• Hackathons used by government, industry for app development, recruitment

    Local and state governments, the music industry and private businesses have begun to host “hackathons” in an effort to learn more about applications that steal and use their data, recruit candidates for cybersecurity jobs, and more generally celebrate the hacking subculture.

  • NIST biometric publication provides two new ways to identify people

    The National Institute of Standards and Technology (NIST) has issued a new publication that broadens agency security options for Personal Identity Verification (PIV) cards. The new publication adds iris images as biometric identifiers and on-card fingerprint comparison as options for the cards.

  • Cybersecurity funding increasing despite sequestration

    Sequestration-mandated cuts continue, but more money will continue to go to cybersecurity, and job opportunities in the field will continue to grow. The Defense Department intends to spend $23 billion on cybersecurity over the next five years, and that it is seeking more than $4.6 billion for cybersecurity in 2014 fiscal year, an 18 percent jump from the 2013 fiscal year.

  • U.S. Emergency Alerting System (EAS) vulnerable to hacking

    The U.S. Emergency Alerting System (EAS) is designed to allow for quick alerts during an emergency. Researchers uncovered vulnerabilities in the digital alerting systems, vulnerabilities which allow an attacker remotely to log in over the Internet and manipulate any system function. The attacker could disrupt a TV or radio station’s ability to transmit and could disseminate false emergency information.

  • U.S., China begin formal cybersecurity talks

    U.S. and Chinese officials have begun a week of formal discussions on cybersecurity. A bi-lateral group held its first meeting Monday at the State Department with both civilians and military officials included in the talks.

  • U.S. ports vulnerable to cyberattacks

    New study says that the U.S. largest ports are vulnerable to cyberattacks.The study argues that the level of cyber security awareness and culture in U.S. port facilities is relatively low, and that a cyberattack at a major U.S. port would quickly cause significant damage to the economy.

  • Growing cybersecurity opportunities for young Americans

    With the growing number of cyberattacks on U.S. companies, government agencies, and critical infrastructure, and the likelihood that such attacks will only increase, there has been a corresponding increase in the number of cybersecurity programs and educational opportunities for young Americans.

  • New expert network to advice organizations on how to keep data safe

    A new expert network which helps organizations safely manage and share sensitive data has been launched. The U.K. Anonymization Network (UKAN) will advise organizations and companies on how to minimize the risk that personal details of individual people are inadvertently revealed when data are used to create valuable services.

  • NSA revelations raise doubts about passage of cybersecurity legislation

    U.S. officials say the revelations about the National Security Agency’s(NSA) domestic surveillance programs could make it harder for lawmakers to pass a cybersecurity bill. Critics of the House cybersecurity bill, known as the Cyber Intelligence Sharing and Protection Act (CISPA), which was passed earlier this year (it is still being debated in the Senate), argued the bill could lead to private information falling into the hands of the NSA.

  • FDA warns about vulnerability of medical devices to hacking

    The Food and Drug Administration (FDA) has warned manufactures of medical devices implanted into the human body, such as pacemakers and insulin pumps, to step up their cybersecurity efforts. The agency said it has discovered “cybersecurity vulnerabilities and incidents that could directly impact medical devices or hospital network operations.”

  • New guide highlights three cyber security game changers

    Cybercrime is on the rise, and it will grow even faster if organizations ignore an emerging group of cybersecurity game changers: always-on connectivity, an increasingly IT-centric society, and a new class system that separates people by technology skills.

  • Registration opens for NIST Cybersecurity Framework Workshop

    Executive Order 13636, Improving Critical Infrastructure Cybersecurity, gave NIST the responsibility to work with industry to develop a voluntary “framework” — incorporating existing standards, guidelines, and best practices — that institutions could use to reduce the risk of cyber attacks. The National Institute of Standards and Technology (NIST) has opened registration for its Third Cybersecurity Framework Workshop, to be held 10-12 July 2013, in San Diego, California.

  • Israel taps 10th graders’ cybersecurity skills to expand cybersecuity recruitment pool

    Israel has been subjected to a growing number of cyberattacks – and has itself used cyber-warfare against its adversaries. To make sure it stays ahead, Israel is accelerating its recruitment and development efforts in cybersecurity. Among other initiatives, the country is expanding the pool of potential cyberwarriors by going into high school classrooms to tap the cyber skills of tenth-graders.

  • NSA director: surveillance programs prevented “dozens” of terror attacks

    Gen. Keith Alexander, the director of the National Security Agency (NSA) and commander of the U.S. Cyber Command, told lawmakers yesterday (Wednesday) that the NSA’s electronic surveillance programs have been indispensable in thwarting “dozens” of terrorist attacks on targets in the United States and abroad. He told the senators that securing a “cyber arena” could be done without infringing upon the privacy rights of Americans. “We do not see a tradeoff between security and liberty,” Alexander said, later adding, “We are trying to protect Americans.”

  • House panel to unveil cybersecurity bill

    Republicans on the House Homeland Security Committee are close to finalizing a long-awaited cybersecurity bill, following extensive discussions with private companies.The bill formally establishes DHS’s already-operating National Cybersecurity and Communications Integration Center, to circulate cyberthreat and vulnerability data.