• House panel to unveil cybersecurity bill

    Republicans on the House Homeland Security Committee are close to finalizing a long-awaited cybersecurity bill, following extensive discussions with private companies.The bill formally establishes DHS’s already-operating National Cybersecurity and Communications Integration Center, to circulate cyberthreat and vulnerability data.

  • ACLU files lawsuit challenging NSA's phone surveillance

    In the wake of the past week’s revelations about the NSA’s surveillance of phone calls, the yesterday American Civil Liberties Union (ACLU) filed a lawsuit charging that the program violates Americans’ constitutional rights of free speech, association, and privacy.

  • Cloud computing user privacy needs serious reform: scholars

    When Web surfers sign up for a new online service or download a Web application for their smartphone or tablet, the service typically requires them to click a seemingly innocuous box and accept the company’s terms of service and privacy policy. Agreeing to terms without reading them beforehand, however, can adversely affect a user’s legal rights, says a new paper by an expert in technology and legal issues.

  • NIST publishes draft cloud computing security document for comment

    The National Institute of Standards and Technology (NIST) has published a draft document on security for cloud computing as used in the federal government. The public comment period runs through 12 July 2013.

  • Obama orders U.S. intelligence to develop a list of targets for U.S. cyberattacks

    President Barack Obama last October has ordered U.S. intelligence agencies to develop a list of overseas targets for possible offensive cyberattacks by the United States. The directive says that “The secretary of defense, the DNI [Director of National Intelligence], and the director of the CIA … shall prepare for approval by the president through the National Security Advisor a plan that identifies potential systems, processes and infrastructure against which the United States should establish and maintain Offensive Cyber Effects Operations (OCEO) capabilities….”

  • Social media analytics help emergency responders

    If you think keeping up with what is happening via Twitter, Facebook, and other social media is like drinking from a fire hose, multiply that by seven billion — and you will have a sense of what researchers who are working on SALSA (SociAL Sensor Analytics) are facing. Efforts of emergency responders and public health advocates could be boosted by SALSA.

  • BugBuster automatically finds bugs in applications

    To overcome problems associated with using Web sites, problems which range from the annoying to those which inflict severe financial pain on large companies, a Swiss start-up has developed the first intelligent tool which finds out on its own how to interact with an application whose code it tests according to various possible scenarios.

  • Government-developed standards not an effective cybersecurity approach: analyst

    DHS said the department has “recently learned of a vulnerability that existed in the software used by a DHS vendor to process personnel security investigations.” analyst says that it is bad enough that hackers gained access to the personal information of thousands, but what is even more worrisome is the fact that DHS, with it spotty cyber security record, has been placed in charge of regulating the cybersecurity efforts of critical infrastructure industries.

  • Los Alamos director: cyber-securing U.S. electrical grid key to energy security

    Los Alamos National Lab (LANL) director Charlie McMillan told a gathering of energy executives that securing the U.S. electrical grid is a major concern now, and it is only becoming more serious.

  • Hagel says Chinese cyberattacks a “growing threat”

    Defense Secretary Chuck Hagel warned of a “growing threat” of cyberattacks against the United States, saying that America and its allies need to “establish international norms of responsible behavior in cyberspace.” Hagel spoke to an audience of defense analysts and defense ministers from Asia and Europe at the annual conference of the International Institute for Strategic Studies on Saturday.

  • Android anti-virus products easily evaded: study

    Researchers tested ten of the most popular antiviral products for Android and found each could be easily circumnavigated by even the most simple obfuscation techniques. “Many of these products are blind to even trivial transformation attacks not involving code-level changes — operations a teenager could perform,” one of the researchers say.

  • Chinese government hackers steal designs of advanced U.S. weapons systems

    The Chinese government has been conducting a broad, sustained, and disciplined campaign of cyberattacks against U.S. government agencies, critical infrastructure, private companies, and news organizations. The public version of a study prepared for the Pentagon by the Defense Science Board now says that Chinese government hackers have also been able to penetrate the computer networks of all the major U.S. defense contractors, stealing the designs and specifications of the most advanced weapon system in the U.S. arsenal, and gaining insights into broad technologies on which U.S. military advances are based.

  • Quantum cryptography’s security may not be air-tight

    See video

    Quantum communication systems offer the promise of virtually unbreakable encryption. Unlike classical encryption, which is used to send secure data over networks today and the security of which depends on the difficulty of solving mathematical problems like the factoring of large numbers, most quantum encryption schemes keep the encryption key separate from the data. This approach ensures that an eavesdropper with access only to the data could not decipher the key. Researchers, however, have recently demonstrated that even quantum encryption may be susceptible to hacking.

  • Report: U.S. companies should consider counter-hacking Chinese hackers

    A group studying how the United States should respond to the sustained campaign of cyberattacks conducted by Chinese government hackers against U.S. companies, said the United States should seriously consider a campaign of retaliatory cyberattacks against the hackers.

  • Cyber risks for users of cloud computing

    Home computer users and businesses are being warned to consider more closely the risks associated with cloud computing, as well as its many advantages.