-
New expert network to advice organizations on how to keep data safe
A new expert network which helps organizations safely manage and share sensitive data has been launched. The U.K. Anonymization Network (UKAN) will advise organizations and companies on how to minimize the risk that personal details of individual people are inadvertently revealed when data are used to create valuable services.
-
-
NSA revelations raise doubts about passage of cybersecurity legislation
U.S. officials say the revelations about the National Security Agency’s(NSA) domestic surveillance programs could make it harder for lawmakers to pass a cybersecurity bill. Critics of the House cybersecurity bill, known as the Cyber Intelligence Sharing and Protection Act (CISPA), which was passed earlier this year (it is still being debated in the Senate), argued the bill could lead to private information falling into the hands of the NSA.
-
-
FDA warns about vulnerability of medical devices to hacking
The Food and Drug Administration (FDA) has warned manufactures of medical devices implanted into the human body, such as pacemakers and insulin pumps, to step up their cybersecurity efforts. The agency said it has discovered “cybersecurity vulnerabilities and incidents that could directly impact medical devices or hospital network operations.”
-
-
New guide highlights three cyber security game changers
Cybercrime is on the rise, and it will grow even faster if organizations ignore an emerging group of cybersecurity game changers: always-on connectivity, an increasingly IT-centric society, and a new class system that separates people by technology skills.
-
-
Registration opens for NIST Cybersecurity Framework Workshop
Executive Order 13636, Improving Critical Infrastructure Cybersecurity, gave NIST the responsibility to work with industry to develop a voluntary “framework” — incorporating existing standards, guidelines, and best practices — that institutions could use to reduce the risk of cyber attacks. The National Institute of Standards and Technology (NIST) has opened registration for its Third Cybersecurity Framework Workshop, to be held 10-12 July 2013, in San Diego, California.
-
-
Israel taps 10th graders’ cybersecurity skills to expand cybersecuity recruitment pool
Israel has been subjected to a growing number of cyberattacks – and has itself used cyber-warfare against its adversaries. To make sure it stays ahead, Israel is accelerating its recruitment and development efforts in cybersecurity. Among other initiatives, the country is expanding the pool of potential cyberwarriors by going into high school classrooms to tap the cyber skills of tenth-graders.
-
-
NSA director: surveillance programs prevented “dozens” of terror attacks
Gen. Keith Alexander, the director of the National Security Agency (NSA) and commander of the U.S. Cyber Command, told lawmakers yesterday (Wednesday) that the NSA’s electronic surveillance programs have been indispensable in thwarting “dozens” of terrorist attacks on targets in the United States and abroad. He told the senators that securing a “cyber arena” could be done without infringing upon the privacy rights of Americans. “We do not see a tradeoff between security and liberty,” Alexander said, later adding, “We are trying to protect Americans.”
-
-
House panel to unveil cybersecurity bill
Republicans on the House Homeland Security Committee are close to finalizing a long-awaited cybersecurity bill, following extensive discussions with private companies.The bill formally establishes DHS’s already-operating National Cybersecurity and Communications Integration Center, to circulate cyberthreat and vulnerability data.
-
-
ACLU files lawsuit challenging NSA's phone surveillance
In the wake of the past week’s revelations about the NSA’s surveillance of phone calls, the yesterday American Civil Liberties Union (ACLU) filed a lawsuit charging that the program violates Americans’ constitutional rights of free speech, association, and privacy.
-
-
BugBuster automatically finds bugs in applications
To overcome problems associated with using Web sites, problems which range from the annoying to those which inflict severe financial pain on large companies, a Swiss start-up has developed the first intelligent tool which finds out on its own how to interact with an application whose code it tests according to various possible scenarios.
-
-
Government-developed standards not an effective cybersecurity approach: analyst
DHS said the department has “recently learned of a vulnerability that existed in the software used by a DHS vendor to process personnel security investigations.” analyst says that it is bad enough that hackers gained access to the personal information of thousands, but what is even more worrisome is the fact that DHS, with it spotty cyber security record, has been placed in charge of regulating the cybersecurity efforts of critical infrastructure industries.
-
-
Los Alamos director: cyber-securing U.S. electrical grid key to energy security
Los Alamos National Lab (LANL) director Charlie McMillan told a gathering of energy executives that securing the U.S. electrical grid is a major concern now, and it is only becoming more serious.
-
-
Hagel says Chinese cyberattacks a “growing threat”
Defense Secretary Chuck Hagel warned of a “growing threat” of cyberattacks against the United States, saying that America and its allies need to “establish international norms of responsible behavior in cyberspace.” Hagel spoke to an audience of defense analysts and defense ministers from Asia and Europe at the annual conference of the International Institute for Strategic Studies on Saturday.
-
-
Android anti-virus products easily evaded: study
Researchers tested ten of the most popular antiviral products for Android and found each could be easily circumnavigated by even the most simple obfuscation techniques. “Many of these products are blind to even trivial transformation attacks not involving code-level changes — operations a teenager could perform,” one of the researchers say.
-
-
Chinese government hackers steal designs of advanced U.S. weapons systems
The Chinese government has been conducting a broad, sustained, and disciplined campaign of cyberattacks against U.S. government agencies, critical infrastructure, private companies, and news organizations. The public version of a study prepared for the Pentagon by the Defense Science Board now says that Chinese government hackers have also been able to penetrate the computer networks of all the major U.S. defense contractors, stealing the designs and specifications of the most advanced weapon system in the U.S. arsenal, and gaining insights into broad technologies on which U.S. military advances are based.
-
More headlines
The long view
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.