Inside Cybersecurity

CISA issues emergency directive ordering agencies to inventory F5 products, apply patches addressing vulnerability

The Cybersecurity and Infrastructure Security Agency is asking agencies through an emergency directive to inventory their use of hardware and software from cyber firm F5 and apply patches to impacted ...
Inside Cybersecurity

New York regulator fines eight auto insurance companies for data security breaches under financial services rules

The New York Department of Financial Services has announced an investigation and $19 million in total penalties for eight auto insurance companies over violations of the state’s cybersecurity ...
Inside Cybersecurity

Sen. Cassidy requests details on Cisco response to federal agencies impacted by vulnerabilities

Senate health committee Chairman Bill Cassidy (R-LA) is asking for information on Cisco’s efforts to provide sector-specific mitigations to federal agencies impacted by a compromise, following a Sept.
Inside Cybersecurity

EPA publishes cyber procurement checklist targeted at water sector to protect supply chains

“The purpose of this checklist is to help water and wastewater systems evaluate the cybersecurity practices of your vendors or your suppliers, your manufacturers, integrators and your managed service ...
Inside Cybersecurity

Rep. Swalwell, cyber leader on House Homeland, demands end of CISA workforce reduction efforts

Rep. Eric Swalwell (D-CA), a top Democrat on cybersecurity, is urging CISA Acting Director Madhu Gottumukkala to halt activities to cut the agency’s workforce, in response to the latest reductions in ...
Inside Cybersecurity

The Week Ahead: Cyber accreditation body holds CMMC summit, MITRE ATT&CK framework conference

The accreditation body behind the Pentagon’s Cybersecurity Maturity Model Certification program is co-hosting a two-day summit to provide updates and set the stage for the official launch of the major ...
Inside Cybersecurity

Hospital group highlights cybersecurity resources in response to database management vulnerability impacting sector stakeholders

The American Hospital Association is showcasing cybersecurity resources available to hospitals, in response to an exploit found in an Oracle database management system, including a cybersecurity ...
Inside Cybersecurity

Senate passes fiscal 2026 NDAA without reauthorization of major info-sharing law

Prospects for a long-term reauthorization of the Cybersecurity Information Sharing Act of 2015 took another hit on Oct. 9, with the passage of the Senate version of the fiscal 2026 National Defense ...
Inside Cybersecurity

Moody’s finds insurance firms utilize cyber risk assessment strategies to combat threats in software supply chains

Insurance firms are increasingly using cyber risk assessment programs for software providers to address an increase of cyber attacks on supply chains, according to a report from Moody’s Ratings ...
Inside Cybersecurity

Energy sector coalition seeks harmonization of proposed FAA rules with FERC cyber standards

A coalition of electric sector groups highlight the need for harmonization between bulk power cyber standards mandated by the Federal Energy Regulatory Commission with proposed regulations for ...
Inside Cybersecurity

Federal layoffs to include CISA, as OMB Director Vought rolls out ‘reductions in force’ amid government shutdown

“RIFs will be occurring at CISA. During the last administration CISA was focused on censorship, branding and electioneering. This is part of getting CISA back on mission,” a DHS spokesperson said in ...