Sharing information about hacks

Retrieved 2021-10-06

Kevin Mandia: Coordination, Tech Among Keys to Cybersecurity Advancement (ExecutiveBiz)

Retrieved 2021-09-24

EETimes (SolarWinds Fallout: Cloud Security is the Weak Link)

Retrieved 2021-09-23

Leading Cyber Officials Favor Fines Over Subpoenas to Enforce Incident Reporting (Nextgov)

SolarWinds CEO Says Attackers Gained Entry, Began Recon in January 2019 (Opera News)

Retrieved 2021-09-14

SolarWinds CEO: Breach transparency 'painful' but necessary

Retrieved 2021-05-03

Stopping the Next SolarWinds Requires Doing ...

Retrieved 2021-04-29

Microsoft weighs revamping flaw disclosures after suspected leak (Pittsburgh Post-Gazette)

Retrieved 2021-04-28

GCHQ calls for more UK investment in cybersecurity. US Senate considering information (sharing bill. CISA and NIST offer supply chain security guidance.)

Security News in Review: Emotet Uninstalled Worldwide; Babuk “Goes Dark” (secblvd)

Retrieved 2021-04-27

‘Mandatory’ Cyber Info Sharing Bill Coming, Says Senate Intel Chair Warner « Breaking Defense (Defense industry news, analysis and commentary)

The Cybersecurity 202: Lawmakers want to create a reserve corps of cybersecurity experts to respond to the next SolarWinds (R Street)

Retrieved 2021-04-26

New bill would task CISA with infrastructure risk assessments - (FCW)

Retrieved 2021-04-23

Federal CISO DeRusha Cites SolarWinds Response as Promising ‘Use Case’ (MeriTalk)

Retrieved 2021-04-22

New cyber (hardening mandates may be coming for defense firms)

Why indict foreign cyber operators? IoT security regulation in the UK. Anti (ransomware measures and surveillance limitations in the US.)

SolarWinds Hack Imparted Lessons to Work Across Silos and Not ‘Victim Blame,’ Says Federal CISO (Homeland Security Today)

The Cybersecurity 202: Biden's pick for White House cyber director wants to see better relationship building with the private sector (wapo)

Retrieved 2021-04-19

US Senator Mark Warner calls for urgent transatlantic cooperation on cybersecurity (POLITICO)

Cyberattacks and Security Breach Disclosures: U.S. Federal Law Coming? (MSSP Alert)

Retrieved 2021-04-18

Biden agencies could find key lawmakers in accord on hack-attack alerts (Newsday)

Retrieved 2021-04-14

Senators Push for Changes in Wake of SolarWinds Attack

Hillicon Valley: Intel leaders push for breach notification law | Coinbase goes public (hill)

Retrieved 2021-04-13

Former DHS Leader Shares Details on SolarWinds Attack

TIA, CTIA, NAB press Biden to let industry lead on telecom security (FierceTelecom)

Experts see 'unprecedented' increase in hackers targeting electric grid (hill)

IC warns that U.S. adversaries are ramping up cyber attacks - (FCW)

Retrieved 2021-04-12

Former DHS Secretary Details SolarWinds Hackers’ Access to His Email (Nextgov)

Ex-DHS chief confirms suspected Russian hackers targeted his email account (CyberScoop)

‘They knew I was running late to meetings’: Former DHS chief on reports that SolarWinds hackers targeted his emails (The Record by Recorded Future)

Retrieved 2021-04-09

Cyber Cases May Offer Clues to SEC ESG Enforcement

White House preps new requirements for industrial control system security - (GCN)

SolarWinds Cyberattack: Lessons Learned

Retrieved 2021-04-05

President Biden’s new executive order could oblige software vendors to tell Uncle Sam about security breaches (The Daily Swig)

Retrieved 2021-04-01

After SolarWinds, Lawmakers Want Companies to Come Clean About Cyberattacks

Cyber Daily: After SolarWinds, Lawmakers Want Companies to Come Clean About Hacks (State Department Emails Stolen)

NSA Director Says More Domestic Surveillance Might Stop Foreign Hacking; Fails To Explain Why NSA Isn't Stopping Much Foreign Hacking (Techdirt)

Hunting the hunters: How Russian hackers targeted US cyber first responders in SolarWinds breach (CNNPolitics)

Russian SolarWinds hackers were so ‘sophisticated’ that they even targeted DHS cybersecurity experts (Alternet.org)

Hunting the hunters: How Russian hackers targeted US cyber first responders in SolarWinds breach

Retrieved 2021-03-31

How SolarWinds Is Recovering and Sharing What It Has Learned Over The Last Three Months (My TechDecisions)

Expected breach disclosure mandates will test government-industry cooperation - (FCW)

Retrieved 2021-03-29

Software vendors would have to disclose breaches to US - Security (CRN Australia)

Cybersecurity Needs a New Alert System (WSJ)

AP sources: SolarWinds hack got emails of top DHS officials

Retrieved 2021-03-26

SolarWinds, cyberattacks (Homeland Security Newswire)

Retrieved 2021-03-25

The Cybersecurity 202: NSA director says intelligence has a big blind spot: domestic Internet activity (wapo)

Exclusive: Software vendors would have to disclose breaches to U.S. government users under new order: draft (Reuters)

NSA director says U.S. has a ‘blind spot’ for detecting attacks like SolarWinds, Microsoft Exchange (The Record by Recorded Future)

Why the modern CISO should plan for greater Cybersecurity Regulations in the Biden Era (scmedia)

EXCLUSIVE (Software vendors would have to disclose breaches ...)

Fed Breach Disclosure Rule Planned After SolarWinds Hack: Report

Biden executive order would force software vendors to disclose breaches (Seeking Alpha)

General says attacks by foreign hackers are 'clarion call' (StarTribune)

Another Critical RCE Flaw Discovered in SolarWinds Orion Platform

Software vendors would have to disclose breaches to U.S. government users under new order (The Hindu)

Exclusive: Software vendors would have to disclose breaches to U.S. government users under new order: draft (Reuters)

Biden reportedly planning an executive order on cybersecurity breach notifications (SiliconANGLE)

Exec Order Could Force Software Vendors to Disclose ...

Senators Offer to Let NSA Hunt Cyber Actors Inside the US (Defense One)

Nakasone Warns Adversaries Hack Unseen In US « Breaking Defense (Defense industry news, analysis and commentary)

NSA Chief Says Recent Hacks Expose Limits of U.S. Cyber Protections (WSJ)

Exclusive: Software vendors would have to disclose breaches to U.S. government users under new order: draft (Reuters)

Retrieved 2021-03-23

Discussions About Mandated Cyber Incident Reporting Resurface After Nation-State Hacks (My TechDecisions)

King: Mandatory breach disclosure bill coming soon - (Defense Systems)

US Response to SolarWinds Cyber Penetrations: A Good Defense Is the Best Offense (Russia Matters)

Retrieved 2021-03-22

US government calls for better information sharing in wake of SolarWinds, Exchange attacks (CSO Online)

Retrieved 2021-03-08

Microsoft adopted ‘aggressive’ strategy for sharing SolarWinds Attack intel (Urgent Comms)

Hacked Companies Caught in Maze of Notification Requirements

Retrieved 2021-03-06

Microsoft Adopted an 'Aggressive' Strategy for Sharing SolarWinds Attack Intel (News AKMI)

Retrieved 2021-03-05

It’s Time for a Cybersecurity Quid Pro Quo (Nextgov)

The Cybersecurity 202: Companies are doing a terrible job of reporting cybersecurity risks to investors, a new study says (wapo)

Microsoft Adopted an 'Aggressive' Strategy for ...

Retrieved 2021-03-04

Congressional Hearings on SolarWinds Hack

Retrieved 2021-03-03

SolarWinds Senate Hearing: Moving Forward It’s All About Zero Trust (secblvd)

SolarWinds Senate Hearing: Moving Forward It’s All About Zero Trust

SolarWinds Incident May Bring Data Breach Notification Rules

Retrieved 2021-03-02

SolarWinds Attack Prompts Calls for Companies to Disclose Hacks (Bloomberg)

Retrieved 2021-03-01

After SolarWinds debacle, the U.S. needs to keep software makers from being hurt by cost (cutting owners)

Retrieved 2021-02-28

Congress has new appetite for breach law following SolarWinds hack - Security (iTnews)

Hearing on Hack Prompts Call for Review of Government’s Cloud Procurement (Nextgov)

Retrieved 2021-02-26

Congress has new appetite for breach law following SolarWinds hack -lawmaker (The Star Phoenix)

Former NSA and Cyber Command Chief Keith Alexander on SolarWinds, Cyberwar, and China (The Record by Recorded Future)

At House SolarWinds hearing, bipartisan lawmakers announce breach disclosure bill (TerabitWeb Blog)

Congress has new appetite for breach law following SolarWinds hack: lawmaker | Business Information & News | FE (Westlaw Today)

Experts Call for Increased Cyber Info Sharing in Wake of SolarWinds Breach (MeriTalk)

Retrieved 2021-02-25

10 Security Quotes: Microsoft, CrowdStrike, SolarWinds, and FireEye Talk to Congress

US Senators, tech execs recommend hack reporting requirement, Technology (THE BUSINESS TIMES)

The SolarWinds of Change are Blowing in the Need for Tech Collaboration (Law.com)

Retrieved 2021-02-24

SolarWinds attack could have happened to anyone, CEO says - (GCN)

Massive SolarWinds Hack Prompts Calls for U.S. Law Requiring Cyber Breach Reporting

Lawmakers urge notification law in wake of Russia SolarWinds hack

Senate SolarWinds Hearing: 4 Key Issues Raised

The big takeaway from the Senate's SolarWinds hearing (Axios)

SolarWinds fallout sparks calls for mandatory incident reporting, repercussions after cyber attacks (FRN)

Sens. Mull Cyberattack Reporting Law At SolarWinds Hearing (Law360)

Marco Rubio on SolarWinds Hack: ‘Many Concerning Aspects to This Operation That Raise Significant Questions’ (Florida Daily)

Senators, Tech Execs Recommend Hack Reporting Requirement (DCN)

Senate grills tech executives on SolarWinds hack (One America News Network)

SolarWinds, Microsoft, and executives of more firms face Senate grilling (TechStory)

SolarWinds Hack Leaves Entire Industry In Panic (Research Snipers)

Infosec expert says mandatory cyber incident reporting is worth considering in Canada (IT World Canada News)

Microsoft president asks Congress to force private (sector orgs to publicly admit when they've been hacked • The Register)

DOJ could start looking closer at cybersecurity fraud on government technology providers (FRN)

Retrieved 2021-02-23

Newscan: SolarWinds CEO recommends liability protections for sharing information about incidents (Urgent Comms)

SolarWinds, Microsoft, FireEye, CrowdStrike executives face Senate grilling (Reuters)

SolarWinds, Microsoft, FireEye, CrowdStrike Executives Face Senate Grilling

FireEye (NASDAQ:FEYE), (CRWD) - SolarWinds, Microsoft, FireEye, CrowdStrike To Testify In Senate In Russian Cyber Hack Case (Benzinga)

Broadband Breakfast: SolarWinds CEO Says Hack Shows Need for Information (Sharing Between Industry and Government)

Hillicon Valley: Companies urge action at SolarWinds hearing | Facebook lifts Australian news ban | Biden to take action against Russia in 'weeks' (hill)

Executives testify SolarWinds hack was of unprecedented scale, scope (UPI)

The Scale of the SolarWinds Breach Is Still Unclear, Executives Say (nyt)

SolarWinds hack worse than thought (Senate panel)

Solarwinds hearing stresses breach disclosure mandates (scmedia)

SolarWinds Hack Bigger, More Dangerous than Previously Thought, Tech Execs Warn (VOA)

Microsoft, FireEye push for breach reporting rules after SolarWinds hack (hill)

Retrieved 2021-02-22

SolarWinds CEO Recommends Liability Protections for Sharing Information about Incidents  (Nextgov)

Retrieved 2021-02-10

Experts Tell Lawmakers to Give CISA 'Operational' Federal Information Security Role (Nextgov)

Retrieved 2021-01-08

January 8th Update on SolarWinds (JetBrains Blog)

Retrieved 2019-02-28

Text - S.592 - 116th Congress (2019-2020): Cybersecurity Disclosure Act of 2019 | Congress.gov (Library of Congress)

Retrieved 2016-03-25

Cyber Defense Triad For Where Security Matters | November 2016 (CACM)