Policy & Regulation: Page 12
-
Spencer Platt via Getty Images
IronNet in NYSE compliance crosshairs after failing to file quarterly earnings on time
Management at the cybersecurity firm has been in talks on a deal to raise additional capital and go private.
By David Jones • July 6, 2023 -
TriggerPhoto via Getty Images
White House releases cyber budget priorities for fiscal year 2025
Federal agencies are advised to demonstrate how their spending aligns with the national cybersecurity strategy.
By Matt Kapko • June 29, 2023 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images
SEC notifies SolarWinds CISO and CFO of possible action in cyber investigation
Executives were alerted to possible enforcement action related to the Russia-linked supply chain attack.
By David Jones • June 26, 2023 -
Kevin Dietsch/Getty Images via Getty Images
SEC delays final rule on cyber incident disclosure as industry pushes back
The agency was seeking prompt reporting of material cyber breaches and attacks, but faced a range of concerns from stakeholders.
By David Jones • June 16, 2023 -
Permission granted by AWS
Cloud services seen as key tool in shifting balance of cyber risk
The acting national cyber director says more oversight may be necessary, but a resilient cloud infrastructure is critical to the national cybersecurity strategy.
By David Jones • June 12, 2023 -
Laser1987 via Getty Images
Existing security policy for critical infrastructure needs major overhaul, commission says
The Cyberspace Solarium Commission 2.0 says the federal relationship with the private sector is based on outdated policy.
By David Jones • June 7, 2023 -
Permission granted by Tusk Venture Partners
FTC chair warns that AI businesses must still operate within existing laws
The rapidly expanding technology cannot be used for fraud or discrimination and dominant players must allow the market to remain competitive, Lina Khan said Thursday.
By David Jones • June 2, 2023 -
Chainarong Prasertthai via Getty Images
CISA updates ransomware guide 3 years after its debut
The #StopRansomware guide, updated in partnership with the FBI, NSA and MS-ISAC, reflects aggressive new techniques used by threat actors, including double extortion.
By David Jones • May 24, 2023 -
MicroStockHub via Getty Images
Critical infrastructure security spending to grow 83% by 2027: ABI Research
Analysts forecast cybersecurity spending among critical infrastructure organizations to grow from an estimated $129 billion in 2022 to almost $236 billion by 2027.
By Matt Kapko • May 19, 2023 -
iStock via Getty Images
Why and how to report a ransomware attack
The majority of ransomware attacks go unreported, creating a blind spot that hampers response, recovery efforts and the prevention of future attacks.
By Matt Kapko • May 18, 2023 -
drnadig via Getty Images
House hearing details cyber resilience efforts for energy, water and healthcare
Officials from the Department of Health and Human Services, Environmental Protection Agency and the Department of Energy testified how sector agencies are responding to rising threats.
By David Jones • May 17, 2023 -
Viorika via Getty Images
Flood of ransom payments continues as officials mull ban
The revived debate over the viability of a ransom payment ban comes down to the cost ransomware is causing organizations globally.
By Matt Kapko • May 11, 2023 -
Naomi Eide/Cybersecurity Dive
CISA director wary of technology industry repeating its mistakes with AI
The multibillion-dollar cybersecurity industry is the result of misaligned incentives, where speed-to-market outranked security, Jen Easterly said.
By Naomi Eide • May 11, 2023 -
Permission granted by EPNAC.com
Walden says cybersecurity strategy mostly well-received
The acting national cyber director says common ground exists in certain areas, but a great deal of work remains.
By David Jones • May 10, 2023 -
Kenny Holston via Getty Images
White House considers ban on ransom payments, with caveats
Experts suggest the effort, a reversal from the administration's previous stance, is fraught with complications that could cause unintended consequences.
By Matt Kapko • May 8, 2023 -
Justin Sullivan / Staff via Getty Images
Former Uber CSO avoids prison time for ransomware coverup
Joseph Sullivan was convicted last year after covering up a cyberattack while the ride sharing firm was under a Federal Trade Commission probe.
By David Jones • May 5, 2023 -
gorodenkoff via Getty Images
Most open source maintainers still consider themselves hobbyists, despite compensation pledges
A study by Tidelift shows a compensation gap for the key producers of open source applications, raising questions about how to properly secure software supply chains.
By David Jones • May 2, 2023 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA seeks public comment on software security attestation form
The release is part of a larger effort by the Biden administration to strengthen software security at the development stage.
By David Jones • April 28, 2023 -
Matt Kapko/Cybersecurity Dive
Acting National Cyber Director downplays reports of interagency strife
There’s been no sign of tension between U.S. cybersecurity officials during Kemba Walden’s tenure, at least from her perspective.
By Matt Kapko • April 27, 2023 -
Permission granted by Office of the National Cyber Director
White House to share roadmap for national cyber strategy implementation this summer
Acting National Cyber Director Kemba Walden said the strategy is built to have a 10-year shelf life, allowing for flexibility as new technologies and threats emerge.
By Matt Kapko • April 26, 2023 -
Nico ElNino via Getty Images
Software industry leaders debate real costs and benefits of CISA security push
The global effort to promote secure by design is seen as a potential game changer for software security, but may require substantial investments and considerable cultural changes.
By David Jones • April 14, 2023 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
Explore the core tactics of secure by design and default
The international joint guide encapsulates security recommendations long-touted by CISA, including technical tactics for software and infrastructure design and best practices for default security measures at large.
By Matt Kapko • April 13, 2023 -
Center for Strategic and International Studies
CISA, partner agencies unveil secure by design principles in historic shift of software security
Authorities are engaging key stakeholders, but there is a broad understanding that these proposed changes will require massive changes in industry culture.
By David Jones • Updated April 13, 2023 -
Permission granted by CrowdStrike
CISA to unveil secure-by-design principles this week amid push for software security
The Biden administration plans to shift responsibility for product safety to the tech industry. Stakeholder discussions are already underway.
By David Jones • April 12, 2023 -
lucky-photographer via Getty Images
Biden cyber officials see auto, food safety as models for security overhaul
The push to hold technology stakeholders liable for secure-by-design products will be a multiyear effort likely to involve Congress, the acting national cyber director said.
By David Jones • April 10, 2023
Previous
