Military to have initial cyber offensive capabilities in 18 months, says Adm. Rogers

While U.S. Cyber Command is well positioned to protect Defense Department networks and even engage in "active defense," meaning it can launch a range of proactive measures against cyberspace adversaries, true cyber offensive capabilities have been lacking – until now.


FTC's authority over data regulation remains unclear

It's still unclear whether the Federal Trade Commission overstepped its authority when it brought legal action against Wyndham Hotels and Resorts for negligent data security standards. An appellate court heard arguments in the case this week.

CISOs must first define the risk, cybersecurity analyst tells Congress

To combat continued and growing threats, cybersecurity officials should utilize a two-step process, said a network security firm executive speaking before Congress. "Step one is to define the risk, and step two is to measure progress by combining ways and means to achieve defined ends," said Richard Bejtlich, chief security strategist at FireEye.

Nuclear safety agency does poor job securing its networks, data, says FISMA report

The Nuclear Regulatory Commission, the federal agency tasked with ensuring the safety of the nation's nuclear power plants, is doing a poor job of securing its own networks and data. That was one of the many findings of the latest Federal Information Security Management Act report to Congress by the Office of Management and Budget.

Spotlight: Clinton never used State Department email

While Secretary of State, Hillary Clinton never used an official government email address, reported the New York Times March 2. 


From Our Sister Sites


Government officials have been saying that the Islamic State has been one of the most adept terrorist groups in using social media such as Twitter, Facebook and YouTube to spread propaganda and recruit and radicalize individuals.


A U.S. Chamber of Commerce representative said at March 4 congressional hearing that his group favors a controversial Senate proposal that encourages companies to volutarily share cyber threat information with other companies and the federal government while providing them with needed liability protections.