It’s hard to imagine that in just two months, we will be opening the highly anticipated RSA Conference 2022 in San Francisco. I’ve been listening to Once a Warrior by Jake Wood. Though there is much to look forward to at this year’s event, I am particularly excited to hear Jake’s keynote Crossing the Rubicon. In fact, this year’s lineup of keynote sessions is not only inspirational and educational but also an impressively diverse collection of brilliant minds that will not only expose next-generation TTPs but also spark joy in security leaders and empower them with the skills they need to influence real change in their organizations.
Alas, Conference is still eight weeks away, and a lot can happen in that time (evidenced by the events that have unfolded in this past week). Among other notable news headlines, the State Department announced it has formally launched the Bureau of Cyberspace and Digital Policy. Lt. Gen. Stephen Whiting, commander of US Space Operations Command, said at a Space Symposium earlier this week that “Cyberspace is the soft underbelly of our global space networks.” As a result, Space Force is taking steps to shift cybersecurity specialists to roles that will better protect military satellite networks. And the Department of Navy is also taking a holistic look at new approaches to cybersecurity.
Now let’s look at what other news made industry headlines this week.
Apr. 8: A Ukrainian hacker was sentenced to five years in US prison for criminal involvement in FIN7.
Apr. 8: The FDA published new guidance for manufacturers of medical devices, which includes recommendations that they develop a Software Bill of Materials.
Apr. 7: “Federal lawmakers scrutinized the ability of U.S. critical infrastructure to withstand a hypothetical cyber attack from Russia during an April 5 hearing, with testifying witnesses underscoring that the water sector faces unique challenges,” Government Technology reported.
Apr. 7: Facebook issued a report finding that hackers associated with the Russian and Belarusian governments were using the social media platform to conduct a cyber espionage campaign targeting Ukraine.
Apr. 7: “Former President Barack Obama said Wednesday that during his presidency he did not foresee how rampant disinformation would pose threats to democracies worldwide,” CyberScoop reported.
Apr. 6: NextGov reported, “Senior House Democrats and Republicans disagree on legislation Rep. John Katko, R-N.Y., has proposed that calls on the Department of Homeland Security to identify ‘systemically important critical infrastructure’—SICI—for prioritizing the government’s efforts to improve the nation’s cybersecurity.”
Apr. 6: As part of its plan to modernize cybersecurity defenses, the Office of Management and Budget is reviewing the initial drafts of zero trust plans from federal agencies.
Apr. 5: The Department of Justice announced “the seizure of Hydra Market (Hydra), the world’s largest and longest-running darknet market. In 2021, Hydra accounted for an estimated 80% of all darknet market-related cryptocurrency transactions, and since 2015, the marketplace has received approximately $5.2 billion in cryptocurrency.”
Apr. 4: A 16- and 17-year-old believed to be linked to the Lapsus group have been charged with hacking crimes.