Other Developments, Further Reading, and Coming Events (22 April 2021)

Other Developments In response to new vulnerabilities turned up by FireEye, the United States (U.S.) Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive (ED) 21-03 “requiring federal civilian departments and agencies running Pulse Connect Secure products to assess and mitigate any anomalous activity or active exploitation detected on their networks.” Media accounts describe persistent … Continue reading Other Developments, Further Reading, and Coming Events (22 April 2021)

Further Reading, Other Developments, and Coming Events (22, 23, 24, and 25 February 2021)

Further Reading “The Long Hack: How China Exploited a U.S. Tech Supplier” By Jordan Robertson and Michael Riley — Bloomberg. This piece argues that the United States (U.S.) government knew of vulnerabilities in Super Micro Computer Inc.’s products used by the People’s Republic of China (PRC) but chose to keep them secret. This article follows … Continue reading Further Reading, Other Developments, and Coming Events (22, 23, 24, and 25 February 2021)

Senate Intelligence Views SolarWinds From The Private Sector Perspective

Congress starts chewing over the hack of agencies and companies, hinting at policy prescriptions. The first public hearing on the massive hack associated with SolarWinds and most likely perpetrated by the Russian intelligence services occurred this week. The Senate Intelligence Committee heard from private sector witnesses, including from SolarWinds, in what will be the first … Continue reading Senate Intelligence Views SolarWinds From The Private Sector Perspective

Further Reading, Other Developments, and Coming Events (14 December)

Further Reading “Russian Hackers Broke Into Federal Agencies, U.S. Officials Suspect” By David Sanger — The New York Times.; “Russian government hackers are behind a broad espionage campaign that has compromised U.S. agencies, including Treasury and Commerce” By Ellen Nakashima and Craig Timberg — The Washington Post; “Suspected Russian hackers spied on U.S. Treasury emails … Continue reading Further Reading, Other Developments, and Coming Events (14 December)