Security Bulletin: Cybersecurity Executive Order

From The Chertoff Group:

• Adopt threat modeling, control validation, and ATT&CK. Technology providers should anticipate being targeted by threat actors—either for financial gain or as a stepping stone into customer environments—and apply and validate security controls based on anticipated adversary behavior. By understanding the anatomy of recent supply chain attacks and associated tactics, techniques, and procedures (TTPs), defenders can ensure risk-based countermeasures are in place and effective to safeguard software code and other crown jewels. The MITRE Corporation’s Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework can help through its library of mappings between TTPs and defensive countermeasure coverage.

Featured Publications

Congress’s Role in Presidential Elections: Part I

James Wallner
Jan 9, 2024

The Value of $7 Billion: The Affordable Connectivity Program and the Future of Access and Adoption

Jonathan Cannon
Jan 17, 2024

To Stem the Rise in International Plastics Pollution, Make It Easier for Big Polluters to Manage Waste

Philip Rossetti
Jan 17, 2024

Scott, Manchin Lead Bill to Protect State-Based Insurance System, Prevent CFPB Overreach

A Flexible Worker Agenda

2024 election protections against cyberattacks underfunded

When it comes to social media, government shouldn’t usurp parents

Radio: The Rod Arquette Show – January 12, 2024

Low-Energy Fridays: “Babe wake up, new social cost of carbon just dropped.”

Philip Rossetti
Jan 12, 2024

Labor Department’s New Regulations Aim To Rescue Gig Workers From Themselves

C. Jarrett Dieterle
Jan 11, 2024 Reason