• RANSOMWARERansomware Attacks: Death Threats, Endangered Patients and Millions of Dollars in Damages

    By Dino Jahic

    A ransomware attack on Change Healthcare, a company that processes 15 billion health care transactions annually and deals with 1 in 3 patient records in the United States, is continuing to cause massive disruptions nearly three weeks later. The incident, which started on February 21, has been called the “most significant cyberattack on the U.S. health care system” by the American Hospital Association. It is just the latest example of an increasing trend.

  • AUTONOMOUS VEHICLESAutonomous Vehicle Technology Vulnerable to Road Object Spoofing and Vanishing Attacks

    Researchers have demonstrated the potentially hazardous vulnerabilities associated with the technology called LiDAR, or Light Detection and Ranging, many autonomous vehicles use to navigate streets, roads and highways. The researchers have shown how to use lasers to fool LiDAR into “seeing” objects that are not present and missing those that are – deficiencies that can cause unwarranted and unsafe braking or collisions.

  • ELECTION INTERFERENCEArtificial Intelligence Is Game Changer for Election Interference: FBI

    By Jeff Seldin

    U.S. security officials are bracing for an onslaught of fast-paced influence operations, from a wide range of adversaries, aimed at impacting the country’s coming presidential election. FBI Director Christopher Wray issued the latest warning in a meeting with security professional Thursday, saying that technologies such as artificial intelligence are already altering the threat landscape.

  • ELECTION SECURITYTop Lawmaker Warns U.S. 'Less Prepared' for Election Meddling

    By Jeff Seldin

    Senate Intelligence Committee Chairman Mark Warner said that the prevalence of artificial intelligence could also make Russia’s interference with the 2016 presidential election look “like child’s play.”

  • CYBERSECURITYCybersecurity Software Wins a 2024 Federal Laboratory Consortium Excellence in Technology Transfer Award

    By Ariana Tantillo

    Lincoln Laboratory–developed Timely Address Space Randomization (TASR) was transferred to two commercial providers of cloud-based services.

  • PORT SECURITYShoring Up Ports to Withstand Cyberattacks

    By Jeff Seldin

    There are more than 300 ports in the United States, employing an estimated 31 million Americans, and contributing about $5.4 trillion to the country’s economy The White House is moving forward with reforms aimed at shoring up cybersecurity at U.S. ports, some of which may already be in danger of falling under the sway of hackers linked to China.

  • AIAI and Election Integrity

    By Rehan Mirza

    We don’t yet know the full impact of artificial intelligence-generated deepfake videos on misinforming the electorate. And it may be the narrative around them — rather than the deepfakes themselves — that most undermines election integrity.

  • CYBERSECURITYCybersecurity and Data Protection: Does ChatGPT Really Make a Difference?

    Cybersecurity and data privacy have become central concerns, affecting business operations and user safety worldwide. A new analysis has looked at the various approaches to cybersecurity and data protection taken by key global players, namely the European Union, the United States, and China.

  • CYBERSECURITYCollegiate Cyber Defenders Shine in Inaugural Conquer the Hill — Command Edition Competition

    By Michael Kooi

    Seventy-five college students competed to test their skills in the fundamentals of IT and cybersecurity infrastructure. The DOE’s CyberForce Program aims to help develop a pipeline of skilled cyber defenders for the energy sector through competitions, webinars, career fairs, and resources for building skills.

  • ELECTION SECURITYFeds Deliver Stark Warnings to State Election Officials Ahead of November

    By Matt Vasilogambros

    Federal law enforcement and cybersecurity officials are warning the nation’s state election administrators that they face serious threats ahead of November’s presidential election, as AI, ransomware attacks, and malicious mail could disrupt voting.

  • CYBERSECURITYUsing AI to Develop Enhanced Cybersecurity Measures

    Using artificial intelligence to address several critical shortcomings in large-scale malware analysis, researchers are making significant advancements in the classification of Microsoft Windows malware and paving the way for enhanced cybersecurity measures.

  • CHINA WATCHU.S. Disrupts Botnet China Used to Conceal Hacking of Critical Infrastructure

    In December 2023, the FBI disrupted a botnet of hundreds of U.S.-based small office/home office (SOHO) routers hijacked by People’s Republic of China (PRC) state-sponsored hackers. The Chinese government hackers used privately-owned SOHO routers infected with the “KV Botnet” malware to conceal the PRC origin of further hacking activities directed against U.S. critical infrastructure and the critical infrastructure of other foreign victims.

  • CYBERSECURITYIdentifying Types of Cyberattacks That Manipulate Behavior of AI Systems

    AI systems can malfunction when exposed to untrustworthy data – what is called “adversarial machine learning” — and attackers are exploiting this issue. New guidance documents the types of these attacks, along with mitigation approaches. No foolproof method exists as yet for protecting AI from misdirection, and AI developers and users should be wary of any who claim otherwise.

  • CYBERCRIMEHidden Fortunes and Surprising Overestimations in Cybercrime Revenue

    To what extent methodological limitations and incomplete data impact the revenue estimations of cybercriminal groups using the Bitcoin blockchain was largely unknown. A new study challenges existing figures regarding cybercriminals’ Bitcoin earnings to date, revealing the full scale of the financial impact of cybercriminal activity.

  • CYBERSECURITYWhy Federal Efforts to Protect Schools from Cybersecurity Threats Fall Short

    By Nir Kshetri

    In August 2023, the White House announced a plan to bolster cybersecurity in K-12 schools – and with good reason. Between 2018 and mid-September 2023, there were 386 recorded cyberattacks in the U.S. education sector and cost those schools $35.1 billion. K-12 schools were the primary target. While the steps taken by the White House are positive, as someone who teaches and conducts research about cybersecurity, I don’t believe the proposed measures are enough to protect schools from cyberthreats.