• Cyber Safety Review Board Releases Report on Microsoft Online Exchange Incident from Summer 2023

    On Tuesday, the U.S. Department of Homeland Security (DHS) released the Cyber Safety Review Board’s (CSRB) findings and recommendations following its independent review of the Summer 2023 Microsoft Exchange Online intrusion. The review detailed operational and strategic decisions that led to the intrusion and recommended specific practices for industry and government to implement to ensure an intrusion of this magnitude does not happen again.

  • Engineers Fortifying Critical Infrastructure

    In a bid to protect the nation’s energy sector against cyber attacks, engineers are creating a digital twin to help weed out threats and fix software and firmware vulnerabilities. If left unchecked, these weaknesses could allow ransomware attacks that could cause severe havoc to critical U.S. energy systems.

  • Where Did All the Water Go? New Study Explores Water Use in the Colorado River Basin.

    The final 100 miles of the Colorado River is a shell of its former self — nearly 10 miles wide at the turn of the century, farmers had more water than they knew what to do with. Now, a weave of concrete canals brings water to sprawling industrial farms situated in the Mexicali Valley, with much of the natural riverbed dry and the wildlife sparse. Where did all the water go?

  • States and Tribes Scramble to Reach Colorado River Deals Before Election

    There are three main forces driving the conflict on the Colorado River. The first is an outdated legal system that guarantees more water to seven Western states than is actually available in the river during most years. The second is the exclusion of Native American tribes from this legal system. The third is climate change, which is heating up the western United States and diminishing the winter snowfall and rainwater that feed the river. Landmark agreements would cut big states’ water usage for decades and deliver water to the Navajo Nation.

  • Its Deterrence Strategy Weakened, Iran Faces Pressure to Hit Israel

    Iran’s strategy of deterrence against Israel has suffered greatly since the outbreak of the Gaza war — particularly after the brazen attack on its consulate in the Syrian capital on April 1. the deadly strike on its consulate in Damascus may compel Iran to take direct action, experts say.

  • Memo: The Reported Destruction of Secret Workshop in 2020

    On March 24, 2024, Iran International reported that an “industrial production workshop […] belonging to the Atomic Energy Organization of Iran (AEOI) was deliberately set on fire” in the summer of 2020. 1 The incident was not reported publicly at the time, and Iran International cites judicial and intelligence documents provided by a hacking group as their source. Iran alleged that the Israeli intelligence service, Mossad, hired a group of nine Iranians to destroy the facility.

  • Biden to Xi: Stay Out of U.S. Elections

    President Joe Biden again warned Chinese President Xi Jinping against meddling in the November U.S. presidential election during the two leaders’ phone call Tuesday. Covert Chinese accounts are masquerading online as American supporters of former President Donald Trump, promoting conspiracy theories, stoking domestic divisions, and attacking President Biden ahead of the election in November, according to researchers and government officials.

  • USCIS Springs Unseasonable Costs and Demands on American Employers

    With spring approaching, U.S. businesses that sponsor noncitizen workers for employment‐based immigration benefits are accustomed to weathering seasonal changes. Most employers are likely ready for the initial FY 2025 H 1B lottery registration season. American businesses, however, now face particularly inclement headwinds stirred up by US Citizenship and Immigration Services (USCIS), the Department of Homeland Security (DHS) component tasked with deciding immigration‐benefits requests.

  • Canada’s Biosecurity Scandal: The Risks of Foreign Interference in Life Sciences

    In July 2019, world-renowned biological researchers Xiangguo Qiu and Keding Cheng were quietly walked out of the Canadian government’s National Microbiology Lab (NML). The original allegation against them was that Qiu had authorized a shipment to China of some of the deadliest viruses on the planet, including Ebola and Nipah. Then the story seemed to go away—until now.

  • How Firearms Move from Legal Purchase to Criminal Use

    Between 1996 and 2021, more than 5.2 million handguns and almost 2.9 million long guns were legally purchased in California. During 11 years of that time frame, 2010-2021, California law enforcement officers recovered 45,247 of these guns from crime scenes. New study of California gun data identifies risk factors for weapons used in crimes.

  • U.S. Unpersuaded by Report Blaming Russia for ‘Havana Syndrome’

    The United States is backing a year-old intelligence assessment that health problems affecting, and in some cases incapacitating, hundreds of American personnel around the world are not the result of a weapon wielded by a U.S. adversary. The White House, the Pentagon and the State Department Monday stood by a March 2023 report by the National Intelligence Council that concluded it is “very unlikely” the adverse symptoms known as Havana Syndrome were caused by enemy operatives.

  • Strike Looms at Nuclear Power Plants

    Security officers at nuclear power plants operated by Constellation energy company may go on strike after the union representing them and the company have so far failed to reach an agreement on a new contract. Under federal law, nuclear plants must operate under a costly contingency plan in the run-up to and during a strike, and the union highlights the fact that cost of the contingency plan far exceeds the cumulative cost to the company of the annual wage increases to the security officers during the life of the contract. 

  • Domestic Violent Extremists’ Threat to U.S. Nuclear Facilities

    Nuclear security in the U.S. has historically understood threat as “other,” – for example, foreign states or terrorists — leaving practitioners, facilities, and physical protection systems vulnerable to threats from within. There is a need for an urgent change to the nuclear security norms and understanding of threat to include not only foreign agents, but also domestic violent extremist groups and homegrown violent ideologies, is needed to strengthen the resiliency and effectiveness of the national nuclear security regime.

  • ‘Fake News’ Legislation Risks Doing More Harm Than Good Amid a Record Number of Elections in 2024

    “Fake news” legislation that governments around the world have written in recent years to combat mis- and disinformation does little to protect journalistic freedom. Rather, it can create a greater risk of harm. That’s the main finding of a review I helped conduct of legislation either considered or passed over the past several years related to fake news and mis- and disinformation.

  • What Is Volt Typhoon? A Cybersecurity Expert Explains the Chinese Hackers Targeting U.S. Critical Infrastructure

    Volt Typhoon is a Chinese state-sponsored hacker group. The United States government and its primary global intelligence partners, known as the Five Eyes, issued a warning on March 19, 2024, about the group’s activity targeting critical infrastructure. The warning echoes analyses by the cybersecurity community about Chinese state-sponsored hacking in recent years.