national security policy – Page 3 – SSL and internet security news

NIST Is Updating Its Cybersecurity Framework

January 30, 2023 infossl

cybersecurity, national security policy, nist, Security technology, Uncategorized

NIST is planning a significant update of its Cybersecurity Framework. At this point, it’s asking for feedback and comments to its concept paper. Do the proposed changes reflect the current cybersecurity landscape (standards, risks, and technologies)? Are the proposed changes sufficient and appropriate? Are there other elements that should be considered under each area? Do … Read More “NIST Is Updating Its Cybersecurity Framework” »

US Cyber Command Operations During the 2022 Midterm Elections

January 25, 2023 infossl

cyberattack, cybersecurity, hacking, national security policy, Security technology, Uncategorized, voting

The head of both US Cyber Command and the NSA, Gen. Paul Nakasone, broadly discussed that first organization’s offensive cyber operations during the runup to the 2022 midterm elections. He didn’t name names, of course: We did conduct operations persistently to make sure that our foreign adversaries couldn’t utilize infrastructure to impact us,” said Nakasone. … Read More “US Cyber Command Operations During the 2022 Midterm Elections” »

Bulk Surveillance of Money Transfers

January 24, 2023 infossl

law enforcement, national security policy, privacy, Security technology, surveillance, Uncategorized

Just another obscure warrantless surveillance program. US law enforcement can access details of money transfers without a warrant through an obscure surveillance program the Arizona attorney general’s office created in 2014. A database stored at a nonprofit, the Transaction Record Analysis Center (TRAC), provides full names and amounts for larger transfers (above $500) sent between … Read More “Bulk Surveillance of Money Transfers” »

The US Has a Shortage of Bomb-Sniffing Dogs

November 23, 2022 infossl

bombs, COVID-19, national security policy, Security technology, Uncategorized

Nothing beats a dog’s nose for detecting explosives. Unfortunately, there aren’t enough dogs: Last month, the US Government Accountability Office (GAO) released a nearly 100-page report about working dogs and the need for federal agencies to better safeguard their health and wellness. The GOA says that as of February the US federal government had approximately … Read More “The US Has a Shortage of Bomb-Sniffing Dogs” »

The Justice Department Will No Longer Charge Security Researchers with Criminal Hacking

May 24, 2022 infossl

courts, cybercrime, cybersecurity, national security policy, reverse engineering, Security technology, Uncategorized, vulnerabilities

Following a recent Supreme Court ruling, the Justice Department will no longer prosecute “good faith” security researchers with cybercrimes: The policy for the first time directs that good-faith security research should not be charged. Good faith security research means accessing a computer solely for purposes of good-faith testing, investigation, and/or correction of a security flaw … Read More “The Justice Department Will No Longer Charge Security Researchers with Criminal Hacking” »

Attacks on Managed Service Providers Expected to Increase

May 17, 2022 infossl

advanced persistent threats, cybersecurity, infrastructure, national security policy, Security technology, Uncategorized

CISA, NSA, FBI, and similar organizations in the other Five Eyes countries are warning that attacks on MSPs — as a vector to their customers — are likely to increase. No details about what this prediction is based on. Makes sense, though. The SolarWinds attack was incredibly successful for the Russian SVR, and a blueprint … Read More “Attacks on Managed Service Providers Expected to Increase” »

ICE Is a Domestic Surveillance Agency

May 11, 2022 infossl

national security policy, privacy, reports, secrecy, Security technology, surveillance, Uncategorized

Georgetown has a new report on the highly secretive bulk surveillance activities of ICE in the US: When you think about government surveillance in the United States, you likely think of the National Security Agency or the FBI. You might even think of a powerful police agency, such as the New York Police Department. But … Read More “ICE Is a Domestic Surveillance Agency” »

Corporate Involvement in International Cybersecurity Treaties

May 6, 2022 infossl

cybersecurity, national security policy, Security technology, Uncategorized

The Paris Call for Trust and Stability in Cyberspace is an initiative launched by French President Emmanuel Macron during the 2018 UNESCO’s Internet Governance Forum. It’s an attempt by the world’s governments to come together and create a set of international norms and standards for a reliable, trustworthy, safe, and secure Internet. It’s not an … Read More “Corporate Involvement in International Cybersecurity Treaties” »

John Oliver on Data Brokers

April 12, 2022 infossl

data collection, national security policy, privacy, Security technology, Uncategorized, video

John Oliver has an excellent segment on data brokers and surveillance capitalism. Powered by WPeMatico

US Disrupts Russian Botnet

April 7, 2022 infossl

botnets, fbi, malware, national security policy, russia, Security technology, Uncategorized

The Justice Department announced the disruption of a Russian GRU-controlled botnet: The Justice Department today announced a court-authorized operation, conducted in March 2022, to disrupt a two-tiered global botnet of thousands of infected network hardware devices under the control of a threat actor known to security researchers as Sandworm, which the U.S. government has previously … Read More “US Disrupts Russian Botnet” »