August 16, 2024 at 06:54AM The federal government is investing $11 million in the Open-Source Software Prevalence Initiative (OSSPI) to understand and enhance the security of open-source software used in critical infrastructure. National Cyber Director Hary Coker announced the initiative, aiming to strengthen national cybersecurity and collaborate with the cybersecurity community. The initiative aligns with … Read more
August 14, 2024 at 05:49AM Lenovo’s involvement in a US cybersecurity initiative prompts scrutiny due to its Chinese origins amid escalating US-China technology tensions. Despite being a major global PC supplier, questions linger over its ties to the Chinese government, despite the company’s denial. Diverse leadership and global operations may help explain its perceived trustworthiness. … Read more
May 8, 2024 at 09:05AM Microsoft is making organizational changes and holding senior leadership directly accountable for cybersecurity, with plans to bolster security across its products and services. The EVP of security announced measures to instill accountability, elevate security governance, and implement specific security goals under the Secure Future Initiative. These efforts aim to enhance … Read more
April 4, 2024 at 08:47AM The Cybersecurity and Infrastructure Security Agency is promoting the Secure by Design initiative, advising companies to intensify their efforts in eliminating SQL injection vulnerabilities. As part of its Secure by Design initiative, the Cybersecurity and Infrastructure Security Agency has urged companies to intensify their efforts to eliminate SQL injection vulnerabilities. … Read more
April 2, 2024 at 04:01PM The initiative aims to support healthcare entities dealing with rising cybersecurity challenges by offering additional resources and improved strategies. Based on the meeting notes, the key takeaway is that the initiative aims to offer increased resources and improved strategies to healthcare organizations dealing with growing cybersecurity challenges. Full Article
February 19, 2024 at 05:39AM Google’s AI Cyber Defense Initiative aims to promote the use of artificial intelligence in cybersecurity, asserting its potential to empower defenders in threat detection, malware analysis, and vulnerability fixing. The company commits to investing in AI infrastructure, offering defensive tools, security training, and research cooperation. Additionally, it is supporting startups, … Read more
January 18, 2024 at 06:38AM The concept of “secure by design” is crucial in the face of increasing supply chain attacks, with a shift towards proactive security measures. The Cybersecurity and Infrastructure Security Agency (CISA) is pushing for this in software development practices, emphasizing collective responsibility. It involves building security into software from the ground … Read more
January 6, 2024 at 08:30AM A ban on ransomware payments is suggested but is unlikely to work due to various reasons. Excluding critical infrastructure from the ban is essential, as not paying a ransom in these cases could risk lives. Additionally, enforcement and international cooperation present significant challenges. Instead, organizations should focus on enhancing their … Read more