News

An exit interview with Jeremy Grant, NSTIC director and NIST's lead on digital identity

Jeremy Grant left the National Institute of Standards and Technology April 30 after spending the last four years leading an effort to improve digital identity management nationwide. We caught up with Grant to discuss recent developments with NSTIC, the program's biggest accomplishments and some challenges that lie ahead.

Cybersecurity, privacy not mutually exclusive, European data official says

Worldwide collaboration on cybsersecurity is necessary to keep entities safe, but arguments over whether security and privacy are at odds are hampering the effort, an EU official said.

Lawmakers reintroduce bill reforming anti-hacking law used to charge the late Aaron Swartz

The bill called Aaron's Law is named after Internet entrepreneur and activist Aaron Swartz, who committed suicide in January 2013 at the age of 26 following state and federal indictments two years earlier for unauthorized access to JSTOR.

HUD needs to improve reporting process of major tech projects to the federal IT Dashboard

Project managers didn't consistently follow processes when reporting information to the IT Dashboard website, an Obama administration initiative that allows the public to view details and track the progress of major IT programs across the government.

Bill would end NSA's collection of phone records

A new version of the USA FREEDOM Act of 2015 would end the National Security Agency's collection of millions of Americans' phone records.

VA sees jump in cyberattacks, fewer veterans affected

Although the Veterans Affairs Department experienced an increase in the number of attempted cyberattacks between February and March, the number of veterans affected fell, a report shows.

OMB issues draft FITARA guidance that significantly broadens power, role of federal CIOs

OMB laid out its plan for implementation of the Federal Information Technology Acquisition Reform Act, which gives CIOs a greater role in IT program governance, personnel processes and improves the transparency into IT investments.

Government coordination with computer incident response teams becoming 'essential,' says new paper

With the rise of more sophisticated cyber threats, computer security incident reponse teams are undergoing a transformation that policy makers need to understand so they can "craft policies and regulation that avoid unintended negative consequences."

Major investments in improving federal digital customer experience not bearing fruit, Forrester finds

Digital channels show "paltry use" with less than a fifth of online adults interacting via email and no other channel, including mobile apps, getting higher than 5 percent use.

Poll: Cybersecurity should be top tech priority for Congress

Cybersecurity should be at the top of the congressional technology agenda, according to a new poll. Forty percent of registered voters believe cyber attack prevention should be lawmakers' technology policy focus.

NSF seeks input on cybersecurity strategic plan for federal agencies

The National Science Foundation wants feedback on how the government should focus cybersecurity research and development in order to guide and coordinate federally funded studies.

ACLU fears 'mass suspicionless surveillance' via law enforcement drone use

The ACLU has called for rules that limit law enforcement agencies' use of drones when collecting evidence of wrongdoing, for emergencies or other uses where there's no reason to think it would invade privacy.

UPDATED - GSA IG: Contractors had access to personal data without required training, background checks

Federal contractors without background checks, non-disclosure agreements or required privacy training were able to access sensitive data from Army childcare subsidy payment applications that they were hired to process.

Retirement accounts at risk, auditors say; TSP board defends cybersecurity

Thrift Savings Plan accounts are vulnerable to hackers because of poor cybersecurity measures at the Federal Retirement Thrift Investment Board, sources say.

State Dept. official: New global effort crucial in developing capacity around cyber issues

The idea behind the Global Forum for Cyber Expertise is to help states with limited policy or technical capacity tap the expertise of more technologically sophisticated countries around certain cyber-related issues.

Company settles FTC complaint over misleading opt-out option for retail consumers

Nomi Technologies provides consumer-tracking technology for brick-and-mortar retailers, but it didn't provide a way for consumers to opt out of the service within stores as it had seemingly indicated in its privacy policies.

Only one-quarter of federal agency IT officials polled say their network data is protected in transit

And the top challenges in protecting such data are budget constraints, limited resources and the complexity and impact on network performance, the online survey of 200 federal IT officials representing 60 agencies found.

DoD issues sweeping update to cyber strategy (Audio)

The Defense Department unveiled a new cyber strategy today that affirms its commitment to more effective deterrence in the cyber domain and the integration of offensive cyber options into combatant command plans. 

Sunlight FOIA request leads to more open data, updated OMB policy

A Freedom of Information Act request from the Sunlight Foundation has turned into federal policy on agency data holdings, the foundation reported.

CBO: Low costs, rising revenues would be associated with data security bill

If enacted, the Data Security and Breach Notification Act of 2015 would cost the government $1 million to implement over five years and would increase revenues, via penalties paid by non-compliant businesses, by $9 million over 10 years, an assessment of the bill finds.