US congressional panel urges Americans to ditch China-made routers

A U.S. congressional committee on Wednesday urged Americans to remove Chinese-made wireless routers from their homes, including those made by TP-Link, calling them a security threat that opened the door for China to hack U.S. critical infrastructure. The House of Representatives Select Committee on China has pushed the Commerce Department to investigate China’s TP-Link Technology Co, which according to research firm IDC is the top seller of WiFi routers internationally by unit volume.

Read Full Article

OSINT Unveiled: The Technology Behind the Intelligence – ODNI Edition

Feb 27, 2025 2:00 p.m. ET – Webinar

Join us for a discussion on the evolving role of OSINT in national security. As hybrid threats grow more complex, Open-Source Intelligence (OSINT) is becoming a critical tool for government agencies and private sector partners. Our speakers will explore OSINT’s integration with other intelligence disciplines, the importance of public-private collaboration and the steps needed to professionalize the field.

Key Topics:

  • The role of OSINT in today’s hybrid threat landscape
  • Steps to advance OSINT professionalization in government
  • The importance of public-private partnerships in intelligence
  • How OSINT complements SIGINT, HUMINT, GEOINT and MASINT
  • The significance of direct OSINT collection for government and industry

Register Now:

Protecting Your Software Supply Chain: Assessing the Risks Before Deployment

Cybercriminals have recognized that instead of attacking an organization head-on, they can infiltrate through the software supply chain—like slipping counterfeit parts into an assembly line. According to the 2024 Sonatype State of the Software Supply Chain report, attackers are infiltrating open-source ecosystems at an alarming rate, with over 512,847 malicious packages detected last year alone—a 156% increase from the previous year. Traditional security tools and processes often miss these threats, leaving organizations unprepared.

Read Full Article

Federal Executive Forum Cybersecurity for Defense and Homeland Progress and Best Practices 2025

Government cybersecurity strategies are constantly evolving to address new threats. The Departments of Defense and Homeland Security prioritize proactive defense, including integrating security into the development process and adopting zero trust principles. They also focus on threat intelligence, workforce development and modernizing infrastructure to build a more resilient and secure nation.

Register Now

Cloudflare CDN flaw leaks user location data, even through secure chat apps

A security researcher discovered a flaw in Cloudflare’s content delivery network (CDN), which could expose a person’s general location by simply sending them an image on platforms like Signal and Discord.

While the geo-locating capability of the attack is not precise enough for street-level tracking, it can provide enough data to infer what geographic region a person lives in and monitor their movements.

Read Full Article

WH National Cyber Director Finalizing Software Liability Proposals

The outgoing White House national cyber director is highlighting the progress his office made over the last four years, while also queuing up key issues, like regulatory harmonization and software liability, for the incoming Trump administration.

White House National Cyber Director Harry Coker, speaking at the Foundation for the Defense of Democracies in Washington on Tuesday, ran down his office’s signature efforts, including the 2023 national cyber strategy and the push to establish minimum cyber standards for critical industries.

Read Full Article

Federal News Network’s Industry Exchange Cyber 2025

Jan 27, 2025 1:00 p.m. ET

Webinar

Cybersecurity requires constant vigilance but also continual evolution. Are you staying safe today and staying out front of threats on the horizon? Join Federal News Network to learn about the latest tactics and technologies to help agencies meet their cyber-readiness demands, from threat detection and response to keeping employees aware and endpoints secure.

Register Now

Defend Against Ransomware Attacks Cyber Range Training

Tuesday, January 7, 2025

Time: 9:00 AM EST – 1:00 PM EST

Location type: Virtual/Online

Format: Webinar

The Cybersecurity and Infrastructure Security Agency (CISA) is proud to offer Incident Response Training event, Defend Against Ransomware Attacks Cyber Range Training (IR209). The 200-level training events are open to government employees and contractors across federal, state, local, tribal, and territorial government, educational partners, and critical infrastructure partners.

Register Now