[TheRecord] NSC’s Neuberger: National sense of urgency is spurring more cybersecurity action

The Biden administration is trying to take advantage of the nation’s newfound focus on cybersecurity in the wake of epic supply chain hacks and ransomware incidents to make substantive changes in the nation’s cyber defenses.

“The administration feels a sense of urgency because we think we’re at a moment in time,” deputy national security advisor for cyber and emergency technology Anne Neuberger told the Mandiant cyber security conference in Washington, DC on Tuesday. “A few years ago it was practitioners talking about cyber security risk, today we’ve seen it in practice.”

Neuberger said because cyber security events seem to happen almost every day, it gives the administration an opening to push federal and private sector partners to modernize critical infrastructure in the U.S. and shift from a posture of simply responding to cyber attacks to actually preventing them. 

It was with that in mind that President Biden signed an executive order back in May laying out a series of new requirements for companies that want to do business with the federal government. Among other things, it requires companies to report cyber attacks, and give more visibility into their software processes. It also seeks to beef up the security standards on government networks, including mandating multifactor authentication and encryption. The E.O. also created a playbook for cyber-incident response by federal agencies.

Neuberger said federal agencies are making good progress on those changes. “The president asked us for aggressive and achievable timelines,” she said of the deadlines for action in the executive order. “There is a 6 month deadline on encryption and we hit that in November. Requirements for secure development rolls out in February and March timeframe.”

The post NSC’s Neuberger: National sense of urgency is spurring more cybersecurity action appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

[NCSC-FI News] Entropy ransomware linked to Evil Corp’s Dridex malware

Analysis of the recently-emerged Entropy ransomware reveals code-level similarities with the general purpose Dridex malware that started as a banking trojan. Source: Read More (NCSC-FI daily news followup)

Read More

[HackerNews] Facebook Postpones Plans for E2E Encryption in Messenger, Instagram Until 2023

All posts, HackerNews

Meta, the parent company of Facebook, Instagram, and WhatsApp, disclosed that it doesn’t intend to roll out default end-to-end encryption (E2EE) across all its messaging services until 2023, pushing its original plans by at least a year. “We’re taking our time to get this right and we don’t plan to finish the global rollout of […]

Read More

[SANS ISC] Microsoft Releases Patches for CVE-2021-34527, (Wed, Jul 7th)

All posts, Sans-ISC

Microsoft today released patches for CVE-2021-34527, the vulnerability also known as “printnightmare”. Patches are currently available for these versions of Windows: Windows 10 Version 21H1 (32-bit, x64, ARM64) Windows 10 Version 2004 (32-bit, x64, ARM64) Windows 10 Version 1909  (32-bit, x64, ARM64) Windows 10 Version 1809  (32-bit, x64, ARM64) Windows 10 (32-bit and x64) Windows RT 8.1 Windows 8.1 […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.