DHS board: No one used software inventories to find vulnerable Log4j deployments

by • 1 month ago

Many in government and industry want software bills of materials to be the development compliance standard.

How DOD is tackling Log4j; Financial system modernization at TSP; Getting a zero trust journey going

by • 7 months ago

On the latest episode of The Daily Scoop Podcast, DDS Acting Director Katie Olson, Federal Retirement Thrift Investment Board’s Kim Weaver on modernization efforts at TSP and VMware’s Alexander Romero on approaching how to implement zero-trust architecture.

Log4J flaw causing Army to take second look at open source software

by • 7 months ago

Army CIO Raj Iyer says the department is putting "extra effort" into cybersecurity following discovery of the vulnerability last year.

Federal agencies have until Dec. 24 to apply fixes for Log4Shell vulnerability

by • 8 months ago

DHS directives give departments 15 days to respond to critical vulnerabilities of this type.