-
Israel taps 10th graders’ cybersecurity skills to expand cybersecuity recruitment pool
Israel has been subjected to a growing number of cyberattacks – and has itself used cyber-warfare against its adversaries. To make sure it stays ahead, Israel is accelerating its recruitment and development efforts in cybersecurity. Among other initiatives, the country is expanding the pool of potential cyberwarriors by going into high school classrooms to tap the cyber skills of tenth-graders.
-
-
FEMA issues annual National Preparedness Report
Presidential Policy Directive 8: National Preparedness requires an annual National Preparedness Report (NPR) that summarizes national progress in building, sustaining, and delivering the thirty-one core capabilities outlined in the National Preparedness Goal. The 2013 NPR presents an opportunity to reflect on the progress that that has been made in strengthening national preparedness and to identify where preparedness gaps remain.
-
-
NSA director: surveillance programs prevented “dozens” of terror attacks
Gen. Keith Alexander, the director of the National Security Agency (NSA) and commander of the U.S. Cyber Command, told lawmakers yesterday (Wednesday) that the NSA’s electronic surveillance programs have been indispensable in thwarting “dozens” of terrorist attacks on targets in the United States and abroad. He told the senators that securing a “cyber arena” could be done without infringing upon the privacy rights of Americans. “We do not see a tradeoff between security and liberty,” Alexander said, later adding, “We are trying to protect Americans.”
-
-
House panel to unveil cybersecurity bill
Republicans on the House Homeland Security Committee are close to finalizing a long-awaited cybersecurity bill, following extensive discussions with private companies.The bill formally establishes DHS’s already-operating National Cybersecurity and Communications Integration Center, to circulate cyberthreat and vulnerability data.
-
-
ACLU files lawsuit challenging NSA's phone surveillance
In the wake of the past week’s revelations about the NSA’s surveillance of phone calls, the yesterday American Civil Liberties Union (ACLU) filed a lawsuit charging that the program violates Americans’ constitutional rights of free speech, association, and privacy.
-
-
Cloud computing user privacy needs serious reform: scholars
When Web surfers sign up for a new online service or download a Web application for their smartphone or tablet, the service typically requires them to click a seemingly innocuous box and accept the company’s terms of service and privacy policy. Agreeing to terms without reading them beforehand, however, can adversely affect a user’s legal rights, says a new paper by an expert in technology and legal issues.
-
-
NIST publishes draft cloud computing security document for comment
The National Institute of Standards and Technology (NIST) has published a draft document on security for cloud computing as used in the federal government. The public comment period runs through 12 July 2013.
-
-
Obama orders U.S. intelligence to develop a list of targets for U.S. cyberattacks
President Barack Obama last October has ordered U.S. intelligence agencies to develop a list of overseas targets for possible offensive cyberattacks by the United States. The directive says that “The secretary of defense, the DNI [Director of National Intelligence], and the director of the CIA … shall prepare for approval by the president through the National Security Advisor a plan that identifies potential systems, processes and infrastructure against which the United States should establish and maintain Offensive Cyber Effects Operations (OCEO) capabilities….”
-
-
Social media analytics help emergency responders
If you think keeping up with what is happening via Twitter, Facebook, and other social media is like drinking from a fire hose, multiply that by seven billion — and you will have a sense of what researchers who are working on SALSA (SociAL Sensor Analytics) are facing. Efforts of emergency responders and public health advocates could be boosted by SALSA.
-
-
BugBuster automatically finds bugs in applications
To overcome problems associated with using Web sites, problems which range from the annoying to those which inflict severe financial pain on large companies, a Swiss start-up has developed the first intelligent tool which finds out on its own how to interact with an application whose code it tests according to various possible scenarios.
-
-
Government-developed standards not an effective cybersecurity approach: analyst
DHS said the department has “recently learned of a vulnerability that existed in the software used by a DHS vendor to process personnel security investigations.” analyst says that it is bad enough that hackers gained access to the personal information of thousands, but what is even more worrisome is the fact that DHS, with it spotty cyber security record, has been placed in charge of regulating the cybersecurity efforts of critical infrastructure industries.
-
-
Los Alamos director: cyber-securing U.S. electrical grid key to energy security
Los Alamos National Lab (LANL) director Charlie McMillan told a gathering of energy executives that securing the U.S. electrical grid is a major concern now, and it is only becoming more serious.
-
-
Hagel says Chinese cyberattacks a “growing threat”
Defense Secretary Chuck Hagel warned of a “growing threat” of cyberattacks against the United States, saying that America and its allies need to “establish international norms of responsible behavior in cyberspace.” Hagel spoke to an audience of defense analysts and defense ministers from Asia and Europe at the annual conference of the International Institute for Strategic Studies on Saturday.
-
-
Android anti-virus products easily evaded: study
Researchers tested ten of the most popular antiviral products for Android and found each could be easily circumnavigated by even the most simple obfuscation techniques. “Many of these products are blind to even trivial transformation attacks not involving code-level changes — operations a teenager could perform,” one of the researchers say.
-
-
Chinese government hackers steal designs of advanced U.S. weapons systems
The Chinese government has been conducting a broad, sustained, and disciplined campaign of cyberattacks against U.S. government agencies, critical infrastructure, private companies, and news organizations. The public version of a study prepared for the Pentagon by the Defense Science Board now says that Chinese government hackers have also been able to penetrate the computer networks of all the major U.S. defense contractors, stealing the designs and specifications of the most advanced weapon system in the U.S. arsenal, and gaining insights into broad technologies on which U.S. military advances are based.
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.