Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

US Government Urges Action on Software Gap

January 20, 2025
Reading Time: 2 mins read
in News
US Government Urges Action on Software Gap

The U.S. government, including agencies like CISA, DARPA, OUSD R&E, and NSA, is urging for immediate action to close a significant gap in the understanding of software systems, especially in relation to national security and critical infrastructure. This “software understanding gap” arises from a mismatch between the complexity of today’s software and the ability of mission owners and operators to fully comprehend it. The gap makes it difficult to design software that is secure by default, address defects quickly, and defend against software exploits. The agencies involved in the report are calling for urgent steps to close this gap before other nations, like China and Russia, can surpass the U.S. in their capabilities to secure software-controlled systems.

Software-controlled systems are integral to U.S. critical infrastructure, including military, space, communications, energy, and transportation systems, as well as artificial intelligence. These systems rely heavily on software running on endpoints, servers, and ICT systems, which are essential for national security. The report highlights that the inability to understand the software leads to risks in identifying potential vulnerabilities, leaving critical infrastructure exposed to cyber threats. Addressing the software understanding gap is crucial to improving the nation’s ability to protect these systems from adversarial state-sponsored activities, which could compromise both security and geopolitical standing.

The report stresses that manufacturers must take immediate action to enhance their secure-by-design programs

The report stresses that manufacturers must take immediate action to enhance their secure-by-design programs, incorporating trusted third-party attestation processes. Such steps will allow customers to have greater confidence in the software they procure, knowing it has undergone rigorous security checks. The U.S. government is also urged to take coordinated action, with policies, legal requirements, and investments in technology procurement and research, to close this gap across the country’s infrastructure sectors. This includes improving the ability of mission owners and operators to routinely evaluate software systems and make decisions based on a clear understanding of their behavior and security posture.

By addressing the software understanding gap, the report suggests that not only will national security and critical infrastructure be better protected, but there will also be economic benefits. Enhancing the understanding of software will help improve decision-making before deploying new software systems, leading to increased confidence in their use. Moreover, it will help reduce the resources spent on patching and upgrading systems and strengthen the ability of the U.S. to maintain an edge in global technology competition, which is becoming increasingly important in today’s geopolitically charged environment.

Reference:
  • CISA Calls for Action to Bridge US Software Understanding Gap
Tags: Cyber NewsCyber News 2025Cyber threatsJanuary 2025
ADVERTISEMENT

Related Posts

UK Advances Plan to Report Ransomware Attack

UK Advances Plan to Report Ransomware Attack

July 23, 2025
UK Advances Plan to Report Ransomware Attack

Global Ransomware Attacks Drop 43% in Q2

July 23, 2025
UK Advances Plan to Report Ransomware Attack

Clorox Sues Cognizant Over 2023 Cyberattack

July 23, 2025
3.5K Sites Hijacked to Secretly Mine Crypto

Darktrace Buys Mira Security

July 22, 2025
3.5K Sites Hijacked to Secretly Mine Crypto

UK Sanctions APT28 for MS Cloud Attack

July 22, 2025
3.5K Sites Hijacked to Secretly Mine Crypto

The Financial Toll Of Dark Web Travel Sites

July 22, 2025

Latest Alerts

Lumma Stealer Returns with New Tactics

npm Phishing Emails Target Developer Logins

MuddyWater Emerges Amid Iran-Israel Clash

CrushFTP Warns of Exploit in the Wild

7-Zip Flaw Lets Malicious Files Crash PCs

3.5K Sites Hijacked to Secretly Mine Crypto

Subscribe to our newsletter

    Latest Incidents

    Weak Password Triggers Ransomware Old Firm

    US Nuclear Agency Breached in MS Hack

    European Healthcare Network Breached

    CoinDCX Says $44M Stolen from Reserves

    Poland Probes Air Traffic Control Issue

    Dior Alerts Customers After Cyberattack Hit

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial