• Cyber criminals target small businesses

    A recent study conducted by the National Cyber Security Alliance and Symantec found that 77 percent of small business owners in the United States think their company is safe from cyber criminals; trouble is, 83 percent of them do not have a cyber security plan

  • Sen. Rockefeller asks Fortune 500 CEOs for cybersecurity best practices

    Last month, Senator Jay Rockefeller (D-West Virginia) sent a letter to the CEOs of fortune 500 companies asking them what cybersecurity practices they have adopted, how these practices were adopted, who developed them, and when they were developed; many saw Rockefeller’s letter as an admission that the Obama administration does not have a basis for trying to impose cybersecurity practices on the private sector through the Cybersecurity Act of 2012, now stalled in Congress

  • More companies adopt cloud disaster recovery solutions

    More and more companies adopt a cloud disaster recovery solution; in a recent 2012 TechTarget Cloud Pulse survey, a majority of the 926 companies that responded have said they are now using a cloud disaster recovery system or plan to in the next six months

  • States may join feds in regulating infrastructure cybersecurity

    Dealing with cybersecurity issues relating to U.S. inmfrastructure has largely been a federal responsibility, carried out through the North American Electric Reliability Corporation Critical Infrastructure Requirements (NERC-CIP)’ the limitations of these requirements have led state regulators to consider increasing state role in infrastructure protection

  • NIST awards $9 million to promote online security and privacy

    The National Institute of Standards and Technology (NIST) last month announced more than $9 million in grant awards to support the National Strategy for Trusted Identities in Cyberspace (NSTIC); five U.S. organizations will pilot identity solutions which increase confidence in online transactions, prevent identity theft, and provide individuals with more control over how they share their personal information

  • New solution helps thwart “smash-and-grab” credential theft

    Of the data breaches investigated in 2011, servers were among the primary target assets in 64 percent of investigations and those accounted for 94 percent of compromised records; a new solution from RSA scrambles, randomizes, and splits authentication credentials across multiple servers, data centers, and the cloud

  • Washington National Guard keeps an eye on cyberattacks

    The Washington National Guard is working on a project that will protect state and local governments as well as utilities and businesses in the state from cyberattacks

  • Congressional panel says two Chinese telecom companies pose “national security threat” to U.S.

    A report by the House Intelligence Committee recommended that the U.S. government be barred from doing business with two Chinese telecommunications firms – Huawei and ZTE – and that American companies should avoid buying their equipment; a committee report said the two companies pose a threat to U.S. national security; installing these companies’ technology in U.S. communication network will not only allow these companies, acting on behalf of the Chinese military and intelligence, to steal sensitive national security information and trade secrets of private U.S. companies – it will also allow China to attack and paralyze large portions of U.S. critical infrastructure

  • The administration set to issue a cybersecurity executive order

    President Obama issued a proclamation the other day making October National Cyber Security Awareness month. The administration’s efforts to push a cybersecurity bill through Congress, however, have so far failed, so the administration is opting for a solution other administrations have adopted in the face of a recalcitrant Congress: executive order

  • Self-contained, Android-based network to study cyber disruptions, help secure hand-held devices

    Researchers linked together 300,000 virtual hand-held computing devices running the Android operating system so they can study large networks of smartphones and find ways to make them more reliable and secure; the work is expected to result in a software tool that will allow others in the cyber research community to model similar environments and study the behaviors of smartphone networks

  • Former DHS official says U.S. should go on cybersecurity offensive

    Stewart Baker, the first assistant secretary for policy at DHS under President George W. Bush, has a straightforward theory when it comes to cyber security in the United States: “To prevail in the cybersecurity war, defense is not enough”; not all cuber experts agree with him

  • Experts warn of growing cyber security risks to U.S., criticize Congress’s inaction

    U.S.and Russian cyber experts are trying to scare officials into improving cybersecurity protection in the United Statesand around the world; cyber attacks against critical infrastructure escalate in scope and severity; soon, Kaspersky Lab’s Eugene Kaspersky said: “If previous viruses were like bicycles,then the Stuxnet worm that damaged uranium enrichment centrifuges at the Natanz plant in Iran two years ago would be a plane and the latest programs, dubbed Flame and Gauss,would be space shuttles”

  • Pentagon says privately owned computer networks vulnerable to attack

    Deputy U.S. Defense Secretary Ashton Carter told hundreds of industry executives and military officials at a conference that he  is concerned with the potential of a cyber attack on privately owned U.S. computer networks; “I hope this isn’t one of those situations where we won’t do what we need to do until we get slammed,” Carter said

  • DARPA solicits proposals for offensive cyberwar technologies

    DARPA, the Pentagon’s research outfit, announced that next month it will host a meeting for defense contractors in which the agency will outline the Pentagon’s need for “revolutionary technologies for understanding, planning and managing cyberwarfare”; the announcement is the latest indication of the greater willingness of military planners and policy makers to discuss U.S. offensive cyberwar capabilities and plans openly

  • New FERC office to focus on cyber security

    The Federal Energy Regulatory Commission (FERC) has created a new FERC office — Office of Energy Infrastructure Security (OEIS) —  which will help the Commission focus on potential cyber and physical security risks to energy facilities under its jurisdiction