The US Department of Homeland Security yesterday issued an emergency directive to non-national-security agencies enjoining them to secure their networks against a DNS-hijacking campaign widely (although unofficially) attributed to Iran. The Washington Post reports that Defense, Intelligence, and classified systems were unaffected.
Speaking yesterday in Lille, French Armed Forces Minister Florence Parly re-emphasized France's determination to engage across the spectrum of conflict in cyberspace, specifically including offensive cyber operations. She had said last week in Paris, according to Le Point, "La guerre cyber a commencé et la France doit être prête à y combattre:" cyberwar has begun, and France is determined to be ready to fight it. The Register says her remarks in Lille included discussion of a coming bug bounty program and a significant investment in the cyber industrial base, including small businesses.
The 2019 US National Intelligence Strategy is out, warning of "diverse" and "interconnected" threats. Cyber threats are particularly called out, with the Strategy noting that they've already affected "confidence in our global institutions, governance, and norms, while imposing numerous economic costs domestically and globally."
A bill under consideration in North Carolina, the Act to Strengthen Identity Theft Protections, would effectively require organizations to treat ransomware infections as data breaches.
Criminal Justice Secure Email, widely used by British barristers, went down last Friday and isn't expected to be fully restored for two weeks. The outage is impeding the work of the country's criminal courts, the Times reports. According to the Register, the reasons for the outage remain unclear.