13 Dec 2018

Russian Critical Infrastructure Targeted by Profit-Driven Cybercriminals

“Several critical infrastructure organizations in Russia have been targeted by hackers believed to be financially-motivated cybercriminals rather than state-sponsored cyberspies. An analysis of malicious Word documents led researchers at endpoint security firm Cylance to discover fake websites set up to impersonate the legitimate sites of Russian oil giant Rosneft and

Read More
13 Dec 2018

How DHS is Trying to Separate Quality Cyber Tools from Snake Oil

How do you compare and test the efficacy of cybersecurity products and companies when the information is proprietary? In many situations, you cannot. The research division of DHS is currently trying to understand how comparisons could be possible that are based on rational actor notions. With cybersecurity companies selling their

Read More
12 Dec 2018

Hackers Steal Over 40k Logins for Gov Services in 30 Countries

“More than 40,000 users victims of phishing attacks had their credentials for unlocking online accounts for government services stolen…the login data offered access to services in 30 countries around the world. Most of the victims are in Europe. More than half of the victims are from Italy (52%), followed by

Read More
11 Dec 2018

Blurry satellite photos of military bases reveal more than they hide

“Open-source researchers often use satellite images, especially across multiple providers, to uncover information that is otherwise difficult to obtain. In November 2017, the World Bank released an analysis of satellite footage of ISIS-held territory to reveal that the statelet was struggling to produce oil. In September 2018, open-source investigation house

Read More
11 Dec 2018

CDs, faxes make comeback as military file-sharing service taken offline

“The shuttering of a widely used military file-sharing service last month has left the services without an online option for transferring sensitive unclassified files, so they’re turning to CDs, DVDs, postal mail and even fax machines. Both the Navy and Marine Corps issued official guidance late last month saying optical

Read More
11 Dec 2018

Cyberattacks are increasing, and so is cyber insurance

“‘Cyber insurance is a growth market for the industry today,’ said Sasha Romanosky, an expert at the RAND Corporation, a private research organization. He estimated that the current market size is around $2 billion in the United States, which may seem like a small size for an industry worth an

Read More
11 Dec 2018

Russia Launched Cyber Attacks Against Ukraine Before Ship Seizures, Firm Says

“Russian government-affiliated actors launched coordinated cyber attacks against Ukrainian government and military targets before and during the attack and seizure of Ukrainian ships and sailors on November 25, a private intelligence firm announced this week. The attacks appeared to be aimed at stealing information that would have been relevant to planning

Read More
11 Dec 2018

‘PowerSnitch’ Hacks Androids via Power Banks

“An inexpensive Android hacking tool can create a covert communications channel in the power current generated while a smartphone charges on a power bank. The so-called ‘PowerSnitch’ attack, which was demonstrated here this week by Oxford University researcher Riccardo Spolaor, shows that a determined hacker doesn’t actually need a network

Read More
10 Dec 2018

Shanghai: Everyone safe but watched in mega-city full of cameras

“Municipal officials in Shanghai now take pride in the litany of Internet of Things applications in their city that make streets and homes safer. For instance, they say cameras at the entrance to a residential estate can scan the face of a driver and his car plate and instantly open the

Read More
10 Dec 2018

Stopping the Cybersecurity Brain Drain Calls for Outside the Box Thinking

President Trump’s National Cyber Strategy includes the development of a “superior cyber workforce.” But given the difficulty in recruitment and retention of skilled cyber personnel, this goal may remain illusive. According to the Commerce and Homeland Security departments, there were around 299,000 openings for cybersecurity positions in August 2017, positions

Read More