• House kills web privacy protections; ISPs free to collect, sell customers’ information

    The House of Representative on Tuesday voted 215 to 205 kill the privacy rules, formulated by the FCC, which were aimed at preventing internet service providers (ISPs) from selling their customers’ web browsing histories and app usage to advertisers. Without these protections, Comcast, Verizon, AT&T, and other ISPs will have complete freedom to collect information about their customers’ browsing and app-usage behavior, then sell this information to advertisers.

  • New brain-inspired cybersecurity system detects “bad apples” 100 times faster

    Cybersecurity is critical — for national security, corporations and private individuals. Sophisticated cybersecurity systems excel at finding “bad apples” in computer networks, but they lack the computing power to identify the threats directly. These limits make it easy for new species of “bad apples” to evade modern cybersecurity systems. And security analysts must sort the real dangers from false alarms. The Neuromorphic Cyber Microscope, designed by Lewis Rhodes Labs in partnership with Sandia National Laboratories, directly addresses this limitation. Due to its brain-inspired design, it can look for the complex patterns that indicate specific “bad apples,” all while using less electricity than a standard 60-watt light bulb.

  • “Lip password” uses a person’s lip motions to create a password

    The use of biometric data such as fingerprints to unlock mobile devices and verify identity at immigration and customs counters are used around the world. Despite its wide application, one cannot change the scan of their fingerprint. Once the scan is stolen or hacked, the owner cannot change his/her fingerprints and has to look for another identity security system. Researchers have invented a new technology called “lip motion password” (lip password) which utilizes a person’s lip motions to create a password.

  • RAND study examines 200 real-world “Zero-Day” software vulnerabilities

    Zero-day software vulnerabilities – security holes that developers haven’t fixed or aren’t aware of – can lurk undetected for years, leaving software users particularly susceptible to hackers. A new study from the RAND Corporation, based on rare access to a dataset of more than 200 such vulnerabilities, provides insights about what entities should do when they discover them.

  • Simulated ransomware attack highlights vulnerability of industrial controls

    Ransomware generated an estimated $200 million for attackers during the first quarter of 2016, and the researchers believe it’s only a matter of time before critical industrial systems are compromised and held for ransom. Cybersecurity have developed a new form of ransomware that was able to take over control of a simulated water treatment plant. After gaining access, the researchers were able to command programmable logic controllers (PLCs) to shut valves, increase the amount of chlorine added to water, and display false readings. The simulated attack was designed to highlight vulnerabilities in the control systems used to operate industrial facilities such as manufacturing plants, water and wastewater treatment facilities, and more.

  • Cybersecurity degree approved for Kennesaw State

    The cybersecurity field in the U.S. will need an additional 1.5 million workers by the year 2020. The Board of Regents of the University System of Georgia on Tuesday approved an online Bachelor of Science in Cybersecurity at Kennesaw State University. The cybersecurity major includes elements of information technology, information security and assurance, and criminal justice, giving students a combination of technical knowledge and information security management skills.

  • How Florida is helping train the next generation of cybersecurity professionals

    Our increasingly connected and digital world is vulnerable to attack and needs more skilled professionals who know how to defend it. As connected devices proliferate, particularly smart devices creating what has been called the “Internet of Things,” the problem is getting worse. While we don’t know where and when the next cyber threats will arise, we can be sure that our society’s use of and demand for digital connections will only grow. As a result, we’ll also see the demand for cybersecurity professionals rise – and the opportunities for new ways of thinking, learning and collaborating.

  • Center for Long-Term Cybersecurity unveils 2017 research grantees

    The Center for Long-Term Cybersecurity (CLTC) has announce the recipients of its 2017 research grants. In total, twenty-seven different groups of researchers will share a total of nearly $1 million in funding. CLTC says that the projects span a wide range of topics related to cybersecurity, including new methods for making crypto-currencies more secure; protecting health information stored on mobile devices; teaching high-school computer science students how to “program for privacy”; and exploring potential limits on the use of digital controls in nuclear reactors.

  • Protecting quantum computing networks against hackers

    As we saw during the 2016 U.S. election, protecting traditional computer systems, which use zeros and ones, from hackers is not a perfect science. Now consider the complex world of quantum computing, where bits of information can simultaneously hold multiple states beyond zero and one, and the potential threats become even trickier to tackle. Even so, researchers have uncovered clues that could help administrators protect quantum computing networks from external attacks.

  • Global entities come shopping for Israeli cybersecurity

    As computer devices and Internet of Things (IoT) connectivity continue to break new boundaries and create changes to our lifestyle, new cybersecurity technologies to defend our tech-savvy lives are crucial. “We’re still at the beginning for the cyber arena. We still need the security solution for smart homes, we still don’t have security solutions for autonomous cars, or for connected medical devices or MRI machines, or for connected kitchen appliances. Every technology that will be introduced to our lives in the coming years will need a cyber solution,” says one expert.

  • NSA/DHS endorse DCC cybersecurity program

    Virginia Governor Terry McAuliffe on last week praised Danville Community College for becoming the “first rural community college in Virginia” to earn a prestigious cybersecurity designation from the National Security Agency (NSA) and the Department of Homeland Security (DHS). DCC is now one of just four community colleges in Virginia to achieve this milestone, which the governor called “a very big deal” for both attracting new industry and securing digital information.

  • Canadian Institute for Cybersecurity launched

    The worldwide cybersecurity market is large and growing, with market sizing estimates ranging from $75 billion in 2015 to $170 billion by 2020. The size of the market is a response to the rising global cost of cyberattacks, which is expected to grow to $2.1 trillion by 2020. The Canadian Institute for Cybersecurity, aiming to be a hub for research, training, and industry collaboration, opened at the University of New Brunswick on Monday with more than $4.5 million in funding and the establishment of a research partnership with IBM.

  • GCHQ Cyber Accelerator selects first cyber security start-ups

    Seven start-ups, focusing on online security issues and threats, will join the new GCHQ Cyber Accelerator, powered by Wayra UK. The accelerator will be part of a government-funded cyber innovation center aiming to help keep the United Kingdom secure online. Each start-up will receive benefits including access to technological and security expertise, networks, office space, and mentoring. The accelerator aims to help the United Kingdom take the lead in producing the next generation of cybersecurity systems, boosting the country’s tech sector.

  • $527K to develop a Web authentication middleware tool

    Recent studies have documented many problem areas within the current certificate-based authentication system such as errors and issues with server certificates, invalid chains and subjects, self-signed certificates, and popular websites not properly using them. DHS S&T has awarded $527,112 to Brigham Young University (BYU) in Provo, Utah, to develop a Web authentication middleware tool that would significantly upgrade the current Internet website authentication process and improve online security.

  • Advancing the science of cybersecurity

    Cyberattacks on corporations, agencies, national infrastructure and individuals have exposed the fragility and vulnerability of the internet and networked systems. Achieving truly secure cyberspace requires addressing both the technical vulnerabilities in systems, as well as those that arise from human behaviors and choices. NSF awards $70 million to support interdisciplinary cybersecurity research.