policy news
Incident reporting, ransomware payment legislation faces trouble in Senate
Aides continue to negotiate in a bid to overcome the dispute.
Banks must report major cyber incidents within 36 hours under finalized regulation
Industry won some concessions in the final version of the rule, which banks must comply with by May.
Ransomware fueled record year for UK cyber response
Attacks on health care were among the most predominant.
Biden signs infrastructure bill that provides nearly $2 billion for cybersecurity
The big-ticket cyber item in the Infrastructure Investment and Jobs Act is $1 billion in state and local grants.
Feds likely to fall short of deadline for strengthening encryption, multifactor authentication
The May executive order was drafted as a result of the SolarWinds cyber-espionage campaign.
State Department offers $10 million reward for help identifying DarkSide ringleaders
The bounty comes some six months after the group breached Colonial Pipeline, vaulting ransomware into the public consciousness.
White House preps order to clarify top cyber roles in federal government
It would be the second major E.O. after a May directive on federal agencies' digital defenses.
CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities
CISA wants agencies to tackle nearly 300 flaws in all, ranging from within two weeks to six months.
Michigan police execute warrant looking for missing election equipment
An official who supported a far-right conspiracy theory previously said she would not return a piece of voting machinery to the state.
CISA starts identifying targets most necessary to protect from hacking
The agency isn't going to wait for Congress to act, CISA Director Jen Easterly said.
