@NextgovFCW cybersecurity + intelligence reporter. Tips: ddimolfetta@govexec.com Signal: @ djd.99 BSKY: @ddimolfetta.bsky.social

Washington, DC
Honored to be recognized at The Echo Awards yesterday as the 2026 Best Investigative Journalist, alongside my colleague Ross Wilkers, recognized for his great work covering government contracting.
5
5
38
5,667
Breaking: @FCC makes AI-generated voices in robocalls illegal under Telephone Consumer Protection Act
32
543
1,630
193,509
My name is Oliver Queen. For five years, I was stranded on an island with only one goal: survive. Now I will fulfill my father's dying wish - to use the list of names he left me and push cars stuck in snow. To do this, I must become someone else. I must become, the Green Shovel.
16
79
827
Personal news: I've joined @washingtonpost this week as the researcher for the Cyber 202 and Tech 202 newsletters! Really excited to be working with @timstarks, @viaCristiano and others here covering the tech and cyber beats⬇️
57
22
543
92,508
NEW: At a Thursday Washington Post Live event, State Department's Nate Fick says most Americans don't understand "how much of the content they see on social platforms is actually a foreign intelligence operation." nextgov.com/digital-governme…
5
104
242
42,061
NEW: In an 11th hour move, CISA spokesperson says it extended the contract for the MITRE-backed CVE Program last night:
9
71
272
38,895
SCOOP: Library of Congress was targeted in cyberattack that occurred same time as high-profile ransomware attack on UK's British Library in October, but the hackers failed to access U.S. library’s systems because MFA was installed⬇️ nextgov.com/cybersecurity/20…
2
46
127
34,431
Personal news: Today is my first day at @NextgovFCW covering cybersecurity! So excited to get started and continue on the cyber beat. Send tips, scoops, story ideas, research reports and anything else you've got to ddimolfetta@govexec.com
21
11
140
17,919
Kristi Noem and Russ Vought, nominees to respectively head DHS and OMB, advanced out of Senate Homeland Security and Gov't Affairs Committee
1
23
140
24,992
It’s such a privilege to share my first A1 at the Post with @Cat_Zakrzewski and @viaCristiano - I’ve looked up to both of them since I started covering tech just a little over two years ago. Thanks for having me along, let’s do it again sometime :)
11
7
108
13,753
I've confirmed this is legit. Story on the way.
BREAKING. From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
2
17
95
15,658
Gov't funding needed for MITRE to develop + maintain its flagship Common Vulnerabilities and Exposures Program will expire Wednesday, the company confirmed. CVE provides a global standard for identifying cyber vulnerabilities. It first launched in 1999. nextgov.com/cybersecurity/20…
1
48
87
25,641
Today, our final edition of the Cybersecurity 202 went out. It was also my last time on the Technology 202. It's been such a privilege working with @timstarks and @viaCristiano and I will miss doing these newsletters with them more than words can describe.
4
13
84
8,365
The action expands “the legal avenues through which state law enforcement agencies can hold these perpetrators accountable under the law,” FCC says.
16
56
1,728
Navy telling its workforce to not reply to accomplishments email sent tonight, according to email text I obtained: “At this time, if you have received this email, DO NOT respond. We are awaiting DoD and DoN guidance and will send an update as soon as we know more.”
1
22
67
3,558
SCOOP --> FTC held meetings with tech industry executives to gather information for a possible antitrust probe of Microsoft’s licensing and bundling practices. Recent cyberattacks linked to the company came up in the discussions.⬇️ nextgov.com/cybersecurity/20…
2
26
59
12,493
Joint quote from House Science Committee Ranking Member Zoe Lofgren and Committee on Homeland Security Ranking Member Bennie Thompson re. CVE funding:
Gov't funding needed for MITRE to develop + maintain its flagship Common Vulnerabilities and Exposures Program will expire Wednesday, the company confirmed. CVE provides a global standard for identifying cyber vulnerabilities. It first launched in 1999. nextgov.com/cybersecurity/20…
3
21
55
9,492
Gushing with excitement to see @timstarks for the first time since working on the Cyber202 with him at the Post. So happy.
2
2
54
1,984
NEW: The Microsoft Exchange vulnerability disclosed tonight coincided with a talk delivered at Black Hat, where a security researcher demoed the exploitation. Federal systems are exposed and an emergency directive is planned tomorrow, I’m told: nextgov.com/cybersecurity/20…
24
48
11,523
I’m leveling up this week and will be moving into DC proper tomorrow! I’ll be checking work email periodically over the next few days and can still be reached via email or dms for any tips/scoops. Definitely most excited about the new kitchen! Please send recipes!
4
43
Inbox: Bipartisan Senate group set to unveil legislation tomorrow to reform security classification system "in order to reduce overclassification, prevent mishandling of classified information, promote better use of intelligence, and enhance public trust" at 11:30.
9
39
44,982
@wmata looks like these lights are burning up here at Metro Center station, several people smell burning, anything to worry about?
12
8
39
Imagine asking Twitter for comment about soaring antisemitic tweets on the platform….and getting a poop emoji as a reply. That’s exactly what happened to @viaCristiano. Today’s Technology 202 ⬇️ washingtonpost.com/politics/…
4
12
36
7,665
NEW → DHS’s Office of Intelligence and Analysis has briefly paused its planned staff cuts following backlash from law enforcement and Jewish community orgs, two people familiar with the matter tell Nextgov/FCW.
1
10
40
2,725
Proud to have made it into a White House transcript for the first time. Hopefully many more to come!
3
39
1,647
New: Salt Typhoon may have targeted U.S. universities in an effort to access research in areas related to telecommunications and other technologies, according to findings from Recorded Future out today: nextgov.com/cybersecurity/20…
1
19
39
3,135
@SenatorLeahy back at it again as @POTUS signs bipartisan government funding bill 📸
3
3
27
I will at RSA Conference in May and would love to connect with sources and other folks in the cyber community. Shoot me an email and let's try to plan: ddimolfetta@govexec.com
7
37
2,648
The things you don’t expect to happen to you when going to the Hill…accidentally making it into a @CNN shot. Always love watching @mkraju!
1
35
Privilege to be at the White House today covering the administration’s K-12 cybersecurity summit
1
2
32
1,790
Scoop: Edward Coristine, a 19-year-old staffer in billionaire Elon Musk’s Department of Government Efficiency with a reported history of interacting with hacking groups, has been given physical access to CISA with a DHS email.
2
18
34
4,483
SCOOP: FBI raided Carahsoft's offices this morning, two people familiar tell us. FBI spox says it "conducted court-authorized law enforcement activity on Sunset Hills Road this morning" and declined to comment further. Story TK
1
15
28
21,799
Mini job news: My beat is switching! I'll be pivoting to AI and cybersecurity policy coverage in the coming weeks, working more closely with our @451Research team under the guidance of @nickpatience. ⬇️
3
35
I’ve taken a lot of risks in life, but by far the biggest was today when I wore a white shirt to an Italian restaurant
2
1
33
2,697
I anchored today’s Cybersecurity 202, where I wrote about how cyber preparedness is increasingly being looked at in credit ratings assignments. Also included is an exclusive on cybersecurity workforce legislation: washingtonpost.com/politics/…
9
30
2,366
*Blue checks disappearing on Twitter* Me, who never had a blue check to begin with:
30
1,189
Found a photo of my first press pass issued last year, can’t believe I thought I could pull off a Jim Morrison look in Congress
3
29
New: A climate nonprofit is pushing Big Tech to exit the U.S. Chamber of Commerce, arguing the companies' climate goals are in conflict with the Chamber's history of working to obstruct climate policy, I report for today's Technology 202 washingtonpost.com/politics/…
9
32
2,459
CISA has no data or reporting to support claims of cheating in election, agency senior advisor Cait Conley just told reporters on a call.
From colleague @holmeslybrand: The Philadelphia Police Department told CNN they were not aware what Trump was referring to and did not know of any issues with voting that required a law enforcement response.
12
28
9,291
One year ago today I started at @SPGMarketIntel, just a week after finishing undergrad. To say I've learned a lot is an understatement. I've met and talked with really amazing people and I'm grateful for the opportunity to be covering such an important beat right now.
4
26
Exclusive --> @Mandiant CEO Kevin Mandia talks Volt Typhoon. Says there are victims targeted who won’t know they are impacted. “To me, Volt Typhoon is the natural progression of great … Chinese cyberespionage,” he says. w/ @Frank_Konkel nextgov.com/cybersecurity/20…
10
29
2,559
Update: the extension is 11 months, I’m told.
Story live: CISA extends MITRE-backed CVE contract hours before its lapse nextgov.com/cybersecurity/20…
1
9
30
10,715
CISA statement re. CVE funding: “Although CISA’s contract with the MITRE Corporation will lapse after April 16, we are urgently working to mitigate impact and to maintain CVE services on which global stakeholders rely.”
Gov't funding needed for MITRE to develop + maintain its flagship Common Vulnerabilities and Exposures Program will expire Wednesday, the company confirmed. CVE provides a global standard for identifying cyber vulnerabilities. It first launched in 1999. nextgov.com/cybersecurity/20…
13
27
8,843
Me while waiting for omnibus text
28
2,784
Black Hat highlight: seeing my dad!
2
29
1,147
Paid too much for this headshot
2
28
MS in Business Analytics. No easy feat doing this while working full time, couldn't have done it without Mom and Dad. Congratulations to all my friends and peers who took on this challenge. Taking suggestions for what degree to get next. Hoya Saxa!
6
1
25
2,374
Cyber journo peeps getting some much needed sun at #BlackHat2024@magmill95 @JGedeon1 @samsabin923
24
2,452
Our scoop on FBI's Carahsoft raid is live: nextgov.com/acquisition/2024…
SCOOP: FBI raided Carahsoft's offices this morning, two people familiar tell us. FBI spox says it "conducted court-authorized law enforcement activity on Sunset Hills Road this morning" and declined to comment further. Story TK
1
5
24
44,432
Nice being home for a few days where I got to see this little monster again
25
Since then, LOC has been decommissioning legacy equipment and integrating new security tools into its networks.
1
18
812
“Stop the press!” used to be cool because you’d actually have to stop the printing press but now you just close your browser
1
1
23
Scoop: U.S. agencies assessed that Salt Typhoon likely hit data center giant Digital Realty and mass media provider Comcast, marking a potentially major expansion of the Chinese hacking group’s initial telecom intrusions discovered last year.⬇️
1
10
22
3,427
Making omnibus latkes
1
20
1,213
The U.S. is still trying to jettison Salt Typhoon from telecom networks. The Chinese hacking group launched the intrusions with “much broader” aims than just compromising CALEA wiretap systems, a senior FBI official said Tuesday —> nextgov.com/cybersecurity/20…
1
7
22
1,250
Dreams really do come true
20
967
Occasionally I'll be taking over the newsletters and will be doing some of my own reporting on cybersecurity and tech policy matters. Send tips, scoops, story ideas and exclusives to david.dimolfetta@washpost.com or DM me to chat on Signal. Can't wait to get started!
2
2
21
2,201
With that, my time at the Post is done. I don't have any announcements on next steps yet, but I'll say that this has been such a great learning opportunity, and I thank everyone for their encouragement as I worked on these newsletters while in grad school. It was not easy to do.
2
1
23
1,730
@JohnAvlon: "Freedom of the press is the biggest guarantor of a free society."
7
12
One fmr. senior official fears the move might be used as a basis to split the NSA-CYBERCOM dual hat, permitting POTUS to install a loyalist appointee. “We saw it’s possible, without adequate oversight, for our spy agencies to do inappropriate things.” nextgov.com/people/2025/04/n…
7
21
569
New: We obtained a draft copy of the Biden admin's swan song cybersecurity EO, focused on shoring up federal cyber practices. We also confirm Bloomberg reporting that Chinese Treasury hack was likely carried out by Silk Typhoon --> nextgov.com/cybersecurity/20…
2
8
23
7,223
Salt Typhoon scoop —> -Hundreds of orgs notified of possible compromise -Hackers exploited years-old flaws that had patches, but telcos never implemented them -FCC CALEA ruling expected to pass before Trump takes office nextgov.com/cybersecurity/20…
9
22
1,417
NEW: In an exclusive interview with @SPGMarketIntel, former FCC Chairman @AjitPai says that ongoing 5G deployment disputes call for a confirmed leader of @NTIAgov spglobal.com/marketintellige…
1
10
21
SCOOP --> HHS quietly removed Login from grantee payment platform after hackers stole millions from multiple grant recipient orgs last year. The thieves used SAM data to change banking info, impacting seven orgs. New details on incident w/ @AlmsNatalie ⬇️ nextgov.com/cybersecurity/20…
2
12
20
5,119
Huge coalition of Dems write to POTUS about NSA firings. Of note: “Premature termination of the dual-hat arrangement would severely degrade the speed and effectiveness of NSA’s and CYBERCOM’s abilities to execute their missions and could have dire consequences” for NatSec⬇️
1
8
19
3,025
This is my new favorite shirt
1
19
906
Scoop: OPM fires its own probationary period staff. On an internal call w/ probationary employees Thursday afternoon, an unidentified OPM official told impacted workers they would lose physical and IT systems access at 3 p.m. w/ @EricM_Katz govexec.com/workforce/2025/0…
1
16
19
10,590
Had a blast visiting @TechForTroopsVA today for coverage examining the device divide in America. Here’s a flattering photo of me crushing a hard drive.
4
21
FCC taking a step into the cybersecurity world with Chair Rosenworcel asking colleagues to support an NPRM to invest in cybersecurity services for K-12 schools and libraries
1
8
18
4,517
Tech policy word of the week is #chips
4
18
The update comes just hours after a subset of the CVE Board said it plans to break off to maintain the CVE Program under a new body called the CVE Foundation. Unclear what happens next, but the new group could have a role in future contracting discussions: thecvefoundation.org/
5
18
2,018
Special thank you to @JGedeon1 for the shout-out in Politico’s Morning Cyber ❤️🙏
1
19
1,152
New w/ @timstarks: The Biden administration has a new cybersecurity strategy, now comes the hard part. Great contributing reporting to today’s lead story in the Cybersecurity 202: washingtonpost.com/politics/…
3
20
1,941
I made my first national TV appearance on @NewsNation Morning in America to discuss yesterday’s DHS bulletin warning of heightened cyber threats from Iran: piped.video/qlSNgp9PjGs
1
2
20
583
Scoop: House-led bill being introduced today that would prevent Transportation Department from procuring equipment that contains LiDAR technologies made by China, according to press release I obtained. The DOT would be barred from these acquisitions effective June 30, 2026.
1
3
17
2,107
New: Potential year-end cybersecurity EO may hinge on who wins the presidential election, people familiar say. One source described it as a "kitchen sink" that tackles unfinished U.S. cyber policy business. W/ @not_amazn_alexa + @AlmsNatalie --> nextgov.com/cybersecurity/20…
1
11
18
2,882
In a rare win for cyber reporters, the Salt Typhoon hacks have gotten so much attention that SNL had a joke about it on Weekend Update: piped.video/dyZxIUsnuJk?si=TIeM…
1
19
793
🇨🇳SharePoint vulnerability update: "We assess that at least one of the actors responsible for this early exploitation is a China-nexus threat actor," Mandiant/Google Cloud CTO Chalres Carmakal says in a statement sent to me just now. My earlier reporting: nextgov.com/cybersecurity/20…
14
18
3,334
Please hire my GovExec colleagues affected today. They are phenomenal, and I will miss them dearly.
Some news: Government Executive media group (GovEx), which includes industry publications like Route Fifty and The Atlas, laid off 16 staffers today, chief executive Tim Hartman announced in a memo. This comes, of course, six days before the election…
1
7
18
2,428
Glad we found a cyber angle for the Superbowl with that Crowdstrike ad
1
18
1,514
Holiday gifts for myself just came - two books from @meatspacepress I’ve been looking forward to reading for a while. And they threw in some stickers and postcards too!
1
2
14
FCC and NSF holding an AI workshop on July 13 to discuss "opportunities and challenges of artificial intelligence for communications networks and consumers"
1
7
17
3,476
New: The NSA is launching a podcast series in an effort to boost public awareness about the clandestine nature of its work. No Such Podcast is coming soon, according to a trailer made available today --> nextgov.com/digital-governme…
1
6
15
2,270
You ever just file a story and feel the need to take a nap after?
1
15
Been hyping myself up all day blasting Danger Zone and brushing my mustache
15