-
Personal information of 80,000 NYPD officers stolen
A NYPD pension telecommunications director swiped backup tapes that contained addresses, Social Security numbers, medical records, and direct-deposit information on nearly 80,000 current and retired police officers
-
-
New cybersecurity guidelines simplify, prioritize protections
NIST issues guidelines which aim to simplify the thousands of pages of cybersecurity guidance from the National Institute of Standards and Technology; managers say the NIST guidance is hard to implement and harder to audit
-
-
Debunking IT myths
As IT spreads, so do IT myths and legends; two experts debunk some of the more popular myths
-
-
The 25 most dangerous places for offshore outsourcing
Are you thinking about outsourcing your company’s back-room work to companies in Bogota, Bangkok, or Johannesburg? Think again; here is a list of the 25 worst outsourcing cities
-
-
U.K. pushes data infrastructure protection
U.K. government announces £6 million of research funding in the field of data infrastructure protection; application deadline is 23 April
-
-
President's proposed 2010 budget shows DHS priorities
Proposed budget increase DHS budget by 6 percent; priorities include cyber security, helping TSA screen travelers, increase bomb disposal and counter-IED capabilities, border security, emergency response
-
-
New software allows laptops to talk back boldly to laptop thieves
Your laptop has been stolen? New software allows you to tell those thieves exactly — and when we say exactly, we mean exactly — what you think of them; software also helps police locate the stolen computer
-
-
Intelligence, law enforcement face another hurdle: encrypted VoIP
The intelligence community and law enforcement already are concerned about the difficult they have eavesdropping in Skype communications; a U.K. start-up is going to make life more difficult for them by encryption VoIP communications and concealing more conversations
-
-
EU may investigate VoIP eavesdropping
Italian anti-crime authorities have asked the EU to look into regulating VoIP communication encryption; the Italian authorities presented evidence that crime rings and prostitution networks use Skype for the specific purpose of frustrating police investigators
-
-
Guidelines for government, private IT security issued
A coalition of government and private organizations releases a preliminary set of guidelines for IT security controls; guidelines will become a foundation for a standardized approach to securing the nation’s critical information infrastructure
-
-
Institute: Better coordination needed for cybersecurity R&D
I3P calls for improved coordination for cybersecurity research and development efforts
-
-
New study emphasizes the risk posed by insider threats
Many information security programs focus on preventing unauthorized outsiders from accessing an information system; insiders, however, often are in a better position to cause just as much damage because they are trusted by their organization
-
-
U.S. under growing cyber attacks
The number of cyber attacks on U.S. government computers and networks grow; there were 5,488 tracked incidents of unauthorized access to U.S. government computers and installations of hostile programs in 2008, compared to 3,928 such incidents in 2007, and 2,172 in 2006
-
-
DHS receives IT money in stimulus package
DHS receives a $2.8 billion boost from the new stimulus package; largest single item is for TSA’s installation of checked baggage explosive detection systems
-
-
Unisys: Technology "consumerization," mobility risks key drivers of security investments
A Unisys briefing says that the growing pervasiveness of technology consumerization and mobility opens businesses to new risks across a broader spectrum; economy compels greater need for collaboration, more intelligent systems, and better fraud prevention; biometric use and acceptance also to increase
-
The long view
The Urgent Search for a Cyber Silver Bullet Against Iran
After spending billions of dollars to assemble the world’s most potent arsenal of cyberweapons and plant them in networks around the world, United States Cyber Command — and the new era of warfighting it has come to represent — may face a critical test in the coming weeks. To punish Iran for its last month’s attack on Saudi oil facilities, a second U.S. cyberstrike — after one launched against Iran just three months ago — has emerged as the most appealing course of action for President Donald Trump. “The question circulating now through the White House, the Pentagon and Cyber Command’s operations room is whether it is possible to send a strong message of deterrence with a cyberattack without doing so much damage that it would prompt an even larger Iranian counterstrike,” David Sanger and Julian Barnes write, noting that in the past decade, the United States has launched at least three major cyberattacks against Iran. “In each case, the damage to Iranian systems could be repaired over time. And in each case, the effort to deter Iran was at best only partly successful,” they write.
White Supremacy Has Triggered a Terrorism Panic
Our collective response to terrorism seems to swing on a pendulum between rank complacency and terrified myth-making. In January 2014, U.S. President Barack Obama dismissed the Islamic State as al Qaeda’s “JV team.” But by September of that year, after the group had captured Mosul in Iraq and launched a genocidal campaign of slaughter against the Yazidis, he started bombing it. A similar dynamic can be observed in the case of white supremacy today. This is not “to suggest that the threat of white supremacy is not real or that we should be complacent about it,” Simon Cottee writes. “Of course it is real, and of course we need to indict and seriously punish those who have committed or are plotting to commit terrorist atrocities in the name of white supremacy.” But we should resist the urge to treat white supremacy as “a mythical monster against which to signal our moral virtue”: “White supremacy is not a monolith endangering our children and societies, but we might just make it into one by overinflating it into precisely this.”
A New National Security Framework for Foreign Interference
A series of recent signals from Trump administration officials, including the President, are normalizing an idea that is detrimental to our national security – that soliciting foreign interference in a U.S. election won’t be prosecuted. Jessica Brandt and Joshua Rudolph write in Just Security that with foreign rivals from Beijing to Moscow and elsewhere watching closely, it will become open season on our democracy unless we quickly shift our legal framework for such behavior from a campaign-finance perspective to a national security approach. It is now stunningly evident that when it comes to protecting our democracy from foreign interference, our current legal framework is not up to the task,” Brandt and Rudolph write. “That is in part because what we are dealing with are national security threats, not a technical campaign finance violations.”
Trump Told Russian Officials in 2017 He Wasn’t Concerned About Moscow’s Interference in U.S. Election
President Trump told two senior Russian officials in a 10 May 2017 Oval Office meeting that he was unconcerned about Moscow’s interference in the 2016 U.S. presidential election because the United States did the same in other countries, an assertion that prompted alarmed White House officials to limit access to the remarks to an unusually small number of people, according to three former officials with knowledge of the matter. “White House officials were particularly distressed by Trump’s election remarks because it appeared the president was forgiving Russia for an attack that had been designed to help elect him, the three former officials said. Trump also seemed to invite Russia to interfere in other countries’ elections, they said,” the Washington Post reports, quoting a former Trump administration official to say: “’What was difficult to understand was how they got a free pass on a lot of things — election security and so forth,’ this former official said. ‘He was just very accommodating to them.’”
Disinformation for Hire: How Russian PR Firms Plant Stories for Companies in U.K. News Outlets, Social Media
The staples of Russian misinformation campaigns—fake news and social media propaganda—are turning up in a new place: the private sector. Jeff John Roberts writes in Fortune that for a small fee, companies can pay Russian operatives to boost their image or smear their competitors, employing some of the same tactics used by the Kremlin to disrupt the 2016 U.S. presidential election. “The range of services offered by the Russian PR firms is startling,” “Not only do the firms deploy fake accounts on social networks like Facebook and LinkedIn, but they offer a service to plant news articles in English-language media outlets.”
Britain Is “At War Every Day” Due to Constant Cyberattacks, Chief of the Defense Staff says
The Chief of the U.K. Defense Staff has said that Britain is “at war every day” due to constant cyberattacks from Russia and elsewhere. Russia and China’s “interpretation” of the rules governing international engagement threatened “the ethical and legal basis on which we apply the rule of armed conflict,” General Carter said. “Russia is much more of a threat today than it was five years ago.” He added: “There is still clearly going to be human interaction – warfare is essentially a political function - but it will be a much more sophisticated and will include the new domains [alongside land, sea and air] of space and cyber.”