Verizon's $4 million settlement with the US DOJ signals stepped-up action by the Justice Department's Civil Cyber-Fraud initiative.
As this year's Hacker Summer Camp gets underway with dozens of CTF events, the obligations for players to report zero-day bugs they discover are murky.
The new SEC rules also require registrants to report ransomware payments within 24 hours to report ransomware payments and to submit annual cyber risk management, strategy, and governance reports.
The just-passed House version of the annual must-pass National Defense Authorization Act contains a host of cybersecurity provisions, including new authorization for Cyber Command to analyze dark web information and work with Taiwan on defensive cybe
The administration released its much-awaited implementation plan for the National Cybersecurity Strategy, offering a roadmap for how it plans to turn high-level cybersecurity goals into concrete steps.
CISA and the FBI say audit logging was critical to discovering a Chinese espionage campaign that targeted US government agencies and urge all organizations to ensure the organizational tracking technology is enabled.
The Biden administration's cybersecurity initiatives broadly aim to improve cybersecurity resilience, with recent regulations and other actions designed to foster a "defensible, resilient ecosystem."
Comments submitted to CISA regarding its creation of cyber incident and ransom payment reporting requirements underscore how tough it will be for the agency to create a one-size-fits-all framework.