House approves bill to strengthen IT supply chain following SolarWinds hack

Oct 20, 2021
In the News

Original article written by Maggie Miller for The Hill

Photo Credit: Greg Nash

The House on Wednesday approved legislation to strengthen software and information technology supply chains at the Department of Homeland Security (DHS) and to help protect against attacks similar to last year’s SolarWinds hack.  

The DHS Software Supply Chain Risk Management Act, sponsored by Rep. Ritchie Torres (D-N.Y.) passed the lower chamber overwhelmingly by a vote of 412-2.  

The legislation would require DHS to issue departmentwide guidance that all contractors submit lists of their software materials and the origins of each item to DHS for review. That would allow the agency to have greater insight into potential software vulnerabilities.   

“As cyberattacks become increasingly frequent and sophisticated, it is crucial that DHS has the capacity to protect its own networks and enhance its visibility into information and communications tech or services that it buys,” Torres said in a statement Wednesday. “As a federal leader in the cybersecurity space, DHS must set an example by modernizing how it protects its networks.”  

Torres, the vice chairman of the House Homeland Security Committee, which approved the bill earlier this year, urged the Senate to take up and pass the legislation as soon as possible in order to heighten the nation’s cybersecurity. 

“The security and integrity of software bought by DHS is integral to homeland security. My bill will ensure that the Department has access to prevent, detect, and respond to future cyber-attacks,” Torres said. “I am proud to work with the House Homeland Security Committee to provide DHS with the best tools to defend its networks.”  

The bill was passed by the House as federal agencies continue to recover from and investigate the impact of the SolarWinds hack. 

The incident, first discovered in December, involved Russian government-backed hackers exploiting vulnerabilities in software from IT group SolarWinds to compromise nine federal agencies, including DHS, along with at least 100 private sector groups.  

According to The Associated Press, former acting DHS Secretary Chad Wolf’s email account and the email accounts of other top DHS officials and DHS cybersecurity employees were among the data accessed by the hackers as part of the incident. 

President Biden levied sanctions against Russia in April in retaliation for the SolarWinds hack. 

Recent Posts

Sep 27, 2023

VIDEO and RUSH TRANSCRIPT: U.S. Rep. Ritchie Torres Grills SEC Chair Gensler during House Financial Services Committee Oversight Hearing

WASHINGTON, D.C. – U.S. Representative Ritchie Torres (NY-15), as a member of the House Financial Services Committee, today grilled the Hon. Gary Gensler, Chairman of the U.S. Securities and Exchange Commission (SEC), during an oversight hearing about the agency’s regulatory developments, rulemakings, and other activities over the last few years. Additional relevant background can be […]

Sep 14, 2023

U.S. Reps. Torres, Malliotakis Introduce Bipartisan Legislation Protecting Rights of Seniors to Access Traditional Medicare Coverage

WASHINGTON, D.C. – U.S. Representatives Ritchie Torres (NY-15) and Nicole Malliotakis (NY-11) today introduced bipartisan legislation – the “Right to Medicare Act” – aimed at protecting the rights of seniors in New York and across the country to access traditional Medicare coverage and prevent employers from forcing retirees onto private Medicare Advantage plans without a […]

Sep 1, 2023

U.S. Rep. Ritchie Torres, NY Assemblyman Jeffrey Dinowitz, NYC Council Member Eric Dinowitz, and Local Environmental Groups Raise Concerns about Proposed Cricket Stadium in Van Cortlandt Park

BRONX, N.Y. – U.S. Representative Ritchie Torres (NY-15), New York Assemblyman Jeffrey Dinowitz, and New York City Council Member Eric Dinowitz today joined a coalition of local community and environmental groups to raise concerns about New York City’s proposal to construct a temporary 34,000 seat cricket stadium on the Parade Ground of Van Cortlandt Park […]