Inside Cybersecurity

April 27, 2025

Home Page

Home Page

By Sara Friedman

The annual RSA conference in San Francisco will navigate cyber regulations, artificial intelligence and the current threat landscape, during a busy week where uncertainty over the Trump administration’s next steps will loom large.

By Jacob Livesay

House Oversight cyber subcommittee Chair Nancy Mace (R-SC) and full committee ranking member Gerry Connolly (D-VA) have reintroduced a bipartisan bill to reauthorize and modify the Technology Modernization Fund with a focus on improving program administration and inventorying outdated federal IT that presents a target for cyber attackers.

By Jacob Livesay

The effective shutdown of DHS’ Cyber Safety Review Board has created an unacceptable gap with no government entity adequately looking into the high-profile Salt Typhoon campaign, according to former CSRB member Jamil Jaffer of the National Security Institute.

By Charlie Mitchell

Microsoft has issued the latest update on what it describes as “the largest cybersecurity engineering project in history,” an initiative launched shortly after the 2023 Microsoft Exchange Online intrusion, with the company claiming progress across the board including on zero trust implementation, red-teaming operations and enforcement of security standards.

By Jacob Livesay

Data security requirements placed on industry should be performance-based and provide flexibility for managing risks in alignment with widely used standards, according to an industry coalition that submitted comments to a House GOP working group on privacy legislation.

By Jacob Livesay

House Intelligence ranking member Jim Himes (D-CT) sees the potential to boost sharing of actionable cyber information on sophisticated threats by exploring how reporting requirements could be included in the reauthorization of a high-profile 2015 cybersecurity information sharing law.

By Charlie Mitchell

The House Oversight cyber and IT subcommittee has announced a hearing to discuss government information technology modernization, with a likely focus on cybersecurity and government uses of AI, including the efforts of the U.S. DOGE Service led by Elon Musk.

RECENT NEWS

R Street report examines open-source AI cyber risks, calls for federal guidelines
Pentagon publishes guidance on using updated NIST controlled unclassified information publication for contracting officials
Former ONCD strategist encourages Trump to take targeted approach for addressing security of space systems
Tech group urges FCC to embrace interagency coordination when addressing national security of submarine cables
Software group expresses support for CISA secure by design efforts following exit of key leaders
Treasury, Transportation and OMB among federal entities asking for feedback to fulfill Trump deregulation mandate

MORE NEWS ›

Topics

CMMC
Industry groups highlight aspects of acquisition reform to come from Trump directives to agencies
Alliance for Digital Innovation raises concerns over compliance burden to meet requirements in proposed CUI rule
Pentagon nominee for acquisition chief to consider CMMC impact on businesses if confirmed
Timing for second CMMC rulemaking could face hurdles amid Trump directives on deregulation
Incident Reporting Law
National Academies report offers recommendations for improving Justice Dept. cyber crime metrics
Industry groups urge OMB to launch deregulation initiative for cutting duplicative cyber regulations
U.S. ports group calls for harmonizing incident reporting rules to allow submissions through Coast Guard
GOP leaders of House Homeland, Oversight panels urge OMB to conduct review of cyber regulations
Supply Chain
NIST highlights building incentives, lifecycle management as takeaways from Internet of Things workshop
Small business advocacy office identifies FCC regulations for potential deletion over burdensome requirements
NIST releases draft white paper on incorporating automation into security of Internet of Things devices
Multi-State ISAC considers alternative funding models as CISA reduces financial support for operations
Zero Trust
Pentagon plans to include operational technology, Internet of Things in next stage of zero trust adoption
Pentagon acting CIO Arrington outlines aggressive approach to zero trust planning
NIST seeks input on draft guide for secure integration of cloud applications
FCC security advisory group to consider post-quantum cryptography as part of 6G security study
National Cyber Strategy
OMB memo for fiscal 2025 FISMA reporting builds on network visibility requirements, IoT responsibilities
NCD Coker: Chinese cyber threats require cross-sector engagements, partnership with OMB
ONCD plans to provide recommendations for incoming Trump administration on software liability schemes
ONCD official highlights efforts to build on threat disruption objectives in national cyber strategy
CSF 2.0
USTelecom urges FCC to utilize NIST framework as foundation for cyber requirements under submarine cable rule revamp
NIST releases draft update to privacy framework with changes on oversight, platform security
NIST launches work to develop artificial intelligence profile of cybersecurity framework with focus on using existing resources
NIST finalizes cybersecurity framework profile for incident response efforts
INTERNET OF THINGS
Consumer Technology Association emphasizes benefits of IoT cyber labeling program to new FCC chair
Former NSC cyber official Neuberger joins Stanford security policy center
Senate Commerce advances Roth nomination to lead NTIA as next administrator
Democratic Commissioner Starks announces plans to leave FCC
Artificial Intelligence
RSA 2025 kicks off with sessions on cyber regulations, AI next steps amid uncertainty over Trump administration
R Street report examines open-source AI cyber risks, calls for federal guidelines
R Street encourages House group to prioritize data security as part of comprehensive privacy legislation
NIST releases draft update to privacy framework with changes on oversight, platform security