NIST details continuous monitoring for your agency

Wednesday - 6/2/2010, 3:47pm EDT

Ron Ross, project leader for the FISMA implementation project, NIST

Click to hear the interview

Download mp3

Cybersecurity Update - Tune in weekdays at 30 minutes past the hour for the latest cybersecurity news on The Federal Drive with Tom Temin and Amy Morris (6-10 a.m.) and DorobekInsider with Chris Dorobek (3-5 p.m.). Listen live at FederalNewsRadio.com or on the radio at 1500 and 820 AM in the Washington, D.C. metro area.

  • Cyber accreditation isn't enough these days to keep your agency secure. With an increased cyber threat, NIST has updated its guidance for FISMA to include what is called 'continuous monitoring'. What does that mean -- and what do the changes mean? Ron Ross is the project leader for the FISMA implementation project at NIST. He says for the past four years NIST along with the Defense Department have teamed up to revise the certification and accreditation process.

  • Just when you thought the click-jacking scams on Facebook were a thing of the past, another one has popped up. This time hundreds of thousands of users were tricked into posting messages to their pages saying that they 'liked' the malicious link. CNet news reports that clicking on the link takes the visitor to what appears to be a blank page with just the message, 'Click here to continue', but hidden in the page is code called an iFrame. When a visitor clicks anywhere on the page, the iFrame publishes the message to the visitor's homepage. The security firm Sophos says if you believe you have been hit by this attack, view the recent activity on your news feed and delete entries related to the above links. Facebook has been notified of the problem, and has taken down the malicious pages.

Check out all of Federal News Radio's coverage of cybersecurity issues here.