David Valdez Posts

Last week, the House Permanent Select Committee on Intelligence unanimously passed out of committee the Cyber Intelligence Sharing and Protection Act of 2011 (H.R. 3523). The bill would “permit cybersecurity service providers and businesses that operate their own cybersecurity systems to share information related to potential cybersecurity threats with other businesses and the federal government. Such threats include efforts to interfere with a cybersecurity network, or threats involving the the ...

For those who have been following the roller coaster ride of whether comprehensive cybersecurity reform will be accomplished this legislative session, there have been some interesting developments that took place within the last 24 hours.Senate Majority Leader Harry Reid sent a letter yesterday informing Minority Leader Mitch McConnell that cybersecurity legislation will be introduced after the December recess. This letter prompted a reply letter from Sen. McConnell advising Sen. Reid to introdu ...

Earlier this week a very significant development took place that went fairly unnoticed.  Congressman Greg Walden, chairman of the Energy and Commerce Subcommittee on Communications, unveiled legislation with the purpose of improving process and transparency at the Federal Communications Commission (FCC).This move was significant because the FCC is an independent agency that has been at odds over what has turned into a partisan issue: net neutrality.  The FCC has been criticized for issuing last ...

The Deficit Reduction Super Committee and looming re-election campaigns have taken all the air of out of the room. It seems that despite best efforts by Congress to focus on reforming cybersecurity laws and regulations, the environment looks challenging for current proposals to pass during this legislative session. The Republican Cybersecurity Task Force, chaired by Congressman Mac Thornberry (R-TX), recently issued its report with a list of recommendations for reforming the nation’s cybersecuri ...

Earlier this week the Subcommittee on Commerce, Manufacturing, and Trade held a hearing entitled “Understanding Consumer Attitudes About Privacy.”  Subcommittee Chairman Bono Mack stated that “despite everything that I have heard in our previous hearings, I still remain somewhat skeptical right now of both industry and government. Frankly, I don’t believe industry has proven that it’s doing enough to protect American consumers, while government.  Unfortunately, tends to overreach whenever it com ...

Earlier this week, Congressman Fred Upton, chairman of the powerful House Energy and Commerce Committee, sent a bipartisan letter to the General Accountability Office to “to examine the government’s role in addressing cybersecurity challenges.” Rep. Upton asked that the GAO to “identify actions taken by the appropriate federal agencies to address cybersecurity challenges; security features, potential vulnerabilities, or existing problems on consumer products and services; and main non-U.S. suppl ...

Earlier this year the U.S. Secret Service in coordination with Verizon and the Dutch National High Tech Criminal Unit released the 2011 Data Breach Investigations Report.An interesting outcome of the report is that in 2010 cyber attacks decreased significantly from earlier years, but the number of actual breaches was the highest ever. A possible reason for outcome is that hackers are no longer going after the big targets in large numbers, but instead are focusing their efforts on smaller and mor ...

Last week the Senate Judiciary Committee held a hearing on the reform of the Computer Fraud and Abuse Act, (CFAA).  The CFAA was passed initially in 1986 to impose criminal liability for hacking computers and IT systems owned by the federal government and financial institutions.  Since then there have been numerous amendments to the CFAA, and most recently as a result of the enactment of the USA Patriot Act.The CFAA makes it a crime for any individual to access a federal or financial “computer” ...

A recent article in The New York Times discussed how security concerns are contributing to the reluctance of federal agencies and businesses to migrate their IT operations to the cloud.  While some of these concerns are legitimate, given the benefits of the cloud, the transition seems inevitable and the longer we wait, the more money is wasted.In the past, businesses of all sizes and government agencies spent billions of dollars on IT hardware and software.  Much of this technology was proprieta ...

It was standing room only at CompTIA’s Tech Summit last Thursday in Washington, D.C., as channel members, business owners and reporters crowded into the Washington Hilton for a Q&A and panel discussion around two topics: cloud computing and mobility.We’re used to hearing about the efficient and cost-effective features of the cloud but the first panel discussion, Security & Cloud Migration Challenges for Business and Government, focused on the darker side— What security questions are crea ...