-
Cyber attacks grow in sophistication, menace; most originate in China
More and more cyber attacks on organization aim to allow criminals to take control over enterprise assets; most attacks on companies and organizations around the world originate in China
-
-
Glaring gaps in network security, II
Specialists in penetration testing take six hours to hack the FBI; hacking the networks of Fortune 500 companies takes much less time; even companies which have been Sarbanes-Oxley compliant for several years have been hacked within twenty minutes, with the hackers taking control of the business; these hackers proved they could actively change general ledgers and do other critical tasks
-
-
Glaring gaps in network security, I
Specialists in penetration testing take six hours to hack the FBI; hacking the networks of Fortune 500 companies takes much less time; even companies which have been Sarbanes-Oxley compliant for several years have been hacked within twenty minutes, with the hackers taking control of the business; these hackers proved they could actively change general ledgers and do other critical tasks
-
-
Is the Internet "Critical Infrastructure"?
The Internet’s architecture is optimized to be cheap and ubiquitous; such a network is never going to be perfectly secure or reliable; transactions that absolutely have to be done correctly and on time need to be done on a dedicated network
-
-
DHS to keep an eye on access to IT systems
DHS to create a database of employees, contractors, and consultants with access to DHS computer systems; database will contain names, business affiliations, positions, phone numbers, citizenship, home addresses, e-mail addresses, access records, date and time of access, logs of Internet activity, and Internet protocol address of access
-
-
IT chiefs warn of cyber-terrorism threat to critical infrastructure
UN expert dismissed as a dangerous myth the idea that events in the virtual world have only a limited impact on the physical world, saying that technology has “changed the dynamics of terrorism”
-
-
Hackers to concentrate on moving targets
Security maven Howard Schmidt says more must be done to bolster mobile defenses
-
-
Power plants open to hacker attack
Power plants, dams, and many other critical infrastructure assets are controlled by a system called supervisory control and data acquisition, or SCADA; a Boston technology specialist finds serious vulnerability in the system
-
-
Alarming open-source security holes found
A programming error introduced serious security vulnerabilities in millions of computer systems; many systems affected
-
-
Permanent denial-of-service attack sabotages hardware
HP’s Rich Smith to demonstrate a permanent denial-of-service (PDOS) attack that remotely wipes out hardware via flash firmware updates
-
-
Verizon, AT&T win DHS contracts
Verizon, AT&T win contracts worth nearly $1 billion to provide DHS with IP and security services as well as emergency communication services
-
-
Banks rely on spyware to detect rogue traders, false rumors
Growing worries about the financial consequences of rogue traders’ unauthorized activity and false rumors spread in order to manipulate stock price, more and more companies – especially in the financial sector – are installing spyware to monitor their employees’ every move and utterance
-
-
WorkLight says RSA chief's observations ring true
RSA boss Art Coviello offers his insights on Web security, saying that hackers are developing plans to attack healthcare providers as their revenue streams from the financial services sector start to dry up; Coveillo also says that biometric technology is not a solution for IT security – at least so far
-
-
An HSDW conversation with John Stroia, vice president, Government Security and Monitoring Solutions, Diebold
Diebold has been adding “layers of protection” to its customers since 1859; Diebold provides one-stop shopping for technology-based electronic systems, software, and services, and the company is active in all four major security markets: financial; commercial (retail); enterprise (large corporations); and government
-
-
Tyco sells M/A-COM for $425 million
Tyco sells its radio frequency components and subsystem business to Cobham Defense Electronic Systems
-
More headlines
The long view
States Rush to Combat AI Threat to Elections
This year’s presidential election will be the first since generative AI became widely available. That’s raising fears that millions of voters could be deceived by a barrage of political deepfakes. Congress has done little to address the issue, but states are moving aggressively to respond — though questions remain about how effective any new measures to combat AI-created disinformation will be.
Ransomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages
A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.
Chinese Government Hackers Targeted Critics of China, U.S. Businesses and Politicians
An indictment was unsealed Monday charging seven nationals of the People’s Republic of China (PRC) with conspiracy to commit computer intrusions and conspiracy to commit wire fraud for their involvement in a PRC-based hacking group that spent approximately 14 years targeting U.S. and foreign critics, businesses, and political officials in furtherance of the PRC’s economic espionage and foreign intelligence objectives.
Autonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks
Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.
Tantalizing Method to Study Cyberdeterrence
Tantalus is unlike most war games because it is experimental instead of experiential — the immersive game differs by overlapping scientific rigor and quantitative assessment methods with the experimental sciences, and experimental war gaming provides insightful data for real-world cyberattacks.