RCE Vulnerability Affecting Microsoft Defender
A remote attacker can exploit this vulnerability to take control of an affected system. This vulnerability was detected in exploits in the wild. Keep Reading
Apache Releases Security Advisory for Tomcat
The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat. An attacker could exploit this vulnerability to obtain sensitive information. Keep Reading
You might be interested in
National Strategy to Secure 5G Implementation Plan Released
The National Strategy to Secure 5G details how the United States will lead global development, deployment, and management of secure and reliable 5G infrastructure. Keep Reading
Adopting Encrypted DNS in Enterprise Environments
While DoH can help protect the privacy of DNS requests and the integrity of responses, enterprises that use DoH will lose some of the control needed to govern DNS usage within their networks unless they allow only their chosen DoH resolver to be used. Keep Reading
Contractors Fear Potential CTA Requirement in CIO-SP4 Could Hurt Small, Mid-Size Competitors
The final RFP has been delayed anticipated and is expected to be released in the next couple of weeks. Industry protests are expected if the RFP includes the restrictive CTA and JV requirements. Keep Reading
United States to Host World Data System’s International Program Office
The Department of State is committed to the development and promotion of trusted data and internationally recognized norms and standards that form the bedrock of the robust U.S. innovation ecosystem. Keep Reading
Latest from HS Today
FDA Releases Artificial Intelligence/Machine Learning Action Plan
This action plan describes a multi-pronged approach to advance the Agency’s oversight of AI/ML-based medical software. Keep Reading
Computers with Access to Classified Material Stolen from Capitol
Some of the computers were left open and logged into the government’s classified network known as the SIPRNet. Keep Reading
GSA Introduces Vendor Risk Assessment Program in Draft Solicitation
The General Services Administration could soon start requiring on-site assessments of certain federal contractors under a new program to scrutinize risks to the supply chain. Keep Reading
With New Cloud Policy, Navy Moves Back to a Centralized Approach
The Navy and Marine Corps are in the midst of a significant shift in how the two services buy and use commercial cloud computing services, the upshot of which is a good deal more centralization, governance and oversight over their cloud consumption. Keep Reading
Deepfake Laws Emerge as Harassment, Security Threats Come into Focus
A new flurry of state and federal legislation that aims to better understand the creation of doctored video and audio files — and help victims respond — couldn’t have come soon enough, analysts say. Keep Reading
National Maritime Cybersecurity Plan Includes New Contract Mandates, Intel Sharing
The U.S. will also develop procedures to identify and investigate cyber risks in critical ship and port systems. Keep Reading
PERSPECTIVE: How Do We Find the Real Criminals?
Imagine if law enforcement professionals could screen a population of people to find risky patterns of behavior, prioritize cases based upon quality and then move to investigation. Keep Reading
On the Front Lines in a Year of Crisis: 2020 Homeland Security Today Awards
The awards recognize those who devote their lives to protecting our people, our resources, our way of life. Keep Reading
Booz Allen Hamilton’s Protest Over ICE Contract is Denied
Booz Allen Hamilton’s protest against the contract award to support Immigration and Customs Enforcement’s (ICE) Law Enforcement Systems & Analysis (LESA) program has been denied by the Government Accountability Office (GAO). Keep Reading
HSToday Honors Community Stars, COVID Heroes: 2020 Mission Awards
The unprecedented coronavirus pandemic affected every facet of homeland security and tested our response. Keep Reading
OIG: Action Needed to Prevent Further CBP System Outages That Risk National Security
In August 2019, a system outage of information technology systems disrupted processing of incoming international travelers at airports nationwide for as long as 2.5 hours. Such an outage risks the entry of unauthorized individuals. Keep Reading
Protecting Government’s Encrypted Data to Stay One Step Ahead of Threats
As federal agencies continue to evolve cloud infrastructures, they are likewise evolving security approaches. Keep Reading
Creative, Responsive, Agile Underscored Federal IT, Procurement in 2020
The year also proved urgency and emergency can drive agencies and vendors to get hardware and software in place in record time and within federal rules. Keep Reading
DOD Software Development Approaches and Cybersecurity Practices May Impact Cost and Schedule
GAO looked at how cost and schedule estimates have changed in 15 major DOD IT programs and examined how software development approaches and cybersecurity practices may affect costs and timeframes. Keep Reading