cyberattack – Page 8 – SSL and internet security news

Ransomware and the Internet of Things

May 25, 2017 infossl

cyberattack, internetandsociety, internetofthings, ransomware, Security technology, securityengineering

As devastating as the latest widespread ransomware attacks have been, it’s a problem with a solution. If your copy of Windows is relatively current and you’ve kept it updated, your laptop is immune. It’s only older unpatched systems on your computer that are vulnerable. Patching is how the computer industry maintains security in the face … Read More “Ransomware and the Internet of Things” »

Attack vs. Defense in Nation-State Cyber Operations

April 13, 2017 infossl

academicpapers, cyberattack, cyberwar, defense, nationalsecuritypolicy, Security technology, vulnerabilities

I regularly say that, on the Internet, attack is easier than defense. There are a bunch of reasons for this, but primarily it’s 1) the complexity of modern networked computer systems and 2) the attacker’s ability to choose the time and method of the attack versus the defender’s necessity to secure against every type of … Read More “Attack vs. Defense in Nation-State Cyber Operations” »

Incident Response as “Hand-to-Hand Combat”

April 7, 2017 infossl

cyberattack, cyberwar, nationalsecuritypolicy, nsa, russia, Security technology

NSA Deputy Director Richard Ledgett described a 2014 Russian cyberattack against the US State Department as “hand-to-hand” combat: “It was hand-to-hand combat,” said NSA Deputy Director Richard Ledgett, who described the incident at a recent cyber forum, but did not name the nation behind it. The culprit was identified by other current and former officials. … Read More “Incident Response as “Hand-to-Hand Combat”” »

France Abandons Plans for Internet Voting

March 15, 2017 infossl

cyberattack, france, hacking, internet, Security technology, voting

Some good election security news for a change: France is dropping its plans for remote Internet voting, because it’s concerned about hacking. Powered by WPeMatico

The US Has Been Conducting Offensive Cyberattacks against North Korea

March 8, 2017 infossl

cyberattack, cyberwar, nationalsecuritypolicy, northkorea, Security technology

The New York Times is reporting that the US has been conducting offensive cyberattacks against North Korea, in an effort to delay its nuclear weapons program. EDITED TO ADD (3/8): Commentary. Powered by WPeMatico

NSA Using Cyberattack for Defense

February 22, 2017 infossl

cyberattack, cybersecurity, edwardsnowden, nsa, Security technology, tradecraft

These days, it’s rare that we learn something new from the Snowden documents. But Ben Buchanan found something interesting. The NSA penetrates enemy networks in order to enhance our defensive capabilities. The data the NSA collected by penetrating BYZANTINE CANDOR’s networks had concrete forward-looking defensive value. It included information on the adversary’s “future targets,” including … Read More “NSA Using Cyberattack for Defense” »

Survey Data on Americans and Cybersecurity

February 14, 2017 infossl

cyberattack, cybersecurity, fraud, reports, Security technology, trust

Pew Research just published their latest research data on Americans and their views on cybersecurity: This survey finds that a majority of Americans have directly experienced some form of data theft or fraud, that a sizeable share of the public thinks that their personal data have become less secure in recent years, and that many … Read More “Survey Data on Americans and Cybersecurity” »

Hacking Back

February 13, 2017 infossl

academicpapers, cyberattack, hackback, hacking, Security technology

There’s a really interesting paper from George Washington University on hacking back: “Into the Gray Zone: The Private Sector and Active Defense against Cyber Threats.” I’ve never been a fan of hacking back. There’s a reason we no longer issue letters of marque or allow private entities to commit crimes, and hacking back is a … Read More “Hacking Back” »

Auditing Elections for Signs of Hacking

December 2, 2016 infossl

auditing, cyberattack, cybersecurity, fraud, nationalsecuritypolicy, Security technology, voting

Excellent essay pointing out that election security is a national security issue, and that we need to perform random ballot audits on every future election: The good news is that we know how to solve this problem. We need to audit computers by manually examining randomly selected paper ballots and comparing the results to machine … Read More “Auditing Elections for Signs of Hacking” »

San Francisco Transit System Target of Ransomware

November 29, 2016 infossl

cyberattack, cybercrime, hacking, internet, publictransit, ransomware, Security technology

It’s really bad. The ticket machines were hacked. Over the next couple of years, I believe we are going to see the downside of our headlong rush to put everything on the Internet. Slashdot thread. Powered by WPeMatico