We Must Reorient US Cyber Strategy Around the Only Safe Assumption

We should assume adversaries are already in our networks — and Congress should take these five steps to mitigate the damage.

Defense Sector's Health Gets a 'C' From Industry Group

An NDIA-Govini report says increases in cyber vulnerabilities hurt the industry in 2020.

IGs Ask: How Well Do Feds Share Cyber-Threat Info?

A key government contractor has already weighed in with a scathing review.

Russia ‘Likely’ Behind SolarWinds Hack, Cyber Response Agencies Say

The Cyber Unified Coordination Group believes fewer than ten government agencies were compromised by the still-active intelligence operation.

Two-Thirds of DOD’s Major IT Projects Are Behind Schedule, GAO Found

Defense officials say lack of talent is slowing the adoption of cybersecurity best practices.

Everybody Spies in Cyberspace. The US Must Plan Accordingly.

Because all countries engage in espionage, intrusions like Russia’s latest data hack are devilishly hard to deter.

The SolarWinds Hack Doesn’t Demand a Violent Response

Major retaliation is more likely to spur escalation than improve deterrence.

The Big Hack Is Damaging. That Doesn’t Make Russia 10 Feet Tall.

U.S. leaders must not overestimate a country with a weak economy and overrated military.

Trump Officials Deliver Plan to Split Up Cyber Command, NSA

An end to the “dual hat” arrangement has been debated for years — but the timing raises questions. The plan requires Milley's certification to move ahead.

SolarWinds Isn't the Only Way Hackers Entered Networks, CISA Says

The agency warned that ejecting attackers from networks will be tough, especially because they can likely read the email of IT and cybersecurity employees.

Amid Massive Hack, Lawmakers Urge Trump to Sign Defense Bill with New Cybersecurity Legislation

As the government scrambles to understand the widening compromise, legislation to shore up the nation’s cyber defenses sits unsigned on the President’s desk.

If You Don’t Hire Robots to Attack Your Networks, You’re Not Doing Security Right

Complying with DoD’s new cybersecurity regulations requires hard data, the kind that pretty much requires automation to compile.

Feds Race to Turn Off SolarWinds Products Amid Biggest Hack in Years

A critical flaw in software used throughout government was reportedly used to breach a major security company and at least two federal agencies.

CISA Warns About Iran’s Offensive Cyber Capabilities

One observer suggests the alert is meant more for the adversary than defenders.