Tag Archives: cyber attack

Report: Suspected Chinese Hackers Targeted U.S. Payroll Agency Via Separate Bug in SolarWinds Orion Code

Cyber Attack

A group of suspected Chinese hackers used a vulnerability in SolarWinds software to breach U.S. government networks and a payroll agency within the U.S. Department of Agriculture (USDA) - National Finance Center (NFC) - was one of the government organizations affected by the cyber attack. The NFC oversees the payroll of several federal agencies, including the FBI and the departments of the Treasury, State and Homeland Security, according to former officials. 

Read More »

CISA Warns Organizations of Techniques Used by Hackers to Compromise Cloud Services

Cloud Hosting

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an analysis report in response to cyber attacks on cloud services of various organizations. The agency also found that hackers take advantage of email forwarding rules created by users to gain access to sensitive data. CISA has recommended several measures to help organizations protect cloud environments.

Read More »

DoD Halts Joint Regional Security Stack Deployment on Classified Networks

Pentagon

The Department of Defense’s (DoD) testing office said DoD has stopped the rollout of a $2 billion cybersecurity project called the Joint Regional Security Stack (JRSS) to classified networks due to its inability to help defenders safeguard component networks from “operationally realistic cyber attacks.” JRSS is intended to provide DoD with attack prevention, intrusion detection and other network security capabilities.

Read More »

Cyber Unified Coordination Group Provides Update on SolarWinds Orion Compromise

Cyber Attack

The FBI, Office of the Director of National Intelligence (ODNI), Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) issued a joint statement on Tuesday through the newly created cyber unified coordination group (UCG) to provide updates on an advanced persistent threat actor allegedly linked to Russia. 

Read More »

Rep. Adam Smith Raises Concerns Over Plans to End Dual-Hat Structure for NSA, Cybercom

Rep. Adam Smith

Rep. Adam Smith, D-Wash., chairman of the House Armed Services Committee (HASC), has warned leaders at the Department of Defense (DoD) against ending the dual-hat relationship between U.S. Cyber Command (USCYBERCOM) and the National Security Agency (NSA).

Read More »

Senators Ask FBI, CISA to Provide Details Over SolarWinds Orion Compromise

Cryptocurrency Malware

A group of six senators has called on leaders of the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) to respond to several questions with regard to a cyber vulnerability involving SolarWinds’ Orion Network Management products. The letter came days after CISA issued an emergency directive directing all agencies to immediately disconnect SolarWinds Orion products versions 2019.4 to 2020.2.1 HF1. 

Read More »

Report: Russia-Linked Hackers Suspected of Compromising Commerce, Treasury Email Systems

Russia-Linked Hackers

The White House acknowledged that hackers believed to have ties to a Russian intelligence agency breached email systems used by federal agencies. Reports of the cyber attack came days after the National Security Agency (NSA) released an advisory that Russian state-sponsored cyber actors were exploiting a vulnerability in a platform widely used in the government.

Read More »

Inspector General Report: State Dept. Faces Persistent Information Security Challenges

CMMC Reciprocity

The State Department’s office of inspector general has released a report saying the agency has initiated steps to improve its information security program but continues to face significant issues and control weaknesses that increase its vulnerability to cyber threats and attacks. The document also uncovered issues with user access controls and records management. 

Read More »

Nand Mulchandani on JAIC’s Efforts to Counter Adversarial AI

Nand Mulchandani

Nand Mulchandani, chief technology officer of the Department of Defense’s (DoD) Joint Artificial Intelligence Center (JAIC), said JAIC is working on new approaches on how model and data sharing could come up with a manifest that helps counter cyber attacks that try to hinder or confuse algorithms when it comes to releasing sensitive data.

Read More »

Christopher Krebs: Collaboration Key to Deterring Foreign Cyber Interference in Elections

Christopher Krebs

Christopher Krebs, director of the Cybersecurity and Infrastructure Security Agency and a 2020 Wash100 Award winner, said the lack of foreign cyber interference in U.S. election systems this year could be attributed to more than three years of collaboration. "I think what you're seeing more than anything is 3½ years of collaboration," Krebs said.

Read More »