Home  /  Empower and Protect  /  Cybersecurity News in Review

Cybersecurity News in Review

By Robert DuPree •  August 16, 2019
cyber security news

This week’s cybersecurity news in review includes articles on a new tool from Georgia Tech that allows developers to check upfront for vulnerabilities in their cloud-based mobile app, the spike in cyberattacks on U.S. school systems due in part to their outdated and vulnerable IT systems, and the apparent failure of state governments to sufficient fund and prioritize cybersecurity.  There is also coverage of the Energy Department’s plans to update its defensive cybersecurity framework used by other agencies and the private sector, DHS’ RFI to help it develop a contract to manage its cyber ops centers, continued private sector uncertainty over how to comply with NIST and DoD cybersecurity guidance for defense contractors, and an effort by DISA and DoD to pursue a pilot that will lead to a zero trust identity and access management program.

GaTech team builds tool to check mobile app vulnerabilities in multiple clouds

According to Nextgov, a team from Georgia Tech has built a tool, SkyWalker, that lets app developers audit the various cloud-based tools they may be building into their products to determine where the vulnerabilities are. Read more…

Outdated school IT systems make them vulnerable to cyberattacks

U.S. school districts are increasingly targeted for cyberattacks, according to The Hill, which says a frim tracking the issue has counted over 500 attacks since January 2016 and has warned that vulnerable outdated school IT systems are a big factor in the success of such attacks. Read more…

Stronger actions needed to boost individual states’ cybersecurity 

Governing takes a look at the increase in cyberattacks against state and local governments, and warns that states are still falling short in taking certain steps to elevate their cyber posture, citing insufficient funding and failure to include top cyber personnel at the highest levels of government.  Read more…

DOE to update cyber evaluation framework

Nextgov reports that the U.S. Department of Energy announced Aug. 14 it will update for the first time since 2014 its Cybersecurity Capability Maturity Model, which is a framework used by both federal agencies and the private sector to evaluate the effectiveness of their cyber defenses. Read more…

DHS seeking input to develop contract for managing its security operation centers

The Department of Homeland Security issued a request for information on Aug. 7 to help it build a contract vehicle of vendors that will enable DHS to manage its 17 unclassified security operations centers, according to a report in Nextgov. Read more…

Contractors question NIST, DoD efforts to improve contractor cybersecurity

FCW says two new programs from NIST and the Pentagon that are intended to improve DoD contractors’ cybersecurity are causing confusion in the private sector on how to comply with their requirements.  Read more…

DISA and U.S. Cyber Command make push for zero-trust program

DISA is establishing a research lab to explore building a zero-trust network architecture across DoD  which, according to Nextgov, will include running a DISA/Cyber Command pilot program for defense and IC cyber experts to look at new ways to improve identity and access management. Read more…

Robert DuPree

Robert DuPree

Robert DuPree is the manager of government affairs at Telos Corporation. Follow him on Twitter: @RFDuPree See full bio...

The Empower and Protect Blog brings you cybersecurity and information technology insights from top industry experts at Telos.

Leave a Reply

Your email address will not be published.

seventeen − 17 =