New York has enacted legislation focused on reducing supply-chain and data exposure risks by limiting technology procurement across state and local agencies.

The law mandates a centrally maintained restricted technology list, informed by security and homeland officials, with compliance required by 2027. The approach reflects growing alignment between procurement governance and cyber risk management.

Open to discussion on how procurement controls can complement technical security measures.

Source: https://statescoop.com/new-york-cybersecurity-law-tech-products-agencies-buying/

Follow TechNadu for balanced policy and threat analysis.

#InfoSec #SupplyChainSecurity #PublicSectorCyber #RiskManagement #CyberPolicy #GovTech

Acting CISA Director reportedly took a polygraph tied to an intelligence access request, prompting a DHS internal review.
At least 6 career staff placed on paid leave amid the investigation.

https://www.technadu.com/acting-cisa-director-reportedly-took-polygraph-following-intelligence-access-request-prompting-dhs-internal-review/616343/

Thoughts on the implications for agency leadership?

#CISA #InfoSec #CyberPolicy

The latest U.S. defense authorization includes multiple cybersecurity-focused measures, including sustained funding for Cyber Command, reaffirmation of its leadership structure, and new requirements for secure mobile communications at senior levels.

The bill also directs the Defense Department to streamline its cybersecurity requirements and assess infrastructure dependencies linked to foreign entities of concern. Together, these steps reflect ongoing efforts to reduce operational risk and improve cyber resilience at scale.

Which of these measures do you believe will have the most practical impact on defense cybersecurity operations?

Source: https://therecord.media/trump-signs-ndaa-cyber-command

Share your insights and follow TechNadu for steady, unbiased InfoSec coverage.

#InfoSec #CyberPolicy #DefenseCyber #SecureInfrastructure #CyberLeadership #RiskManagement #TechNadu

Denmark explores VPN limits to address illegal streaming.
https://www.technadu.com/denmark-proposes-vpn-limits-to-tackle-illegal-streaming/615849/

• Proposal targets piracy-related access
• Government denies full VPN ban
• Tech-neutral language raises enforcement questions
• Privacy advocates warn of censorship risks

#Infosec #VPN #Privacy #CyberPolicy #DigitalRights

Australia’s under-16 social media ban moves to court as Reddit challenges age verification mandates.
https://www.technadu.com/child-safety-age-verification-moves-from-compliance-to-court-as-reddit-challenges-australias-under-16-social-media-ban/615632/

• Mandatory age checks + prediction models
• Heavy fines for platforms
• Privacy and anonymity concerns raised
• VPN usage reportedly rising

A key test case for digital identity enforcement in democracies.

#AgeVerification #PrivacyRisk #CyberPolicy #OnlineSafety #DigitalIdentity

Reddit is deploying global protections for under-18 users - stricter chat settings, reduced personalized advertising, and age-prediction controls - coinciding with Australia’s upcoming restrictions on platforms for users under 16.

These measures highlight broader questions about responsible design, age verification, and the operational impact of safety-driven regulation.

What’s your stance on regulation-driven platform changes versus platform-led safeguards?

Source:
https://www.bloomberg.com/news/articles/2025-12-09/reddit-adds-global-teen-safety-features-ahead-of-australia-ban

Share your insights and follow us for thoughtful, unbiased coverage.

#OnlineSafety #Infosec #CyberPolicy #DigitalProtection #PlatformGovernance #TechRegulation

The White House says its updated national cyber strategy is nearly ready - focused on shaping adversary behavior, improving federal-industry coordination, and speeding up adoption of modern tech across agencies.

The upcoming strategy will be concise, action-driven, and paired with immediate follow-up tasks.

What’s your view on prioritizing consequence-based signaling in national cyber policy?
Follow TechNadu for more detailed infosec reporting.

#CyberStrategy #NationalCyberDefense #WhiteHouse #Infosec #CyberPolicy #SecurityLeadership #CyberReadiness

U.S. states consider VPN restrictions under new online-safety proposals.
🔗 https://www.technadu.com/us-lawmakers-consider-banning-vpns-to-protect-minors-online/613835/

Wisconsin’s bill is nearing a Senate vote, while Michigan proposes ISP-level VPN blocking.

EFF warns these measures threaten privacy and provide little protection for minors.

Follow @technadu for more verified cyber policy reporting.

#infosec #cybersecurity #vpn #privacy #EFF #policy #uslaw #securitynews #cyberpolicy

DOJ announces new actions targeting illicit DPRK-linked schemes, including identity fraud enabling remote IT work at 136+ U.S. companies and APT38 crypto heists exceeding $15M.

Key elements:
• Multiple guilty pleas (U.S. & international)
• Unauthorized remote access + identity misuse
• Cryptocurrency laundering + ongoing seizure efforts
• DOJ, FBI & NSD coordination under DPRK RevGen initiative
Thoughts on improving remote-work identity vetting?
👍 Follow for more verified, unbiased cyber reporting.

#infosec #APT38 #Cybercrime #ThreatIntel #DOJ #NorthKorea #SecurityOps #CyberPolicy #DigitalForensics

Two major U.S. cyber laws — the CISA Act and State & Local Cybersecurity Grant Program — are temporarily back through Jan 30 following the shutdown’s end.

#CyberSecurity #CISA #CyberPolicy #CriticalInfrastructure