A new bipartisan bill would require federal agencies to conduct more extensive and thorough background checks on contractors’ and suppliers’ cyber security supply chains. The current system is described as “extremely complex,” but “ill-equipped” to deal with twice and three-times removed security risks like those in the recent Kaspersky and ZTE risks. The bill would create an interagency council to develop cybersecurity supply chain criteria for government IT tools.
Source: New Bill Aims to Prevent the Next Kaspersky, ZTE – Nextgov