Agencies cite data concerns in slowness to implement CDM
The departments of Energy and Health and Human Services want to take stock of the data they have to determine how best to safeguard the information.
State Department establishing new IT governance body
The Digital Diplomacy Council includes all IT leaders and projects across the department and will focus on both cybersecurity and enterprise architecture.
With help from NIST, Sen. Wyden wants us to be smarter about .zip files
“Many people incorrectly believe password-protected .zip files can protect sensitive data. Indeed, many password-protected .zip files can be easily broken with off-the-shelf hacking tools,” the Oregon Democrat says in a letter to NIST.
Audit: USPTO’s mismanagement of active directory poses ‘significant’ cyber risk
Additionally, the agency failed to protect critical information technology assets found to be vulnerable two years ago, which could lead to intellectual property theft.
DOD unveils plans for contractor cybersecurity standards
Cybersecurity Maturity Model Certification will be the new DOD contractor cybersecurity rules.
GAO: Some agencies with decades-old IT systems still have no plans for upgrades
Three agencies still don't have plans to update critical legacy systems, even though they self-reported security risks to be high in several cases.