-
Immunity offers a portable hacking device for penetration testing
Nokia 770 tablet device is intended for companies to conduct their own white hat operations; tester turns on the $3,600 device, sticks it in his pocket, and waits to see whether his local wireless network is exploitable
-
-
Defense Information Systems Agency budgets $959 million for IT security
As DoD prepares to sign a cybersecurity pact with NATO, DISA tries to get its own house in order; $819 million for operations and maintenance and $140 million for procurements; plans to improve defense of SIPRNET, develop a risk management system
-
-
DoD and NATA to sign cybersecurity pact
National Cyber Response Coordination Group sees a great benefit to dealing with a single NATO cybersecurity agency, rather than working bilateralluy with twenty-six nations; Eastern European hackers a major concern
-
-
Hawaii a case study in cross-juristictional emergency cooperation
Earthquake last year offers a model of Hawaii’s can-do attitude; emergency response personell trained to respond to leadership, not rank; power failures doomed radio communications, so planners consider buying backup generators for the island’s radio stations
-
-
Galileo Avionica offers electrical UAV for urban missions
UAVs are growing in popularity, and an Italian company offers a vehicle which is especially designed for urban warfare and special operations: It is an electrically powered UAV which is so small it can be carried in a backpakck
-
-
Javelin finds ID theft on the decline
Survey finds a 12 percent drop in the overall cost of ID theft nationwide; 500,000 fewer victims; teenagers a growing target due to social networking and music sites
-
-
Private sector responsible for infrastructure protection planning
The U.S. government has a role to play in contingency planning for protecting critical infrastructure; security experts and government officials agree, though, that businesses should be self-sufficient when it comes to coping with emergencies; “The government is not going to save you,” said a former DHS official
-
-
Network security: A practical approach by Ilan Meller
Location-based and time-based measures breach physical and logical security of organizational networks
-
-
Procera new data intrcepting solution meets CALEA new requirement
What with the firestorm over the NSA domestic eavesdroping campaign, broadband providers have a 14 May deadline to allow law enforcement agencies to intercept and capture suspicious data transmission without compromising the privacy of innocent cstomers; a California company comes up with a solution
-
-
Hackers use brokers to sell software vulnerabilities
Although programs such as ZDI and VCP are popular, hackers can earn ten times the bounty by going through SNOSoft; significant flaw research can earn as much as $120,000; smart disclosure falls by the wayside
-
-
-
Nuance and Appligent team up to secure PDFs
Converting text documents into PDF can open the door to determined thieves; safely redacting information at issue; new add-on software securely scrubs files for lists of redacted words and phrases
-
-
IBM predicts rise in security threats in 2007
Newly released Vista operating system a ripe target for malicious hackers; fuzzer attacks demonstrate a growing sophistication among the black hat set; IBM’s Internet Security System’s X Force Team pessimistic about the future
-
-
Leading data security companies form payment card securty alliance
Despite all the press on data security breaches and the corporate and personal costs which these breaches entail, there is still only limited awareness of the PCI data security standards; eight leading data security companies form an alliance to change that
-
-
NIST opens competition to improve SHA-1 encryption standard
Recent efforts by Chinese researchers show that decades-old encryption system is increasingly vulnerable; competition is open to all, and winning bid will support 224-, 256-, 384- and 512-bit key encryption, with a maximum message length of at least 264 bits
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
By Zachary Roth
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
By Dino Jahic
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
By Trina West
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.