-
U.S., Russia disagree on cybersecurity
Washington does not believe an international treaty is necessary, but Moscow is seeking a treaty resembling those negotiated on chemical warfare to address the threat of Internet hacker attacks on computer systems
-
-
U.K. infrastructure vulnerable to terrorism, bad weather
A comprehensive new study of U.K. infrastructure says not enough was being done to ensure systems such as energy and transportation could keep going in adverse circumstances
-
-
Obama to seek sweeping changes for cybersecurity
High administration official says that the administration wants to create “far-reaching incentives” for prioritizing cybersecurity in the private sector, which controls much of the nation’s critical IT infrastructure
-
-
U.K. government: Best cyber defense is cyber offense
New National Security Strategy document includes, for the first time, a public cyber security strategy; unnamed high government source: “We don’t want to engage in cyber war but we can’t remain a target for criminals to take a pop at”
-
-
Licensing cybersecurity professionals, II
Even with all the unanswered questions, some cybersecurity experts are happy just to be having the conversation on the topic; they say that all the focus on cybersecurity will turn more attention on training and certification efforts
-
-
U.S. cybercommand will be subordinated to the NSA
Secretary of Defense Gates announces the creation of the U.S. cybercommand; the organization will be based at Fort Meade outside Washington, D.C. and subordinated to the head of the NSA
-
-
Corporate security chiefs say insiders are greatest threat to data
Survey finds that 80 percent of CSIO are more concerned about employees and contractors than they are about external hackers
-
-
Licensing cybersecurity professionals, I
There is a move in Congress to require the Commerce Department to develop or coordinate and integrate a national licensing, certification, and periodic recertification program for cybersecurity professionals
-
-
Effective cybersecurity requires common language
Experts say that the lack of a common way of defining and speaking about cybersecurity threats, risk, and incidents hampers security efforts
-
-
U.K. government to give up on massive Internet snoop scheme
The Home Office admits that its IMP (Interception Modernization Program) — the cost of which was to be £2 billion over ten years — cannot be realized because the technology does not yet exist
-
-
U.S. cybersecurity chief says there is a lucrative market in malware
Philip Reitinger: “There is an entire community of people who are involved, organized crime is involved” in cybercrime underground market economy
-
-
Cyber attackers strike Johns Hopkins University lab
The Johns Hopkins University Applied Physics Laboratory has been awarded $7.3 million to work on the initial phase of the Obama administration’s cyber security project; the lab has been forced to take down its computers after discovering that hackers broke into the lab’s network
-
-
Web-based news from Iran may contain malware
Many use Twitter to follow the fast-changing news from Iran; security experts warn that criminals may use Twitter to plant malware in your computer
-
-
DHS announces $1.8 billion in federal preparedness grants
Grants to states and localities aim to protect, prevent, respond, and recover from potential calamities this fiscal year
-
-
Hathaway describes administration's cybersecurity response plan
The U.S, infrastructure is being challenged and attacked not by amateurs, but by professional criminals and spies backed with substantial resources; yet, there are no coordinated plans for protecting the critical infrastructure or responding to incidents, either by government or the private sector; the Obama administration plans to change that
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
By Zachary Roth
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
By Dino Jahic
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
By Trina West
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.