Cyber Defense

Why you should consider outcome-based security

Agencies can better align their cybersecurity and business priorities when they have affordable risk management solutions that deliver measurable results.

Cyber agencies unveil updated ransomware guide

The 2023 version offers more detailed, step-by-step guidance and associated recommendations to fortify public and private networks against sophisticated ransomware.

Federal grants could boost whole-of-state cyber defense

The $1 billion State and Local Government Cybersecurity Grant Program requires states to collaborate more closely with their local governments, reinforcing the holistic approach favored in many state capitals.

Ransomware vulnerability warning pilot yielding valuable lessons, CISA official says

The program aims to improve information sharing on cyber vulnerabilities across all levels of government, focusing on resource-poor organizations such as state, local, tribal and territorial agencies.

Voting machines must be test hacked for certification, under proposed bill

The new law would require cybersecurity penetration testing as part of voting systems’ approval process.

Local leaders feel cloud migration pressure, survey says

With applications now offered as cloud-only services, many local government IT executives said they felt they had little choice but to move to the cloud.

How local governments can protect themselves against third-party threats

COMMENTARY | Adaptive, multilayered solutions will help agencies fend off opportunistic supply-chain attacks.

Combating threats to employees in digital spaces

COMMENTARY | User activity monitoring and behavior analytics can beef up cybersecurity training and help protect the agency from internal and external risk.

Global appeal of NIST cyber framework leads to multiple translations, possible updates

The National Institute of Standards and Technology aims to ensure its forthcoming update to the cybersecurity guidance remains a flexible playbook domestic and international entities can adopt.

Generative AI helps spot malicious open-source code

Developers can ask DroidGPT natural language questions about the code they’re researching and get instant ratings on its security from Endor Labs’ proprietary database.

Cyberattack accelerates county’s modernization, cloud push

Last year’s ransomware attack showed “cloud averse” employees in New York’s Suffolk County the benefits of moving away from legacy technology.

US teams up with partner nations to release smart city cyber guidance

A joint effort between the U.S., U.K., Australia, Canada and New Zealand yielded recommendations to prevent cyber attacks on increasingly digital infrastructure.

Risk management through resilient technology

Resilient technology creates a more stable IT environment that saves money, increases cybersecurity and requires fewer resources to support it, a new report says.

What are passkeys? A cybersecurity researcher explains how you can use your phone to make passwords a thing of the past

Passwords can be hard to remember and easy to compromise, making passkeys an attractive option for digital authentication.

Turning the heat up on election security

With the 2024 presidential election rapidly approaching, Arizona’s secretary of state pushes to protect election systems from outside threats.

Passwordless authentication could cure user verification ills

As compromised and weak passwords continue to create major, ongoing vulnerabilities, organizations are looking at FIDO-based login options.

How one state looks to shared cyber services to defend rural areas

Colorado plans to leverage federal grant dollars to help its smaller communities protect themselves and expand a shared security operations center to track threats.