Senate Group Wants CISA to Protect Open-Source Software

Senate Homeland Security Committee leaders Gary Peters (D-Michigan) and Rob Portman (R-Ohio) have introduced a bill requiring a risk framework for open-source code. The proposed legislation would require the Cybersecurity and Infrastructure Security Agency to develop the risk evaluation process for open-source software being used by federal agencies and critical infrastructure. The move follows the discovery in December of a vulnerability in the Apache Software Foundation’s popular Log4j Java logging utility. Peters said the Log4j incident presented a serious threat to banks, hospitals, and utility companies, among other national security operations. Continue reading Senate Group Wants CISA to Protect Open-Source Software

TikTok on the Hot Seat at Senate Homeland Security Hearing

Executives from four social media giants defended the privacy, security and content moderation protocols of their platforms to the Senate Homeland Security Committee Wednesday. In her first appearance before Congress, TikTok COO Vanessa Pappas was grilled on whether the short-form video app shares data about American citizens with the Chinese government. ByteDance, which owns TikTok, is based in Beijing, and its potential censorship of user content was another area of concern. Questions for the group — which included representatives from Meta Platforms, YouTube and Twitter — ranged from extremists to biometrics. Continue reading TikTok on the Hot Seat at Senate Homeland Security Hearing