software Archives

Closing software-understanding gap is critical to national security, CISA says

In a joint report with DARPA and others, the cyber agency said that knowledge gap “exacerbates” risks posed by threat actors in U.S. critical infrastructure.

Jan 17, 2025 By Matt Bracken

CISA sees elimination of ‘bad practices’ as next secure-by-design step

Officials at the cyber agency are doubling down on shifting the security onus to software makers.

Oct 28, 2024 By Matt Bracken

Ron Bushar, Head of Mandiant Government Solutions, Google Public Sector

Security leader Ron Bushar on using software supply chain frameworks to improve security

Bushar shares that Google has worked to build the SLSA framework, allowing organizations to grade their supply-chain maturity and ensure the security lifecycle during modernization.

Nov 7, 2023 By Scoop News Group

U.S. Secretary of Defense Lloyd Austin (2nd L) gives opening remarks as Chairman of the Joint Chiefs of Staff General Mark Milley (R) and Deputy Assistant Secretary of Defense for Russia, Ukraine, Eurasia Laura Cooper (L) listen during a virtual meeting of the Ukraine Defense Contact Group at the Pentagon on May 23. (Photo by Alex Wong/Getty Images)

The Pentagon may require vendors certify their software is free of known flaws. Experts are split.

The debate is over whether the provision is unrealistic or if it's a game changing move to cut down on software vulnerabilities.

Aug 19, 2022 By Suzanne Smalley

Electronic circuit board production and computer chip fly test by robotic automated machine. (Getty Images)

In studying tech supply chain, feds cite open source products, device firmware

The White House ordered Commerce and Homeland Security to examine weak spots in how the IT and communications industries produce hardware and software.

Feb 25, 2022 By Joe Warminsky

There’s a new Java ransomware family on the block

BlackBerry and KPMG researchers uncovered a new ransomware strain targeting education and software entities.

Jun 4, 2020 By Shannon Vavra

Sen. Angus King and Rep. Mike Gallagher. — Sen. Angus King and Rep. Mike Gallagher, left, at the Council on Foreign Relations January, 2020. (Kaveh Sardari)

What to expect from the Cybersecurity Solarium Commission report

“We want this to be the 9/11 Commission Report without the 9/11,” Sen. Angus King told CyberScoop.

Mar 11, 2020 By Shannon Vavra

Ex-DHS inspector general indicted for allegedly stealing government software

The head-turning indictment accuses Charles Edwards of stealing DHS IG software and trying to profit from it.

Mar 6, 2020 By Sean Lyngaas

Microsoft, Microsoft Windows — The Microsoft Theatre in Los Angeles. (REUTERS / Mike Blake)

Microsoft will offer free Windows 7 support for election officials through 2020

The move is the latest step by Microsoft and other powerful tech companies to offer free or discounted services in support of election security.

Sep 20, 2019 By Sean Lyngaas

ASUS issues patch, downplays scope of APT hack of its supply chain

ASUS's statement contrasted with the findings of researchers who called the hack seemingly “one of the biggest supply-chain incidents ever.”

Mar 26, 2019 By Sean Lyngaas