Senate Democrats urge DHS to reconstitute CSRB

The lawmakers said the Cyber Safety Review Board’s work has made government agencies and private businesses more secure.

By Eric Geller • May 30, 2025

CISA loses nearly all top officials as purge continues

Most of the leaders of the agency’s operating divisions and regional offices have left or will leave this month amid the Trump administration’s aggressive government-downsizing campaign.

By Eric Geller • May 27, 2025

High-profile CISA departure adds to agency’s struggles

The Trump administration’s workforce purge is sapping CISA of its best talent, experts say. CISA deputy Matt Hartman is the latest to leave the agency.

By Eric Geller • May 20, 2025

Major tech vendors call for streamlining US foreign cyber aid

A new coalition will push policymakers to change how the government oversees foreign purchases of U.S. cyber resources.

By Eric Geller • Updated May 21, 2025

Researchers warn of China-backed espionage campaign targeting laid-off US workers

A report by FDD says an elaborate online recruiting effort is using LinkedIn and fake online companies to gather sensitive intelligence.

By David Jones • May 20, 2025

AI is stirring mixed feelings among CFOs, survey finds

The research highlights a “trust gap between the untested promise of AI and the wariness of security and privacy risks,” finance software company Kyriba said.

By Alexei Alexis • May 19, 2025

Hearing shows broad support for extension of cyber info-sharing law

With bipartisan support and backing from the private sector, the 2015 law appears to be on a glide path to reauthorization.

By Eric Geller • May 16, 2025

FBI warns senior US officials are being impersonated using texts, AI-based voice cloning

Hackers are increasingly using vishing and smishing for state-backed espionage campaigns and major ransomware attacks.

By David Jones • May 16, 2025

GOP lawmakers urge ban of networking vendor TP-Link, citing ties to China

The Trump administration is facing mounting pressure to formulate a strategy for addressing supply-chain threats that endanger national security.

By Eric Geller • May 15, 2025

Congress faces pressure to renew cyber information-sharing law

The law’s expiration in September could jeopardize a wide range of information-sharing partnerships that have helped catch and thwart cyberattacks in the U.S.

By Eric Geller • May 14, 2025

Defense contractors get a head start on CMMC audits

Software investments, infrastructure upgrades and compliance documentation topped the list of Cybersecurity Maturity Model Certification implementation costs, a new survey shows.

By Eric Geller • May 12, 2025

NIST loses key cyber experts in standards and research

The head of the agency’s Computer Security Division and roughly a dozen of his subordinates took the Trump administration’s retirement offers, placing key programs at risk.

By Eric Geller • May 6, 2025

DOD plans to fast-track software security reviews

The Pentagon will lay out new security requirements and approval processes for the software it purchases.

By Eric Geller • May 5, 2025

UK authorities warn of retail-sector risks following cyberattack spree

Three major retail brands, including Harrods and M&S, have been targeted in recent weeks.

By David Jones • May 5, 2025

Access reviews can be fixed - here’s how

Drowning in spreadsheets for access reviews? There’s a smarter solution.

May 5, 2025

Trump proposes major cut to CISA’s budget, citing false ‘censorship’ claims

The president’s budget proposal repeated a debunked claim about the nation’s cyber agency engaging in censorship.

By Eric Geller • Updated May 5, 2025

Recent DOJ settlements suggest Biden cyber-fraud initiative still active

The Justice Department under Trump has now settled three cases that bear the hallmarks of a Biden-era cyber enforcement initiative.

By Eric Geller • Updated May 2, 2025

Salt Typhoon telecom hacks one of the most consequential campaigns against US ever, expert says

A prominent former member of a recently shuttered cyber-incident review panel said the board should be reconstituted with independent authority.

By David Jones • May 1, 2025

DHS secretary vows to refocus CISA, saying it strayed from mission

Kristi Noem said the agency should be focused on securing critical infrastructure.

By David Jones • April 30, 2025

Cyber experts urge Trump to abandon Chris Krebs investigation

Dozens of cyber industry luminaries, many from the election security community, said the investigation could discourage important cyber work.

By Eric Geller • April 28, 2025

FBI seeks public tips about Salt Typhoon

The bureau’s public alert follows months of conversations with the telecom industry about the far-reaching cyber espionage campaign by a Chinese nation-state threat actor.

By Eric Geller • April 28, 2025

CISA gets a deputy director as it braces for major layoffs

Madhu Gottumukkala, a state CIO, lacks the homeland security experience of his two predecessors.

By Eric Geller • April 25, 2025

CISOs band together to urge world governments to harmonize cyber rules

Policymakers have moved slowly to reduce regulatory overlap, but the new industry plea could help change that.

By Eric Geller • April 24, 2025

State Department reorganization could imperil cyber diplomacy

Congress told the U.S. State Department how to approach global cyber challenges, but the administration’s plan would upend that strategy.

By Eric Geller • April 23, 2025

CISA’s Secure by Design initiative in limbo after key leaders resign

Companies have been urging CISA to scale back its software security pressure campaign. Two new resignations from the agency could accelerate that shift.

By Eric Geller • April 22, 2025