The Cybersecurity and Infrastructure Security Agency is working with the Treasury Department to address a recent Chinese-linked cyberattack against Treasury, CISA said Monday. Treasury sent a Dec. 30 letter notifying the House Banking Committee of the incident. Chinese hackers gained access to a stolen key used by BeyondTrust, a cloud service provider, according to Treasury.

DOJ rules blocking large-scale transfers of Americans’ personal data to entities in hostile nations will apply to data used to “achieve business purposes,” the Cybersecurity and Infrastructure Security Agency said Monday. The security requirements were included in a notice for Wednesday's Federal Register.

Health and Human Services (HHS) published a proposed rulemaking in Monday's Federal Register that would modify the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, requiring regulated entities to strengthen cybersecurity protections and updating HIPPA for the first time since 2013.