The IC has to ramp up how it manages and mitigates "the risk that a trusted privileged user could inappropriately access, modify, destroy, or exfiltrate classified data,” a new report says.

The Department of Homeland Security and four branches of the U.S. military had purchased the affected software.

U.S. senators have raised security concerns about a new Metro railcar project. The NIST cybersecurity framework will be part of the process now, the transit authority says.

The lawmakers exhorted the subway system's leadership to “take the necessary steps to mitigate growing cyber risks" to new railcars that could be produced by a Chinese company.

Federal procurement of cybersecurity goods and services is highly fragmented, according to new research published this week, but despite this long tail of small awards, the market space is dominated by a handful of familiar names.

Agencies across the U.S. government are increasingly looking to migrate their data into the cloud to cut costs, but doing so has also introduced new cybersecurity challenges, federal executives said Wednesday during Verizon’s Government of the Future conference produced by FedScoop.