Trust no one becomes mantra after massive cyber-attacks
in the wake of two massive cyber-attacks that exposed glaring deficiencies in U.S. defenses, government officials and cybersecurity practitioners are saying zero trust may be the way to stop the cyber mayhem.
Software vendors would have to disclose breaches to U.S. government users under new order
A planned Biden administration executive order will require many software vendors to notify their federal government customers when the companies have a cybersecurity breach, according to a draft seen by Reuters. A National Security Council spokeswoman said no decision has been made on the final content of the executive order.
U.S. regulators seek to tighten cyber incident reporting
The Federal Reserve, Office of the Comptroller of the Currency and the Federal Deposit Insurance Corporation have proposed rules to force banks and their service providers to strengthen their critical incident response protocols. The rules require banks to notify supervisors within 36 hours of a security incident, including system outages experienced by a bank service provider.