News and Events

July 14, 2021

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) seeks comments and feedback from government and industry subject matter experts on challenges and the practical approaches to preventing and recovering from ransomware and other destructive cyber events. The NCCoE will open a call for papers on June 4, 2021 and host a follow-up virtual workshop on July 14th, 2021.

June 24, 2021

Join the NCCoE on Thursday, June 24 at 3 p.m. EDT for a technical deep dive into NIST Special Publication 1800-22, Mobile Device Security: Bring Your Own Device (BYOD) with Gema Howell, computer scientist and Mobile Device Security Project team lead for the National Institute of Standards and Technology's National Cybersecurity Center of Excellence.

June 24, 2021

Date/Time: Thursday, June 24, 2021 | 1 p.m. - 4 p.m. EDT
Duration: 3 hours

The National Institute of Standard and Technology's (NIST's) National Cybersecurity Center of Excellence (NCCoE), a non-regulatory entity, is looking to improve the cybersecurity of the ground segment component of satellite operations, particularly with regard to global positioning system (GPS) functions. To that end, the NCCoE is engaging the satellite community and other key stakeholders to understand the cybersecurity challenges they face and the leading practices currently employed.  From this workshop, the NCCoE will publish non-binding cybersecurity recommendations out to the community.

June 11, 2021

The time has come for government to mandate that companies vital to U.S. national and economic security meet basic cybersecurity standards, according to a vast majority of cybersecurity experts. 

That assessment from 86 percent of the Cybersecurity 202 Network comes as the government reels from the Colonial Pipeline ransomware attack, which disrupted gasoline sales and prompted panic buying in the southeastern United States, and the JBS ransomware attack that raised fears of a meat shortage. 

June 08, 2021

The National Cybersecurity Center of Excellence (NCCoE) has released a new draft report, National Institute of Standards and Technology (NIST) Interagency or Internal Report (NISTIR) 8334, Using Mobile Device Biometrics for Authenticating First Responders.

June 07, 2021

The National Cybersecurity Center of Excellence (NCCoE) asks industry to comment on a draft project description that discusses security against quantum computer-based cyber attacks.

May 27, 2021

Join the NCCoE on Thursday, May 27 at 3 p.m. EDT for a fireside chat with Gema Howell, Computer Scientist and Mobile Device Security Project Team Lead for the National Institute of Standards and Technology's (NIST) National Cybersecurity Center of Excellence (NCCoE).

May 24, 2021

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) has introduced a project that aims to present approaches to trusted network-layer onboarding processes and lifecycle management of internet of things (IoT) devices.

May 24, 2021

The National Cybersecurity Center of Excellence (NCCoE) has drafted a document on data classification practices and asks the public for input.

May 20, 2021

NCCoE’s Bill Newhouse presents the recent hospitality publication, Securing Property Management Systems, during the Hospitality Financial and Technology Professionals (HFTP) Virtual Education Series.  

May 19, 2021

Feds will eventually travel again on business. And when they do, their personal data will end up in property management systems. The systems hotels use to manage and book space. Turns out these systems are vulnerable to hackers seeing personal information. Now the National Institute of Standards and Technology has released results of focused work with the industry to help the situation. Joining Federal Drive with Tom Temin with more, National Cybersecurity Center of Excellence engineer Bill Newhouse.

May 18, 2021

On May 12, 2021, President Biden issued Executive Order No. 14028, entitled “Improving the Nation’s Cybersecurity”, setting out new and enhanced cybersecurity standards for federal government agencies and the commercial software products utilized by them. The Biden administration’s order comes in the wake of increasingly damaging and sophisticated cyber-attacks on American companies and infrastructure.

May 17, 2021

One primary consideration should drive implementation: who gets to see what content? 

May 17, 2021

The NCCoE will present and provide project demonstrations at the virtual 2021 RSA Conference. Click for additional information. This page will be updated as presentations are confirmed.

May 14, 2021

Used in cyberattacks that can paralyze organizations, ransomware is malicious software that encrypts a computer system’s data and demands payment to restore access. To help organizations protect against ransomware attacks and recover from them if they happen, the National Institute of Standards and Technology (NIST) has published an infographic offering a series of simple tips and tactics.

May 12, 2021

In the aftermath of the recent Colonial Pipeline hack, which caused the shutdown of the United States’ largest pipeline system for refined oil products, President Joe Biden signed an executive order to help shore up the nation’s cybersecurity and protect government networks.

May 12, 2021

The NCCoE’s Jim McCarthy joins an esteemed panel of security experts at the Cleveland Water Alliance’s Water Data Forum Webinar on Wednesday, May 12 from 1-3 p.m. ET for a conversation on cybersecurity and ongoing efforts at the national level aimed at improving cybersecurity preparedness in the water sector.

May 12, 2021

In 2019, the hospitality industry suffered 13 percent of all data breaches, ranking third highest among targeted industries. It was two years later when NIST released SP 1800-27: Securing Property Management Systems to help hoteliers secure their Property Management Systems (PMS) and associated patron data. The National Cybersecurity Center of Excellence (NCCoE) at NIST collaborated with cybersecurity solutions providers and the hospitality business community to create a zero-trust example implementation framework under which a PMS and related systems could be secured using existing off-the-shelf and open-source solutions.

May 11, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are aware of a ransomware attack affecting a critical infrastructure (CI) entity—a pipeline company—in the United States. Malicious cyber actors deployed DarkSide ransomware against the pipeline company’s information technology (IT) network.[1] At this time, there is no indication that the entity’s operational technology (OT) networks have been directly affected by the ransomware.

May 06, 2021

NIST's Scott Rose is participating in a panel discussion, "The National Security and Emergency Preparedness Challenges to Adopting Zero-Trust Networking," as part of the President's National Security Telecommunications Advisory Committee (NSTAC) meeting at  12:45 p.m. ET on May 6, 2021.