• Cybersecurity Software Wins a 2024 Federal Laboratory Consortium Excellence in Technology Transfer Award

    Lincoln Laboratory–developed Timely Address Space Randomization (TASR) was transferred to two commercial providers of cloud-based services.

  • Shoring Up Ports to Withstand Cyberattacks

    There are more than 300 ports in the United States, employing an estimated 31 million Americans, and contributing about $5.4 trillion to the country’s economy The White House is moving forward with reforms aimed at shoring up cybersecurity at U.S. ports, some of which may already be in danger of falling under the sway of hackers linked to China.

  • AI and Election Integrity

    We don’t yet know the full impact of artificial intelligence-generated deepfake videos on misinforming the electorate. And it may be the narrative around them — rather than the deepfakes themselves — that most undermines election integrity.

  • Cybersecurity and Data Protection: Does ChatGPT Really Make a Difference?

    Cybersecurity and data privacy have become central concerns, affecting business operations and user safety worldwide. A new analysis has looked at the various approaches to cybersecurity and data protection taken by key global players, namely the European Union, the United States, and China.

  • Collegiate Cyber Defenders Shine in Inaugural Conquer the Hill — Command Edition Competition

    Seventy-five college students competed to test their skills in the fundamentals of IT and cybersecurity infrastructure. The DOE’s CyberForce Program aims to help develop a pipeline of skilled cyber defenders for the energy sector through competitions, webinars, career fairs, and resources for building skills.

  • Feds Deliver Stark Warnings to State Election Officials Ahead of November

    Federal law enforcement and cybersecurity officials are warning the nation’s state election administrators that they face serious threats ahead of November’s presidential election, as AI, ransomware attacks, and malicious mail could disrupt voting.

  • Using AI to Develop Enhanced Cybersecurity Measures

    Using artificial intelligence to address several critical shortcomings in large-scale malware analysis, researchers are making significant advancements in the classification of Microsoft Windows malware and paving the way for enhanced cybersecurity measures.

  • U.S. Disrupts Botnet China Used to Conceal Hacking of Critical Infrastructure

    In December 2023, the FBI disrupted a botnet of hundreds of U.S.-based small office/home office (SOHO) routers hijacked by People’s Republic of China (PRC) state-sponsored hackers. The Chinese government hackers used privately-owned SOHO routers infected with the “KV Botnet” malware to conceal the PRC origin of further hacking activities directed against U.S. critical infrastructure and the critical infrastructure of other foreign victims.

  • Identifying Types of Cyberattacks That Manipulate Behavior of AI Systems

    AI systems can malfunction when exposed to untrustworthy data – what is called “adversarial machine learning” — and attackers are exploiting this issue. New guidance documents the types of these attacks, along with mitigation approaches. No foolproof method exists as yet for protecting AI from misdirection, and AI developers and users should be wary of any who claim otherwise.

  • Hidden Fortunes and Surprising Overestimations in Cybercrime Revenue

    To what extent methodological limitations and incomplete data impact the revenue estimations of cybercriminal groups using the Bitcoin blockchain was largely unknown. A new study challenges existing figures regarding cybercriminals’ Bitcoin earnings to date, revealing the full scale of the financial impact of cybercriminal activity.

  • Why Federal Efforts to Protect Schools from Cybersecurity Threats Fall Short

    In August 2023, the White House announced a plan to bolster cybersecurity in K-12 schools – and with good reason. Between 2018 and mid-September 2023, there were 386 recorded cyberattacks in the U.S. education sector and cost those schools $35.1 billion. K-12 schools were the primary target. While the steps taken by the White House are positive, as someone who teaches and conducts research about cybersecurity, I don’t believe the proposed measures are enough to protect schools from cyberthreats.

  • AI Networks Are More Vulnerable to Malicious Attacks Than Previously Thought

    Artificial intelligence tools hold promise for applications ranging from autonomous vehicles to the interpretation of medical images. However, a new study finds these AI tools are more vulnerable than previously thought to targeted attacks that effectively force AI systems to make bad decisions.

  • Interference-Free Elections? How Quaint!

    There are three major elections taking place in 2024: in Taiwan, the United States, and Russia. So, what are the chances that we’ll see cyber-enabled disruption campaigns targeting each of these polls? Tom Uren writes that in the case of the upcoming U.S. election, it seems inevitable.

  • New CPU Vulnerability Makes Virtual Machine Environments Vulnerable

    Researchers have identified a security vulnerability that could allow data on virtual machines with AMD processors to fall under the control of attackers.

  • Is the Fear of Cyberwar Worse Than Cyberwar Itself?

    Unrealistic cyberwar expectations could hold the insurance industry back, and that’s the real economic security problem. The “hyperbolic characterization of cyberwar is likely a bigger problem than the threat of cyberwar itself. The problem is one of economic security,” Tom Johansmeyer writes.