The National Institute of Standards and Technology’s recently issued draft SP 800-171B guidelines. This blog entry provides an overview of the prospective changes.
Continue Reading
Department of Homeland Security
Reported Cyber Attacks on U.S. Electric Utilities and Government Agencies
Posted on
Posted in Cybersecurity, Information Security
Hundreds of contractors and subcontractors with connections to U.S. electric utilities and government agencies have been hacked according to a recent report by the Wall Street Journal.…
Continue Reading
Federal Government and Private Sector to Collaborate through the Pipeline Cybersecurity Initiative
Posted on
Posted in Cybersecurity
Earlier this month, the Department of Energy and the Department of Homeland Security co-chaired a meeting with industry leaders from the Oil and Natural Gas Subsector Coordinating Council in Washington, DC to address cybersecurity threats to pipelines.…
Continue Reading
DOE and DHS Assess U.S. Readiness to Manage Potential Cyber Attacks
Posted on
Posted in Cybersecurity
On May 30, 2018, the federal government released a report that identifies gaps in assets and capabilities required to manage the consequences of a cyberattack on the U.S. electric grid.…
Continue Reading
Department of Energy Announces New Efforts in Energy Sector Cybersecurity
Posted on
On May 14, 2018, the Department of Energy Office of Electricity Delivery & Energy Reliability released its Multiyear Plan for Energy Sector Cybersecurity.…
Continue Reading
Attacks Targeting Oil and Gas Sector Renew Questions About Cybersecurity
Posted on
Posted in Cybersecurity, U.S. Federal Law
Recent press reports indicate that a cyber attack disabled the third-party platform used by oil and gas pipeline company Energy Transfer Partners to exchange documents with other customers. This incident and others raise questions about cybersecurity across the U.S. pipeline network.…
Continue Reading
U.S. Blames Russia for Cyber Attacks on Energy Infrastructure
Posted on
On March 15, 2018, the Trump Administration took the unprecedented step of publicly blaming the Russian government for carrying out cyber attacks on American energy infrastructure.…
Continue Reading
FERC Issues Notice of Proposed Rulemaking Aimed at Expanding Data Breach Reporting Obligations
Posted on
Posted in Cybersecurity, Security Breach
On December 21, 2017, the Federal Energy Regulatory Commission issued a Notice of Proposed Rulemaking aimed at expanding mandatory reporting obligations in relation to cybersecurity incidents. …
Continue Reading
DHS Issues Updated National Cyber Incident Response Plan
Posted on
On January 18, 2017, the Department of Homeland Security issued an updated National Cyber Incident Response Plan as directed by the Presidential Policy Directive 41, issued this past summer, and the National Cybersecurity Protection Act of 2014. …
Continue Reading
White House Releases New Policy on Federal Cyber Incident Response
Posted on
On July 26, 2016, the White House unveiled Presidential Policy Directive PPD-41, which sets forth principles for federal responses to cyber incidents approved by the National Security Council. PPD-41 first focuses on incident response to cyber attacks on government assets, but also outlines federal incident responses to cyber attacks on certain critical infrastructure within the private sector.…
Continue Reading