, or MOSA, in developing weapon systems to save time and money.

In a Wednesday report, GAO said the Pentagon failed to consistently employ the approach for design decisions across weapon programs, noting that by overlooking the benefits of MOSA, the agency missed opportunities to cut costs and implement faster upgrades.

Squandered Benefits of Proper MOSA Use

According to GAO, its review of 20 DOD programs showed that none conducted a formal analysis of costs and benefits for MOSA because it’s not a requirement. However, the agency’s decision to skip the approach reportedly led to wasted benefits, such as increased innovation, enhanced interoperability, lower prices due to higher competition and faster repairs and upgrades.

While the DOD is preparing regulations and guidance to address MOSA use, the office said that gaps still exist, which could hamper its implementation. The GAO report stressed the urgency of using MOSA more efficiently as it enables weapon programs to better respond to changing threats and address high weapon system sustainment costs.

GAO Recommendations

In conclusion, the GAO review submitted 14 recommendations to the DOD, including that the agency develop a process to analyze MOSA costs and benefits and resolve the identified issues in MOSA policy and guidance. The Pentagon concurred with the suggestions.

//
Blue Abyss, NASA Ink Collaboration
Published on
Blue Abyss, NASA Ink Collaboration

Blue Abyss and NASA’s Glenn Research Center have forged a partnership through a Space Act Agreement to advance commercial space training, research and infrastructure development.

Forging the Future of Space Exploration

The company said Wednesday the collaboration will focus on the development of innovative human spaceflight capabilities, including training and simulations of various extreme environments. The partnership aims to drive scientific discovery, foster innovation and enhance the commercial space sector.

The two organizations will work to develop advanced methods of selecting and training future space travelers, evaluate the effects of extreme gravity and develop advanced infrastructure. NASA will leverage its decades’ worth of technical expertise in space exploration for the project while Blue Abyss will perform an in-depth market analysis to identify infrastructure requirements over the next 10 years. The data will help determine how commercial facilities will be utilized for future space missions.

John Vickers, Blue Abyss CEO, said, “As we develop next-generation infrastructure, including our proposed facilities in the U.S. and U.K., it helps develop the international space sector, supporting industry growth, training and infrastructure development that will support international clients and foster innovation.”

//
Robert Salesses Named Acting Secretary of Defense
Published on
Robert Salesses Named Acting Secretary of Defense

President Donald Trump has appointed Robert Salesses, a retired U.S. Marine Corps officer, as acting secretary of the Department of Defense, DOD News reported Monday.

Salesses will serve as interim DOD secretary until a permanent secretary is confirmed by the Senate. Trump’s current nominee, Pete Hegseth, is still undergoing discussion.

Robert Salesses’ Career Background

Salesses most recently served as deputy director of Washington Headquarters Services, a DOD Field Activity. In this capacity, he was the principal adviser to the director, overseeing a portfolio of integrated operational services to the Office of the Secretary of Defense, Joint Staff, military departments, defense agencies, Congress and the Executive Office of the President.

The senior executive service member’s DOD career included time as deputy assistant secretary of defense for defense continuity and mission assurance and deputy assistant secretary of defense for homeland defense integration and defense support of civil authorities, where he served as principal career civilian adviser to eight secretaries of defense.

He started his federal civilian service by serving as the special assistant for the Homeland Security Task Force.

Appointment of Acting Service Secretaries

In addition to Salesses, the White House appointed Mark Averill, head of the Army’s Office of the Administrative Assistant, as acting secretary of the Army and Terence Emmert, most recently principal deputy chief technology officer for mission capabilities at DOD, as acting secretary of the Navy.

The president also named Gary Ashworth, who served as acting assistant secretary of defense for acquisition at DOD, as acting secretary of the Air Force.

/
DOD Establishes Policy for Joint Production Accelerator Cell
Published on
DOD Establishes Policy for Joint Production Accelerator Cell

The Department of Defense has released a new directive establishing policy, outlining responsibilities and providing procedures for the function of the Joint Production Accelerator Cell, or JPAC.

William LaPlante, undersecretary of defense for acquisition and sustainment and a three-time Wash100 awardee, approved and cleared for public release the new DOD Instruction on JPAC, which took effect on Friday.

What Is JPAC?

JPAC is an office within the Office of the Undersecretary of Defense for Acquisition and Sustainment, or USD A&S, that works to establish enduring production capacity, resiliency and surge capability for key defense weapons systems and supplies. It also serves as a key enabler of the National Defense Strategy.

Through JPAC, the department promotes industrial production resilience and ensures capability for defense weapons platforms by assessing and developing optical production strategies.

Strategies for defense weapons systems and supplies include evaluating mitigation strategies for identified production constraints; developing integrated strategies for production surge capability; and assessing global production.

What Are the Responsibilities of the JPAC Executive Director?

The JPAC executive director manages and directs the personnel in executing the roles and responsibilities outlined in the directive and coordinates and exchanges information with the Office of the Secretary of Defense and DOD components that have related responsibilities and functions.

The head of JPAC should communicate directly with DOD component heads to implement the policy, including soliciting advice and assistance.

/
DHS Releases Directive on AI Use & Acquisition
Published on
DHS Releases Directive on AI Use & Acquisition

The Department of Homeland Security has issued a directive establishing DHS policy for the use and acquisition of artificial intelligence as part of efforts to advance AI innovation and governance while managing risks.

The directive issued on Jan. 15 states that specifications for technical requirements as required by AI acquisition contracts should address testing and evaluation requirements and risk management considerations.

According to the directive, such specifications should ensure that technical requirements support transparency, performance evaluation and improvement in AI; assess sustainability and environmental efficiency; and address data ownership and management.

What Are the Prohibited Uses of AI at DHS?

The new DHS policy outlines several AI uses that are not allowed within the department, such as relying on outputs of AI as the sole basis for law and civil enforcement actions or denial of government benefits and using data associated with the use of AI to make or back decisions based on improper consideration of race, gender, ethnicity, religion and medical condition, among other factors.

The directive also prohibits the use of AI in unlawful or improper systemic, indiscriminate or large-scale monitoring, surveillance or tracking of individuals.

DHS said improper targeting, profiling or discriminating against any person based on race, general identity, national origin and other individual characteristics is also prohibited.

Responsibilities of DHS Officials

According to DHS, the department’s chief AI officer is responsible for leading governance and oversight processes and structures and establishing strategic priorities for AI deployment efforts.

The directive states that the chief information officer supports the use of AI at DHS through a data management lifecycle framework and data standards and requirements. The CIO should also ensure that AI use complies with cybersecurity requirements and aligns with the department’s customer experience commitment.

Register now to join the Potomac Officers Club’s 2025 Artificial Intelligence Summit on March 20, to hear more about cutting-edge AI innovations from industry and government experts.

POC - 2025 Artificial Intelligence Summit
//
DARPA Needs Input on Tech for AI System Vulnerability Assessment
Published on
DARPA Needs Input on Tech for AI System Vulnerability Assessment

The Defense Advanced Research Projects Agency is requesting information from industry developers and academic institutions on existing and emerging technologies for vulnerability assessments of artificial intelligence-enabled systems.

The requirement includes techniques and tools to evaluate adversarial access threat models and potential vulnerabilities posed by AI-powered system development and deployment pipelines, DARPA said in a Friday notice posted on SAM.gov. The agency will use the collected input to identify critical gaps that must be addressed in an upcoming AI vulnerability assessment program.

Critical Areas Respondents Must Address

In particular, DARPA would like to hear from parties capable of advancing an AI red teaming framework and autonomous toolkit and executing innovative cyber methods for AI-enabled battlefield systems. Respondents that could address electronic warfare effects for manipulating AI-enabled battlefield systems and physical manufacturing of adversarial effects are also invited to send their submissions.

The effort supports DARPA’s Guaranteeing AI Robustness against Deception program, which was launched in 2019 to develop unique methods of protecting Department of Defense AI models against the threats presented by the adversarial AI research community. Responses from all capable sources, including private and public companies, individuals, universities, research centers and government-sponsored laboratories will be accepted until Feb. 28.

//
DOD, SBA Publish Approved Funds for Critical Tech Investment
Published on
DOD, SBA Publish Approved Funds for Critical Tech Investment

The Department of Defense and Small Business Administration have published the names of 18 approved Green Light funds for the Small Business Investment Company Critical Technologies, or SBICCT, Initiative.

The project aims to bolster national and economic security by attracting and scaling private investment into critical technology areas and component-level technologies and production processes, DOD said Friday. The SBICCT Initiative is a partnership between the Pentagon and SBA.

Under the program, the first cohort of funds is expected to invest more than $4 billion into over 1700 portfolio companies focused on technology areas identified by the DOD. The funds will cover all stages and strategies of private investment, including seed, venture, growth, buyout, direct lending, special situations and fund-of-funds.

Achieving Green Light Letter Milestone

According to the Pentagon, the investment funds achieved the Green Light Letter milestone by submitting an application detailing their management team, investment strategy, track record, fund structure and governing standards. Then the funds’ application went through an operational and investment due diligence and legal review.

The next phase of the process involved a formal interview with SBA’s Investment Committee, which notified the successful funds that they were qualified to manage a small business investment company, or SBIC. The selected funds are invited to raise private capital and apply for their SBIC license, which authorizes them to start investing in portfolio companies.

What Is the Goal of the SBICCT Initiative?

Launched in December 2022, the SBICCT Initiative seeks to increase commercial investment in national security technologies. It will match private capital with guaranteed federal loans to stimulate investment in emerging technologies, including artificial intelligence, quantum science, microelectronics and space technology.

CBO Projects Debt, Budget Deficit Increase Through 2035
Published on
CBO Projects Debt, Budget Deficit Increase Through 2035

Federal debt is projected to rise from 2025 through 2035 due to revenue growth being outpaced by expenses in Social Security and Medicare as well as interest payments, according to Phillip Swagel, director of the Congressional Budget Office.

The Budget and Economic Outlook

Swagel made the remarks during a press briefing on Friday, citing highlights from The Budget and Economic Outlook: 2025 to 2035, which had just been released. The outlook report is issued regularly by the CBO to present baseline projections of the federal budget and the economy through the current year and the next decade provided prevailing tax and spending laws remain unchanged.

Debt Increase

Regarding debt, Swagel went on to report that it hit 98 percent of gross domestic product as of the end of 2024 and is expected by 2029 to clear 106 percent of GDP, currently the record high. By 2035, debt is projected to be 118 percent of GDP.

GDP Growth

Real GDP growth itself is projected to slow down from 2.3 percent in 2024 to 1.9 percent in 2025. From 2026 through 2035, GDP is expected to average out at 1.8 percent.

Budget Deficit

The CBO official also reported that the budget deficit is expected to hit $2.7 trillion by 2035, up from the $1.9 trillion projected for 2025. It was noted, however, that the cumulative deficit over that 10-year period is lower by about $1 trillion compared to the projection CBO made in June 2024.

1 128 129 130 131 132 2,621