-
Certification program for converged security
Institute launches certification program, and offers some unsettling numbers of threat prevalance in the U.S.
-
-
U.K. data decryption law takes effect
As of Monday, a controversial new British law allows authorities to demand that individuals and businesses to decrypt data sought in police investigations
-
-
Kerberos Consortium launched
MIT launches consortium to promote a universal authentication platform to protect the world’s computer networks
-
-
October is national cybersecurity month
A consortium of government agencies and private industry sponsors have designated October 2007 as National Cyber Security Awareness Month
-
-
PDF files put Windows XP at risk
Cybersecurity researcher says vulnerabilities in popular Adobe file format allows hackers to seize control of computers; Adobe, Symantec work on solution
-
-
FBI investigates Unisys's responsibility for DHS security breaches
Chinese cyber-attackers compromised DHS computers during the summer and fall of 2006; these computers were supposed to be secured by Unisys in 2002 $1 billion contract; FBI investigates breaches and alleged cover-up
-
-
EU plan to block access to bomb-making Web sites faces technical hurdles
The EU wants to make it more difficult for would-be terrorists to gain knowledge on bomb-making, but blocking access to Web sites where such knowledge is offered is not easy
-
-
Network security to move toward "complete packet inspection"
The new approach will embed security in a pervasive manner throughout the entire network to provide the situational awareness necessary to respond instantly to threats or problems and contain the damage before it spreads into the entire network
-
-
Verizon extends DOS service to Asia
Denial of Serivce (DOS) is a popular form of cyberattacks directed at companies; Ceirzon already offered U.S. and European companies an enhanced DoS protection service, and it now extends the service to Asia
-
-
Massive IT security breach in Connecticut
Accenture operates CORE-CT, which performs all of Connecticut’s payroll, personnel, purchasing, accounting, inventory, and other functions; it took a copy of the program to demo in Ohio — and the copy was stolen
-
-
PC users face increasingly complex and dangerous cyber threats
Authrotative cyber threat report says that targeted identity theft, emerging risks associated with online gaming, a doubling of malware exploits, and new software vulnerabilities are but some of the many problems PC users will face in the coming months
-
-
Mumbai police install tracking software in city's cyber cafes
Mumbai is India’s hi-tech hub, and the city police will now have access to new software monitoring activity in the more than 500 cyber cafes in the city
-
-
Growing worries, debates about likelihhod, effects of strategic cyber attack
The spring cyber attacks on Estonia offer an illustration of what strategic cyber warfare may look like; experts debate capabilities, motives for such an attack
-
-
First case of P2P-based identity theft unfolds in Seattle
People have been prosecuted for using peer-to-peer networks illegally to share or obtain copyrighted music, movies, and software, but this is the first prosecution of a P2P-based identity theft
-
-
Chinese military hacked into Pentagon
China improves its cyber warfare capabilities; massive penetration of Pentagon computers in June — and Chinese easy penetration of the networks of defense contactors and think-tanks would allow China not only to gather information, but also disrupt operations
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.