-
RIM proposes industry encryption forum to demands for access to e-mail, messages
RIM has proposed that an industry forum be established to help governments manage lawful intercept, in the hope of forestalling India’s threatened ban, due this coming Wednesday; the proposed body would be led by RIM, but the company is hoping that others companies threatened by bans — Google, Skype, and others — will join in
-
-
Pentagon describes 2008 attack as a "network administrator's worst fear"
The Pentagon admits that a 2008 cyber attack on the Pentagon’s computers was a “network administrator’s worst fear”; a USB device was
plugged into a military laptop located on an undisclosed base in the Middle East, causing a malicious code to link highly sensitive machines to networks controlled by an unnamed foreign intelligence agency -
-
Intel wants security built directly into silicon
A consensus is emerging that the main reason for Intel’s acquisition of McAfee is that Intel wants to build directly into its hardware the kind of security features more traditionally provided by software like McAfee’s
-
-
Technological challenges to Intel's embedded security approach
Embedding security in silicon faces many challenges, among them: how much can be placed into a chip, and the fact that patching hardware or firmware is when a security vulnerability is discovered, is much harder than patching software
-
-
Powerful GPU processor puts password security system at risk
A readily available piece of hardware, a graphics processing unit (GPU) costing only a few hundred dollars, now brings supercomputer-level power to any desktop; this new capability puts power into many hands — and could also threaten the world’s ubiquitous password-protection model because it enables a low-cost password-breaking technique that engineers call “brute forcing”
-
-
The reason for Intel's acquisition of McAfee
The merger between the two companies takes place ahead of the release in 2011 of new — and as yet undisclosed — products developed by a joint venture the two companies have operated in the past eighteen months; those undisclosed products may be part of the reason why Intel decided to purchase McAfee instead of extending or expanding the two companies’ joint venture; says one analyst: “If what came out of that joint venture was revolutionary it could be that Intel wanted to lock that [intellectual property] down”
-
-
Sector Report for Thursday, 19 August 2010: Cybersecurity
This report contains the following stories.
Plus 2 additional stories
-
-
Intel acquires McAfee for $7.68 billion
Intel says security is now a fundamental component of online computing, but today’s approach to security is not adequate for the growing availability of Internet connections on mobile phones, medical devices, ATMs, automobiles, and elsewhere; the industry needs a new approach that combines software, hardware, and services to meet tomorrow’s needs
-
-
Shop Shield privacy protection expanded to IE browser
Experts say that the best way to assure the safety of financial and personal identifying information (PII) transmitted on the Internet, and prevent it from being lost, stolen, or misused, is to keep it private by not transmitting it to Web sites in the first place; Shop Shield allows consumers to engage in commercial transactions on the Web without giving these Web sites information such as e-mail addresses, passwords, usernames, phone numbers, billing addresses, credit card numbers, or other user payment information; Shop Shield even allows consumers to do business on the Web without giving out their names
-
-
House Cybersecurity Caucus launches new Web site
Billions of dollars are spent on cybersecurity; the House cybersecurity caucus has launched a new Web site, and observers say it could provide a valuable public service if it helps aggregate disparate activities and acts as a Federal cybersecurity information hub
-
-
Cyberthreat "deniers" say cybersecurity experts are crying wolf
There are those who argue that security experts warn about cyber threat are only scaring people in order to sell their security products and consulting services; one observer says: “To be sure, the financial interests of those warning about cybersecurity vulnerability should be disclosed, but their warnings shouldn’t be dismissed either— Just because you can still download movies from Netflix or update your Facebook status doesn’t mean everything’s fine”
-
-
Huntsville, Alabama, to become center for the war on cyber crimes
Mayor Tommy Battle unveiled plans to build the Cyber Center complex — a 52-building campus housing government agencies and academic teams dealing with cyber crimes
-
-
Indian government: Google, Skype will follow BlackBerry in being forced to open networks
The Indian government, in a meeting last month with representatives of network operators and Internet service providers, said that after RIM was forced to open BlackBerry-based communication to government eavesdropping, Google and Skype would be asked to do the same — or face bans on some of their services in India; It is unlikely that the Indian government is interested in Google’s search business, but about twenty million Indians are active on Google’s social networking service, Orkut, which encourages them to communicate with each other over Google Talk
-
-
U.S., too, uneasy with encrypted communication
The U.S. said it hoped RIM and foreign governments would find a compromise over BlackBerry encryption, but successive U.S. administrations tried to limit the export of encrypted technologies so U.S. spy agencies would have unfettered access to government and private communications abroad; until 1996 encryption at the level commonly in use today was classified by U.S. export regulations as “munitions”
-
-
Boston police using Twitter to nab bad guys
After a flasher on Boston T Red Line was caught thanks to a passenger’s tweet, the MBTA is showing a genuine commitment to using social media, creating an official Twitter home page to serve as a public tip line; the transit cops are also creating a system which will allow riders to send tips (and photos) via text messages directly to the authorities
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.