• NIST’s regional approach to addressing U.S. cybersecurity challenge

    NIST has awarded grants totaling nearly $1 million for five projects that are taking a community approach to addressing the U.S. shortage of skilled cybersecurity employees. The NIST-led National Initiative for Cybersecurity Education (NICE), a partnership among government, academia, and the private sector, will oversee the grants as part of its mission to support cybersecurity education, training, and workforce development.

  • Space: Cybersecurity’s final frontier

    The world is dangerously unprepared for a global disaster sparked by cyberattacks on space infrastructure. Much of the world’s infrastructure – including the economies and militaries of the world’s developed countries – is dependent on space machinery, and any disruption of that machinery would have a cascading consequences – some merely debilitating, other catastrophic. Governments around the world have invested heavily in protecting infrastructure on Earth – yet not nearly enough has been done to thwart threats from space to that infrastructure.

  • North Korea has only has 28 Web sites, mistakenly leaked official data reveals

    Launching an effective cyberwar against North Korea would be difficult because the secretive country has only twenty-eight registered domains. The information about the surprisingly small number of North Korean registered domains was the result of incorrect configuration of one of North Korea’s top-level name servers. The incorrect configuration made the server reveal a list of all the domain names under the domain .kp.

  • MI6 to recruit hundreds more staff in response to advances in digital technology,

    MI6, the U.K.’s overseas intelligence service, is set to recruit hundreds more digital specialists over the next four years in response to the ever-growing digital threats and challenges posed by advancing digital technology. MI6 employs 2,500 people, and the agency focuses on intelligence-gathering and operations outside the United Kingdom. MI5 is in charge of security within the United Kingdom (James Bond worked for MI6). In a rare public appearance, Alex Younger, the head of MI6, said of terrorism: “regrettably, this is an enduring issue which will certainly be with us, I believe, for our professional lifetime.”

  • The smart grid makes it easier for hackers to turn out the lights

    The development of the smart power grid and the smart meter in our homes to accompany it brings several benefits, such as improved delivery and more efficient billing. Conversely, any digital, connected technology also represents a security risk. The smart electricity grid is more vulnerable to accidental and incidental problems with the flow of data, and to malicious manipulation for the sake of sabotage, criminal, or online military or terrorist action.

  • “Great British Firewall”: U.K. plans firewall to protect industries, consumers

    The GCHQ, U.K.’s surveillance agency, said it was planning to build a British firewall to offer protection against malicious hackers. GCHQ has developed cybersecurity systems the aim of which is to protect government sites and critical infrastructure, but the agency is now ready to offer its expertise to major private companies. “It’s possible to filter unwanted content or spam. It’s possible to filter offensive content. It’s technically possible to block malicious content,” GCHQ director said. “So, the question is: why aren’t we, the cybersecurity community, using this more widely? Well, we — in the U.K.— now are.”

  • Setting up a decoy network to help deflect a hacker's hits

    Computer networks may never float like a butterfly, but information scientists suggest that creating nimble networks that can sense jabs from hackers could help deflect the stinging blows of those attacks. The researchers created a computer defense system that senses possible malicious probes of the network and then redirects that attack to a virtual network that offers little information about the real network.

  • Fitness trackers found to have serious security flaws

    They may look like a normal watch but are capable to do much more than just showing the time: So-called fitness trackers are collecting data on their users’ lifestyle and health status on a large scale helping them with training or losing weight. Researchers have investigated fraud opportunities with fitness trackers and detected serious security flaws.

  • World’s largest regional security group turns to Israel in fight against cyber terror

    The Organization for Security and Cooperation in Europe (OSCE), an umbrella body for fifty-seven European, North American, and Central Asian nations in the security field, has chosen an Israeli professor to plan and establish a new teaching and research framework concerning online terror. “Online incitement, radicalization, and recruitment have had a significant impact on the recent waves of terror around the world,” Prof. Gabi Weimann, the author of Terrorism in Cyberspace, said. “This has raised awareness of the importance of research and academic knowledge in this field.”

  • Vulnerabilities found in cars connected to smartphones

    Many of today’s automobiles leave the factory with secret passengers: prototype software features that are disabled but that can be unlocked by clever drivers. In what is believed to be the first comprehensive security analysis of its kind, a team of researchers has found vulnerabilities in MirrorLink, a system of rules that allow vehicles to communicate with smartphones.

  • Researchers demonstrate how data can be stolen from isolated “air-gapped” computers

    Air-gapped computers are isolated — separated both logically and physically from public networks — ostensibly to prevent their being hacked over the Internet or within company networks. Researchers at the Ben-Gurion University of the Negev (BGU) have demonstrated that an unmodified USB connected to a computer with malicious code can be used to steal data from infected and even “air-gapped” computers.

  • A chip that checks for sabotage, flags defects

    With the outsourcing of microchip design and fabrication a worldwide, $350 billion business, bad actors along the supply chain have many opportunities to install malicious circuitry in chips. These Trojan horses look harmless but can allow attackers to sabotage healthcare devices; public infrastructure; and financial, military, or government electronics. Researchers are developing a unique solution: a chip with both an embedded module that proves that its calculations are correct and an external module that validates the first module’s proofs.

  • Israeli tech company’s spyware turns UAE activist’s iPhone into a self-tracking device

    Two University of Toronto researchers have uncovered an iPhone-based attack on Ahmed Mansoor, a prominent United Arab Emirates human rights defender. The attack employed spyware produced by NSO Group — an Israeli technology company founded by former members of Unit 8200, the Israeli military’s electronic surveillance branch – which is sold to government for the purpose of spying on their citizens.

  • Vulnerabilities found in iPhone, iPad operating system

    An international team of computer science researchers has identified serious security vulnerabilities in the iOS — the operating system used in Apple’s iPhone and iPad devices. The vulnerabilities make a variety of attacks possible. The researchers focused on the iOS’s “sandbox,” which serves as the interface between applications and the iOS. The iOS sandbox uses a set “profile” for every third-party app. This profile controls the information that the app has access to and governs which actions the app can execute.

  • Researchers look for ways to keep cars safe from hacking

    In 2015, two researchers remotely hacked a Jeep Cherokee being driven by a reporter who documented how the researchers controlled everything from the car’s radio and media console to its brakes and steering. For computer scientists at the University of Arkansas at Little Rock, the exercise demonstrated how vulnerable smart cars with GPS, Bluetooth, and Internet connections are to cyberattacks – and they decided to do something about it.