White House hosts open-source software security summit in light of expansive Log4j flaw

Written by Tim Starks Jan 13, 2022 | CYBERSCOOP Tech giants and federal agencies will meet at the White House on Thursday to discuss open-source software security, a response to…

If hackers are exploiting the Log4j flaw, CISA says we might not know yet

Written by Tim Starks Jan 10, 2022 | CYBERSCOOP Federal officials cautioned Monday that, while the widespread Log4j vulnerability hasn’t led to any major known intrusions in the U.S., there…

Homeland Security Offering $5,000 Bug Bounty to Hack DHS

The program will allow hackers and security researchers to earn between $500 to $5,000 for identifying verified vulnerabilities. The US Department of Homeland Security (DHS) has announced a new bug…

CISA to brief critical infrastructure companies about urgent new Log4j vulnerability

Written by Tonya Riley Dec 13, 2021 | CYBERSCOOP The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency will host a call with critical infrastructure stakeholders Monday afternoon about…

Security experts question new DHS/TSA cybersecurity rules for rail companies

On Thursday, the Department of Homeland Security (DHS) released new rules for the US’s freight railroad and passenger rail transit industry. The rules make it mandatory for companies to have…

US Issues Cybersecurity Directive for Airlines and Railroads

US Issues Cybersecurity Directive for Airlines and Railroads Nearly all railroads and airlines in the United States have been ordered to report cybersecurity breaches to the federal government.  Under the…

DHS: Cybersecurity coordinators and vulnerability assessments mandatory for rail companies

The Department of Homeland Security (DHS) announced two new cybersecurity directives handed down by the Transportation Security Administration (TSA) on Thursday designed to better protect freight railroads and passenger rail transit…

FBI Fixes Misconfigured Server After Hoax Email Alert

FBI Fixes Misconfigured Server After Hoax Email Alert The FBI has fixed a misconfigured web portal that allowed hacktivists to send thousands of fake emails to recipients. News emerged over…

SolarWinds hackers, Nobelium, once again strike global IT supply chains, Microsoft warns

Microsoft has warned that Nobelium, the hacking group behind the SolarWinds fiasco, has targeted at least 140 resellers and technology service providers in global IT supply chains. On October 24,…

America Urged to Prepare for Shift to Post-Quantum Cryptography

America Urged to Prepare for Shift to Post-Quantum Cryptography The Department of Homeland Security (DHS) has teamed up with the Department of Commerce’s National Institute of Standards and Technology (NIST) to release a roadmap on the…