Log4j

US Merit Systems Protection Board compromised in Iranian government-linked hack: report

by

The quasi-judicial agency was hit earlier this year during the attack, according to The Washington Post.

Cyber Safety Review Board ‘moving quickly’ on second report: DHS Under Secretary

by

Rob Silvers says the board's Log4j review was a successful proof of concept that's already yielded responses from CISA, DHS and industry.

Senators propose open source software risk framework in new bill

by

The legislation would require CISA to develop a new cybersecurity framework for agencies and critical infrastructure owners and operators.

NSA, CISA release compendium of security practices for software developers

by

The agencies have worked with industry to develop a set of recommendations that includes more in-depth source code reviews.

DHS board: No one used software inventories to find vulnerable Log4j deployments

by

Many in government and industry want software bills of materials to be the development compliance standard.

How DOD is tackling Log4j; Financial system modernization at TSP; Getting a zero trust journey going

by

On the latest episode of The Daily Scoop Podcast, DDS Acting Director Katie Olson, Federal Retirement Thrift Investment Board’s Kim Weaver on modernization efforts at TSP and VMware’s Alexander Romero on approaching how to implement zero-trust architecture.

TwitterFacebookLinkedInRedditGmail