Category: Operations Security

Operations Security, Security

The US Postal Service exposed data of 60 million users

November 26, 2018

Via: Tech Crunch

A broken US Postal Service API exposed from over 60 million users and allowed a researcher to pull millions of rows of data by sending wildcard requests to the server. The resulting security hole has been patched after repeated requests […]

Operations Security, Security

Microsoft: Crash-causing Outlook 2010 security patches are now fixed

November 23, 2018

Via: ZDnet

Microsoft has released a new update for Outlook 2010 that should plug its critical security flaws without causing crashes. Microsoft earlier this week warned that the 64-bit version of the security update KB 4461529 from its November Patch Tuesday was […]

Operations Security, Security

With elections over, CISA focus shifts to risk management center

November 19, 2018

Via: FCW

Secretary of Homeland Security Kirstjen Nielsen signaled that her newly minted cybersecurity agency would shift its focus to a number of longer term initiatives, such as mapping out national critical functions across different critical infrastructure sectors and changing culture and […]

Federal, Operations Security, Policy, Security

Washington, D.C. names Suneel Cherukuri as permanent CISO

November 15, 2018

Via: StateScoop

en months after John MacMichael resigned as Washington, D.C.’s first-ever chief information security officer, the district has appointed a permanent replacement in Suneel Cherukuri, a longtime network-security architect for the city. Cherukuri, who has worked for the city on-and-off for […]

Operations Security, Security

Audit flags multiple concerns for Treasury’s IT systems

November 9, 2018

Via: FCW

A new audit from the Department of Treasury’s Inspector General found a number of IT security flaws around the agency’s management of collateral national security systems. The report documents a range of sloppy or incomplete IT security control practices for […]

Operations Security, Security

How the Election Assistance Commission Came Not to Care So Much About Election Security

November 7, 2018

Via: Government Executive

In a rush of preparation for this year’s midterm elections, scores of state and local governments have been working to safeguard their election systems from being hacked or otherwise compromised. At the same time, according to interviews with more than […]

Operations Security, Security

DHS risk center wants to revolutionize cyber response, but first it must get organized

November 5, 2018

Via: FCW

The Department of Homeland Security’s new National Risk Management Center has ambitious goals for changing the way government and industry approach business. But first, it must get organized. NRMC Deputy Director Mark Kneidinger told the Information Security and Privacy Advisory […]

Operations Security, Security

Cryptocurrency Scams Are Now Among the SEC’s Top Enforcement Priorities

November 2, 2018

Via: Fortune

An annual report by the Securities and Exchange Commission reveals how digital currency scams, which did not merit a mention two years ago, are among the agency’s top enforcement priorities. The SEC is focused in particular on so-called Initial Coin […]

Operations Security, Security, Software, Tech

GitHub security alerts now support Java and .NET projects

October 18, 2018

Via: ZDnet

Code hosting service GitHub has updated its platform this week, and among the many developer-centric changes, the company also rolled out three new security features for project owners. The most important of these new security improvements is the expansion of […]

Operations Security, Security

Pentagon CIOs struggle with legacy tech, security. Sound familiar?

September 21, 2018

Via: CIO

Patrick Flanders has been thinking a lot about IT modernization. Flanders, CIO of the Defense Health Agency, is gearing up to consolidate control over the Pentagon’s sprawling network of treatment centers, in the process centralizing a far-flung set of IT […]