Browse
Government
Government advisories, security alerts, regulatory updates, and federal communications
Recent Posts
Stay updated with our latest insights and news
Washington Update September 15, 2021
Democrats Seek to Pass “Build Back Better” – Supply Chain Security Issues Included This month, House and Senate Democrats will look to pass their versions of the $3.5 Trillion “Build Back Better” legislation that President Biden has been touting since his campaign. Several committees are working on the legislation, including those that deal with supply chain security matters. As part … Continued
Washington Update – July 15, 2021
Congress returned to Washington from its two-week July 4th recess this week – and issues important to ISCPO members have heated up along with the summer temperatures! House Spending Bills Address Critical Supply Chain Issues The House Committee on Appropriations has recently acted on several annual spending bills, including measures on Homeland Security, Commerce-Justice-Science, Transportation and others. All told, the Committee has now approved … Continued
Update from Washington — June 15, 2021
Cyber-Security On the heels of two major private sector ransomware attacks, official Washington is looking to act. Last month, a cyber-attack on Colonial Pipeline shut down major gasoline distribution in the eastern United States, causing major supply disruptions and gas shortages. Reports are that Colonial paid $4.4 million in ransom to resolve the hack. A … Continued
CISA MS-ISAC Ransomware Guide –
Food and Agriculture Sector Members, Given the events of the past weekend, the SCC and GCC leadership felt that it would be timely to resend this information out to our sector partners. Over the next few days, we will continue to forward additional resources as they are available. On September 30, 2020, the Cybersecurity and … Continued
FBI Update on Exploitation of Fortinet FortiOS Vulnerabilities – June 1, 2021
Critical Infrastructure Colleagues and Partners, The Federal Bureau of Investigation (FBI) has released an FBI FLASH, APT Actors Exploiting Fortinet Vulnerabilities to Gain Access for Malicious Activity, which describes advanced persistent threat (APT) actors exploiting known Fortinet FortiOS vulnerabilities. APT actors may exploit these vulnerabilities to gain initial access to multiple government, commercial, and technology … Continued
Washington Update – May 2021
Despite Slow Pace, Infrastructure Still A High Priority in Washington The Biden Administration continues its outreach to Republican lawmakers in the hopes of brokering a bipartisan agreement on a massive infrastructure bill. Biden’s $2.3 trillion proposal — which he outlined in a speech to a joint session of Congress on April 29th — has been panned by GOP lawmakers, who argue it includes a huge array … Continued
Washington Update – April 13, 2021
Infrastructure Congress returned to Washington this week after a two-week recess – with action on President Biden’s broadly defined “infrastructure” proposal at the top of the agenda for the Democratic majority. While the President continues to talk publicly about working on a bipartisan basis, at this point it appears he and his party will seek … Continued
FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities – April 5, 2021
CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory(https://www.ic3.gov/Media/News/2021/210402.pdf) (CSA) to warn users and administrators of the likelihood that advanced persistent threat (APT) actors are actively exploiting known Fortinet FortiOS vulnerabilities CVE-2018-13379 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13379), CVE-2020-12812 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12812), and CVE-2019-5591 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5591). APT actors may use these vulnerabilities or other common exploitation techniques to gain initial access … Continued
CISA Insights: National Supply Chain Integrity Month – April 1, 2021
In recognition of National Supply Chain Integrity Month, the Cybersecurity and Infrastructure Security Agency (CISA) is partnering with the Office of the Director of National Intelligence (ODNI), the Department of Defense, and other government and industry partners to promote a call to action for a unified effort by organizations across the country to strengthen global … Continued