Defense Systems
White House task force says Russia likely to blame for SolarWinds hack
The Cyber Unified Coordination Group said in a statement on Tuesday that fewer than 10 government agencies have been "compromised by follow-on activity" on federal systems as a result of the hack.
Threats
Russia ‘Likely’ Behind SolarWinds Hack, Cyber Response Agencies Say
The Cyber Unified Coordination Group believes fewer than ten government agencies were compromised by the still-active intelligence operation.
Science & Tech
Two-Thirds of DOD’s Major IT Projects Are Behind Schedule, GAO Found
Defense officials say lack of talent is slowing the adoption of cybersecurity best practices.
Defense Systems
SolarWinds hit with investor lawsuit over hack
SolarWinds is facing a class-action lawsuit in a Texas court from an investor who says the company misled the public and its customers by not disclosing a known vulnerability to its update server.
Defense Systems
CISA updates on SolarWinds compromise
To help agency leaders mitigate the SolarWinds Orion software compromise, the Cybersecurity and Infrastructure Security Agency issued new guidance and posted two new resources.
Ideas
The SolarWinds Hack Doesn’t Demand a Violent Response
Major retaliation is more likely to spur escalation than improve deterrence.
Defense Systems
50 orgs 'genuinely impacted' by SolarWinds hack, FireEye chief says
Approximately 50 organizations downloaded malicious code via SolarWinds software and were "genuinely impacted" by the sophisticated hacking campaign, according to FireEye CEO Kevin Mandia.
Defense Systems
Software factories are new 'crown jewels,' Air Force official says
Will Roper, the Air Force's acquisition chief, said the massive cybersecurity breach that's plagued several federal government agencies creates "a new kind of target for our adversaries" that must be protected.
Defense Systems
DOD announces first CMMC pilot contract nominees
The Dec. 15 announcement calls out seven pilot contracts across the Air Force, Navy and Missile Defense Agency.
Defense Systems
CISA warns that SolarWinds software may not be only entry point in latest breaches
The security agency's latest alert suggests hackers may have found other entry points into government networks.
Defense Systems
Biden promises 'overwhelming focus' on hack recovery
The president-elect called out the Trump administration for failing to prioritize cybersecurity in general, and for "downplaying the seriousness" of the ongoing breach that has hit multiple federal agencies.
Defense Systems
Lawmakers seek details on damage done by the SolarWinds hack
As information trickles out about which federal agencies have been compromised by a sophisticated hacking operation, lawmakers have begun seeking an extensive accounting of what damage has been done.
Ideas
The Big Hack Is Damaging. That Doesn’t Make Russia 10 Feet Tall.
U.S. leaders must not overestimate a country with a weak economy and overrated military.
Policy
Trump Officials Deliver Plan to Split Up Cyber Command, NSA
An end to the “dual hat” arrangement has been debated for years — but the timing raises questions. The plan requires Milley's certification to move ahead.
Threats
SolarWinds Isn't the Only Way Hackers Entered Networks, CISA Says
The agency warned that ejecting attackers from networks will be tough, especially because they can likely read the email of IT and cybersecurity employees.
Science & Tech
Amid Massive Hack, Lawmakers Urge Trump to Sign Defense Bill with New Cybersecurity Legislation
As the government scrambles to understand the widening compromise, legislation to shore up the nation’s cyber defenses sits unsigned on the President’s desk.
Ideas
If You Don’t Hire Robots to Attack Your Networks, You’re Not Doing Security Right
Complying with DoD’s new cybersecurity regulations requires hard data, the kind that pretty much requires automation to compile.
Defense Systems
NSC invokes 2016 directive to respond to SolarWinds hack
The National Security Council's announcement to create a special group for coordinating the federal government's response to the SolarWinds hack comes as the list of affected agencies grows.
Ideas
Sweeping Hack Gives Biden a Mandate to Reorient America’s Cyber Strategy
It’s long past time to wrest the focus from offense back to defense.
Threats