NSA

CISA chief: Cyber incident reporting can't become a burden

Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, stressed the importance of cyber incident reporting but said mandates should be careful of potentially overburdening companies -- and CISA -- with "reporting noise."

Chris Inglis outlines blueprint for federal cyber priorities

The newly installed National Cyber Director offered his take on the roles and responsibilities of his office, the Cybersecurity and Infrastructure Security Agency, the National Security Council and agency IT and security operations in responding to federal cyber incidents.

Microsoft nabs top secret cloud ATO

Azure Government Top Secret is now "generally available" for national security workloads, Microsoft announced in a blog post.

CISA predicts cyber EO will drive progress on zero trust

Most agencies are just getting started creating plans around zero trust, but tight deadlines featured in President Joe Biden's cybersecurity executive order and a wave of new guidance, may speed up implementation across the entire government.

Does the U.S. need a cyber force?

Gen. Paul Nakasone, the director of the National Security Agency and head of U.S. Cyber Command, told lawmakers that infrastructure deficits could prevent the creation of a service modeled on Space Force.

Moultrie's cyber background clears confirmation path

President Joe Biden's pick to lead the Defense Department's intelligence and security office, Ronald Moultrie, appears to have a smooth path to Senate confirmation thanks in large part to his cybersecurity experience.

Nakasone deflects senators' invitations to seek domestic spying powers

Lawmakers have continued to prod the NSA chief to request new surveillance authorities that might prevent another SolarWinds-type breach.

Microsoft patches new Exchange CVEs, credits NSA with discovery

The new vulnerabilities found in Exchange servers running on-premises are separate from zero-day exploits discovered and announced in March.

Lawmakers press NSA for answers about 2015 Juniper hack

A group of Democratic lawmakers is calling on the NSA to explain its part in developing a flawed encryption algorithm that was used and subsequently exploited through Juniper Network's security products, citing the supply chain hack involving SolarWinds Orion.

DOD moves to centralize security clearance disputes

The Defense Department issued new policy for revoked clearances.

Rob Joyce to lead NSA cyber office

Joyce's predecessor, Anne Neuberger, is joining President-elect Joe Biden's administration as a deputy national security advisor.

White House task force says Russia likely to blame for SolarWinds hack

The Cyber Unified Coordination Group said in a statement on Tuesday that fewer than 10 government agencies have been "compromised by follow-on activity" on federal systems as a result of the hack.

NSA warns industry about China hacks

The National Security Agency released details on 25 existing vulnerabilities that Chinese state-sponsored threat groups are using to try to penetrate defense industrial base networks.

How Cyber Command is taking the fight abroad

The head of U.S. Cyber Command defends "persistent engagement" strategy with adversaries, explaining that proactive cyber operations won't lead the U.S. into an "all out war."

Intel agencies uncover Russian hacking tool

The GRU malware targets Linux operating systems and is used to conduct cyber espionage on behalf.

NSA to expand unclassified telework

The National Security Agency is expanding its use of Microsoft Office 365 to support unclassified telework.

NatSec users should mask location data, NSA says

The spy agency is advising users of Defense Department and National Security Systems to take steps to mask their location data on mobile devices and computers.