29 Nov 2021

Transportation Cybersecurity Expert Highlights Vital Role of Planning and Exercising Incident Response

Suzanne Spaulding, a Senior Advisor for the Center for Strategic and International Studies (CSIS), and former Under Secretary for the National Protection and Programs Directorate (NPPD), Department of Homeland Security(DHS), recently testified before a joint session of the House Homeland Security Cybersecurity, Infrastructure Protection, & Innovation Subcommittee and the Transportation & Maritime Security Subcommittee. The NPPD is the precursor to what is now CISA.  Spaulding is also a member of the Cyberspace Solarium Commission (CSC) and was involved with the Commission on Cybersecurity during the Obama Administration.

Read More
15 Nov 2021

Cybersecurity and Cyber Incidents: Innovation and Design Lessons from Aviation Safety Models and a Call for a “Cyber NTSB”

In a recent 4-month long workshop, over 70 experts explored the concept of creating a “Cyber NTSB”. This workshop topic is consistent with themes like innovation and design processes for innovation, which cut across much of our recent OODA Loop research and analysis.  It all starts with a design metaphor. This recent workshop used the National Transportation Safety Board as a design analogy/metaphor for a National Cyber Safety Board/National Cyber Security Board (NCSB). Specifically, innovation in “lesson-learning systems” for cybersecurity and cyber incidents – taking design process inspiration from the aviation safety models of the NTSB – was the goal of this “Cyber NTSB” workshop.

Read More
28 Oct 2021

India’s Supreme Court Orders Pegasus Probe

India’s Supreme Court has opened an investigation into the Pegasus spyware and whether Prime Minister Narendra Modi’s administration used the software to illegally snoop on opposition leaders, journalists, activists, tycoons, and judges. Modi has been accused of treason by the main opposition Congress party after several of the cell phone

Read More
26 Oct 2021

Global IT Supply Chain Security – The U.S. Needs to Step Up Its Game

Microsoft officials have warned that Russia’s intelligence apparatus has been engaged in another campaign to gain unauthorized access into thousands of U.S. government, corporate, and think tank networks. The ongoing cyber-espionage campaign appears to be focused on acquiring data that is stored in the cloud.

The activity further underscores Russia’s intent to target and compromise any entity that it feels vital to supporting its intelligence interests. The target list may be expansive, as a recent Microsoft report claimed more than half of nation-state attacks detected by the company have come from Russia.

Read More
19 Oct 2021

Can Moscow Break Biden’s Full-Court Press Against Russian Cyber Criminal Malfeasance?

Attacks against supply chain, energy, water, fuel, and food, many of which are believed to have been orchestrated by Russian nationals, have underscored the need for the international community to try to find practical ways to reduce the volume of this activity.

The Biden Administration decided to convene a 30-country meeting to discuss this growing cybercrime problem. Conspicuously, Russia was left off the list of participants in the meeting, an interesting omission considering Russian cyber criminals’ perpetuation of ransomware campaigns that have netted millions of dollars in extortion fees.

Read More
21 Sep 2021

Smart Voting App, Removed by U.S. Tech Giants, Threatens Putin’s United Russia Party in Recent Duma Election

This most recent Russian election provides clear evidence that the Russian Government is meddling as much in their own elections, to achieve the Kremlin-designed outcome, as they have in recent American elections  – with one RFE/RL headline proclaiming:  “Hacking Servers. Online Blocking. Police Raids. Information Attacks. What Won’t The Kremlin Do To Stop ‘Smart Voting’?”

Read More
08 Sep 2021

TeamTNT hacking group strikes thousands of victims worldwide

TeamTNT hacking group has increased its abilities by adding a set of tools that allow it to target multiple operating systems. AT&T researchers released a report detailing the new campaign, called Chimaera, which is believed to have begun earlier this summer. The operation is based on command-and-control server logs and

Read More
17 Aug 2021

Brazilian National Treasury hit with ransomware attack

Last Friday, the Brazilian government was allegedly a victim of a ransomware attack that targeted its National Treasury. A statement was released by the Ministry of Economy detailing initial measures that were taken to contain the impact of the cyberattack. The preliminary assessments of the attack have confirmed that there

Read More
11 Aug 2021

UPMC to Pay $2.65M to Settle Data Breach Case

The University of Pittsburgh Medical Center has reached judicial approval on a multi-million-dollar settlement concerning a data breach that occurred almost seven years ago. The settlement consists of UpMC paying a total of $2.65 million to employees whose personal data was stolen by former Federal Emergency Management Agency IT specialist

Read More
19 Jul 2021

Windows 0-Days Used Against Dissidents in Israeli Broker’s Spyware

According to new reports, a unique set of spyware strains created by an Israeli firm used by governments across the world to conduct surveillance on dissidents has been defanged by Microsoft. The company is called Candiru or Sourgum and specializes in the sale of the DevilsTongue surveillance malware. The malware

Read More