Law enforcement takedowns of ransomware actors are accelerating, but experts think that as long as Russia harbors the cybercriminals, there are no quick and easy solutions to tamping down the ransomware crime wave.
The US National Institute of Standards and Technology released the 2.0 version of its Cybersecurity Framework, focusing more on governance and supply chain issues and offering resources to speed the framework’s implementation.
The White House announced a new executive order and other actions to strengthen the cybersecurity of the maritime industry and ports while seeking to revive a domestic crane industry and wean America off Chinese-made port cranes.
Lawmakers and experts fear that the use of Chinese storage batteries could threaten the power grid, but few alternatives are in the offing, at least in the short term.
Recent cybersecurity incidents at Microsoft, Cloudflare, and First American highlight the need for better security practices around non-production systems, which often takes a back seat to frontline production system security.
Volunteer cybersecurity reserve workforces are growing in the face of infosec worker shortages, with US CyberCommand recently authorized in the 2024 NDAA to create its own civilian cybersecurity reserve corps.
The group seeks intelligence on the cybersecurity community by targeting researchers and threat analysts.
Security researcher Marc Newlin shared how he discovered the Bluetooth bug that leaves keyboards vulnerable to injection attacks that can allow attackers to take over user devices.