-
U.S. investigates Illinois pump failure as cyber attack on infrastructure
The U.S. government is looking into the possibility that a cyber attack may have been responsible for the failure of a water pump at a public water district in Illinois last week; such an attack would be worrisome because cyber attacks on businesses are commonplace, but attacks that invade industrial control systems and intentionally destroy equipment are unknown in the United States.
-
-
Duqu mystery deepens as Iran admits infection
Iran recently revealed that the Duqu virus, a possible pre-cursor to a Stuxnet-like attack, has been discovered in its computer network; “We are in the initial phase of fighting the Duqu virus,” said Gholamreza Jalali, the head of Iran’s civil defense program
-
-
Nations could cripple U.S. with retaliatory cyberattack
Last week Richard Clarke, a top adviser to three presidents, sounded a dire warning that the United States should avoid going to war with other nations because its computer networks systems are so vulnerable to attack
-
-
Detecting insider threat from massive data sets
Researchers in a 2-year, $9 million project will create a suite of algorithms that can detect multiple types of insider threats by analyzing massive amounts of data — including email, text messages and file transfers — for unusual activity
-
-
DHS warns of GPS disruptions, recommending spoof-proof receivers
More and more military missions and economic activities are dependent on GPS technology. This fact has not been lost on criminals, hackers, and adversaries. One result: GPS jamming and spoofing are getting worse, and a forthcoming DHS report highlights the risks posed by GPS disruptions. The report is yet to be released, but its the analysis has inspired a proposal to create receivers capable of self-diagnosing spoofing attempts.
-
-
Fewer but costlier cases of identity theft in U.S.
Identity fraud in the United States fell 28 percent in 2010 to 8.1 million from an estimated 11 million in 2009, according to Javelin Strategy &Research. The problem: thieves are becoming more creative in their methods of obtaining personal information, and those who suffer from identity theft are facing higher consequences, with the average out-of-pocket costs nearly doubling in the same time period to $631from $387 per incident.
-
-
FTC forces Facbook to change privacy policies
It appears that it will not be too long before Facebook could be forced to get users’ consent every time it wants to make private data available to other members. This will be the result of an agreement Facebook has reached with the U.S. Federal Trade Commission (FTC) over criticism of the social network’s questionable private data policies.
-
-
Chemical industry hit by “Nitro” cyberattacks
In a string of cyberattacks, hackers have stolen critical formulas and plans from major chemical companies; the latest attacks, dubbed “Nitro,” were uncovered by Symanetec, which reported the hackers aims were corporate espionage rather than a terrorist attempt to procure chemicals
-
-
Americans anxious about identity theft
Americans will go to great lengths to avoid identity theft, and many say they would take legal action against government or private organizations that compromise their personal data; more than half of surveyed Americans are willing to provide biometric data to secure their identities
-
-
CSAW winners to be announced Friday
Cyber security is capturing the attention of a growing number of high school students, judging by the record participation in Polytechnic Institute of New York University’s annual Cyber Security Awareness Week (CSAW) challenges; the competition will culminate this Friday, 11 November, with thirteen finalists vying for scholarships and cash prizes for their schools’ science programs
-
-
Making counter-hacking cool
NYU-Poly will, for the first time, open cyber security awareness week events on 11-12 November to student guests interested in digital privacy and security — not just the so-called “cyber ninjas” who qualified as national finalists in feats of digital forensics, ethical hacking, and research; the event is expected to attract up to 400 student finalists, professionals, academics, and guests
-
-
China and Russia using cyberspies to steal U.S. secrets
A new Congressional report concludes that Chinese and Russian hackers backed by their respective states are stealing U.S. trade and technology secrets to boost their economic development; the report, titled “Foreign Spies Stealing U.S. Economic Secrets in Cyberspace” and written by the Office of the National Counterintelligence Executive, found that foreign hackers can easily gather large quantities of sensitive data without being detected because so much of it is stored on computers
-
-
DHS warns Anonymous may target critical infrastructure
DHS is warning critical infrastructure operators that the international hacking group known as Anonymous has threatened to attack industrial control systems, the software that governs automated processes for nearly every major utility or production facility including factories, power stations, chemical plants, and pharmacies
-
-
EU and U.S. hold joint cybersecurity drill
On Thursday, the United States and the European Union held their first joint cybersecurity exercise in Brussels, Belgium; the exercise, dubbed “Cyber Atlantic 2011,” was aimed at strengthening efforts to protect international critical infrastructures
-
-
Social media, a double-edged sword in epidemics
Social media sites like Facebook and Twitter have proven useful in quickly disseminating information, and raising awareness during disasters or disease outbreaks, but these tools can also be a double-edged sword
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.