anchore11h ago

FedRAMP is moving faster than ever. With the new "FedRAMP 20x" initiative and the shift toward Rev 5, the days of manual spreadsheets and quarterly reviews are gone.
If you're managing containerized workloads, the 30-day scanning window isn't just a suggestion—it's a requirement for your ATO.

Are you prepared for the new pace of federal compliance?

We've compiled the most common questions into our FedR... https://anchore.com/fedramp/fedramp-overview/
#FedRAMP #DevSecOps #SBOM #NIST #Cybersecurity #PublicSectorIT

ATIX AGMar 2

Wir sind auf dem Digitaler Staat in Berlin dabei!

📍 3.–4. März 2026
📌 Stand 24

Vor Ort stellen wir orcharhino vor, eine Lösung zur Automatisierung von IT-Infrastrukturen.

Mit orcharhino lassen sich Deployment und Configuration Management sowie Lifecycle-, Release- und Patch-Management zentral steuern, für standardisierte IT-Infrastrukturen und effizientere IT-Prozesse.

Weitere Informationen: https://www.digitaler-staat.org/

#DigitalerStaat #PublicSectorIT #ITOperations #DigiStaat26 #Automation

TechNaduDec 20

The Senate has confirmed Kirsten Davies as the Pentagon’s new CIO, bringing a background spanning enterprise security leadership and large-scale cyber operations.

Her remarks point to familiar challenges for security teams: aging infrastructure, skills refresh cycles, procurement friction, and accelerating adversary activity.

From an InfoSec standpoint, where do you see the biggest gap today - technology, process, or workforce?

Source: https://therecord.media/senate-confirms-new-pentagon-cio

Share your insights and follow TechNadu for practitioner-focused cybersecurity reporting.
#InfoSec #DefenseCyber #CyberLeadership #SecurityStrategy #PublicSectorIT #TechNadu

TechNaduDec 18

Mexico reports dual cyber incidents:
• Alleged PRI breach exposing 1.35M voter ID images
• Sonora government halts payments after suspected cyberattack

Details:
https://www.technadu.com/pri-data-breach-exposes-voter-credentials-and-sonora-government-cyberattack-halts-financial-operations-in-mexico/616102/

#CyberSecurity #DataBreach #PublicSectorIT

TechNaduNov 27

A researcher discovered a flaw in Tyler Technologies’ jury management systems affecting several U.S. states. Sequential juror IDs and missing rate limiting enabled brute-force access to detailed juror profiles, including demographic data and qualification responses.

Tyler has confirmed remediation but hasn’t clarified whether exploitation occurred or if individuals will be notified.

Full analysis:
https://www.technadu.com/tyler-technologies-jury-system-flaw-exposes-sensitive-personal-data-in-us-states/614667/

#Cybersecurity #InfoSec #AppSec #ThreatIntel #PublicSectorIT #TechNadu

TechNaduNov 7

Nevada declined to pay ransom after a ransomware attack traced back to a spoofed system admin tool via SEO poisoning.
With FBI & Mandiant support, the state restored 90% of impacted data in 28 days.
No gang has claimed the attack yet; recovery costs exceed $1.5M.

#CyberSecurity #Ransomware #InfoSec #IncidentResponse #Malware #DigitalResilience #PublicSectorIT #DataSecurity

Paul ArmitageNov 7

Cross-Agency Collaboration: Transforming Governance

Successful EA requires cross-agency collaboration. What governance models enable true cooperation? How do you tackle stakeholder alignment & funding barriers?

#EnterpriseArchitecture #PublicSectorIT #NFPGovernance #Collaboration

ITZBundOct 30

🔊 Stark vernetzt beim #P2PDay2025 in Berlin 💡
Das ITZBund war mit vier spannenden Beiträgen zu KI, Virtualisierung, Krisenmanagement und Digitaler Souveränität dabei.

Ein großartiger Tag voller Austausch, Ideen und Impulse – für eine digitale Verwaltung aus einem Guss!

#P2PDay #DigitaleVerwaltung #PublicSectorIT

Show threadVSHN - The DevOps CompanyAug 29, 2025

Mit Servala - The Sovereign App Store bringen wir Open-Source-Services zu Unternehmen und öffentlichen Institutionen: sicher, compliant und unter deiner Kontrolle.

👉 Rückblick lesen: https://www.vshn.ch/blog/der-weg-zur-digitalen-souveraenitaet-kickoff-event-des-netzwerk-sds-in-bern/

👉 Mehr über Servala: https://servala.com/

#DigitaleSouveränität #OpenSource #Schweiz #Servala #CloudNative #NetzwerkSDS #ZenDiS #openDesk #DevOps #SDS #SouveräneCloud #DigitalTransformation #PublicSectorIT #EGovernment #OSS #OpenSourceCommunity #Souveränität

Der Weg zur digitalen Souveränität - Kickoff-Event des Netzwerk SDS in Bern – VSHN AG

Heute, am 28. August 2025, fand an der Berner Fachhochschule die Kickoff-Veranstaltung des Netzwerks SDS – Souveräne Digitale Schweiz statt. […]

VSHN AG
Brian Greenberg Jul 21, 2025

🚨 🤦🏻‍♂️ Microsoft SharePoint just became the latest frontline in a global cyber incident. A zero-day exploit hit federal and state agencies, universities, and energy firms, with some victims losing access and data entirely. Microsoft is scrambling to release a patch, but attackers may have already stolen cryptographic keys to maintain access.

This wasn’t a cloud issue, it hit on-prem SharePoint servers, lots of which are still unpatched. Another example of what happens with slow vendor response time and a resource-strained public sector.

TL;DR
⚠️ SharePoint zero-day exploited
🔓 Cryptographic keys harvested
🏛️ U.S., EU, and Asia targets hit
🐌 Patch lag left systems exposed

https://www.washingtonpost.com/technology/2025/07/20/microsoft-sharepoint-hack/
#cybersecurity #infosec #SharePoint #publicsectorIT

Global hack on Microsoft product hits U.S., state agencies, researchers say

Unknown attackers exploited a “significant vulnerability” in Microsoft’s SharePoint collaboration software, hitting targets around the world. 

The Washington Post