NIST wants to the federal government to pay more attention to the supply chain

by Sean Lyngaas • 1 month ago

A federal IT standards body has moved to add key supply-chain provisions to its risk management guidance at a time of growing U.S. government concern that Russian and Chinese companies pose a threat to national security.

NIST releases updated cybersecurity framework

by Zaid Shoorbajee • 2 months ago

The new version updates the federal agency's guidelines in several areas, including authentication and identity; cyber risk self-assessments; managing supply chain cybersecurity; and vulnerability disclosure.

Report: hospitals are flooded with vulnerable IoT devices

by Zaid Shoorbajee • 3 months ago

The researchers found exposed medical images, protocols, databases, industrial controllers and healthcare systems software.

NIST engineering guide update provides advice for securing legacy IT systems

by Shaun Waterman • 3 months ago

Volume two of NIST SP-800-160 focuses on cyber resilience engineering.

DHS leaders push cybersecurity risk assessment program for critical infrastructure companies

by Chris Bing • 4 months ago

The program comes as DHS has moved to rid networks of products that could be used for nation-state led surveillance.

More than two years after historic breach, OPM continues to struggle with cybersecurity

by Chris Bing • 8 months ago

The agency's Inspector General said things haven't really gotten better since OPM's infamous breach.

Continue to CyberScoop.com