CISA supply chain assessment hits the home stretch

The recently established Federal Acquisition Security Council is ramping up resources to help agencies better understand and manage their supply chain security risks. FASC “is going to serve as the governance structure to elevate the security within federal acquisition processes” Read More …

F-35 jets: Chinese-owned company making parts for top-secret UK-US fighters

A Chinese-owned company is making circuit boards for the top-secret next generation F-35 warplanes flown by Britain and the United States, Sky News can reveal. Exception PCB, a printed circuit board (PCB) manufacturer in Gloucestershire, south west England, produces circuit Read More …

Huawei ‘looking into’ New Zealand 5G ban to find way forward

Huawei has responded to the refusal of New Zealand’s Government Communications Security Bureau (GCSB) to allow Spark to proceed with its Huawei-powered 5G network deployment, saying it is working on a way forward. “Huawei is aware of Spark’s statement, and Read More …

Security warning: UK critical infrastructure still at risk from devastating cyber attack

An ongoing failure to act with “meaningful sense of purpose or urgency” in the face of threats posed by cyber criminals and hackers puts critical national infrastructure at unnecessary risk from cyber attacks, a UK Parliamentary committee has warned. The Read More …

GSA proposes new cybersecurity reporting rules for contractors

The General Services Administration is proposing new rules shaping how contractors protect government information on the IT systems they manage. Tucked in a Friday Federal Register post detailing the Unified Agenda of Federal Regulatory and Deregulatory Actions, two proposed rules — GSAR Read More …

Managing the Risk of IT-OT Convergence

Why manufacturing and logistics are especially challenged. A few years ago, it wasn’t easy getting executives on board with the concept of operational technology (OT) security. Having finally come around to acknowledging the need for information technology (IT) security, boards Read More …

Critical Infrastructure & Supply Chain Remain Highly Vulnerable to Attacks

This week, the National Cyber Security Alliance (NCSA) reminds us that, “our day-to-day life depends on the country’s 16 sectors of critical infrastructure, which supply food, water, financial services, public health, communications and power along with other networks and systems. A disruption Read More …

FERC Finalizes Cybersecurity Standards for Grid Supply Chain

The Federal Energy Regulatory Commission approved new mandatory reliability standards Thursday to deal with cybersecurity risks to the supply chain management for the U.S. bulk electric system. FERC’s final rule approves standards proposed by the North American Electric Reliability Corp. Read More …