Cloud Computing, Cyber Security, cyber security legislation, Cybersecurity, Defense, Government, IT Security, Security, Technology

Snowden fallout still echoes across cyber industry

(Reuters) – Revelations by former NSA contractor Edward Snowden changed lives in the cyber community, from slowdowns in obtaining high-level security clearances to providing material for a “really good comedy routine.”

Experts at the Reuters Cybersecurity Summit this week were asked how Snowden, now living under asylum in Russia after exposing the National Security Agency’s phone and Internet spying programs in 2013, altered their worlds.

The creation of a mini “Snowden industry” is one on them.

“I give a lot more speeches,” said Michael Hayden, the former NSA and CIA director. “It has allowed someone of my background to comment on issues of national importance.”

The website of Leading Authorities, the speakers’ bureau that represents Hayden, shows the retired four-star general can command $20,000 to as much as $75,000 for a speech.

Read More

Advertisements
Standard
Cyber Security, cyber security legislation, Cybersecurity, Government, IT Security, Security, Technology

Millions of Security Systems Were Crumbled By Misfortune Cookie

Check Point Software Technologies recently revealed a flaw in millions of routers that allows the devices to be controlled by hackers.

The company’s Malware and Vulnerability Group detected 12 million Internet-connected devices that have the flaw.

The vulnerability, which Check Point dubbed “Misfortune Cookie,” can be found in the code of a commonly used embedded Web server, RomPager from AllegroSoft. A system attacker can exploit it to take control of a router and use it to steal data from both wired and wireless devices connected to a network.

Fixes for the flaw have been available since 2005, but 98 percent of the devices using RomPager haven’t been updated and still contain the vulnerable version of the software.

Read More

Standard
Cyber Security, cyber security legislation, Cybersecurity, Government, IT Security, Security, Technology

Cyberattack on German Iron Plant Caused ‘Widespread Damage’

According to The Wall Street Journal, a German federal agency has acknowledged in a report Wednesday that a cyberattack caused physical damage to an iron plant in the country. It was a rare admission by a government tying a cyber action to actual physical destruction.

The attackers gained access to an unnamed plant’s office network through a targeted malicious email and were ultimately able to cross over into the production network. The plant’s control systems were breached which “resulted in an incident where a furnace could not be shut down in the regular way and the furnace was in an undefined condition which resulted in massive damage to the whole system,” according to the report, called the IT Security Situation in Germany in 2014.

The report is created annually by Germany’s Federal Office for Information Security. The agency, known as Bundesamt für Sicherheit in der Informationstechnik or BSI, is in charge of managing computer and communication security for the German government including critical infrastructure. The agency did not respond to a request for additional information about the company’s name or the extent of the damage.

Read More

Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Defense, Finance, Government, IT Security, Security, Technology

Golden Networking’s Cyber Security World Conference 2015 New York City to Strategize Sony’s Agenda Beyond North Korean Cyber Attack and The Interview

Cyber Security World Conference 2015 New York City

Cyber Security World Conference 2015 New York City

Headlines in recent weeks have been consumed with the news of a cyberattack that targeted Sony’s movie studio as it geared to release The Interview, film that describes a CIA attempt to assassinate North Korean leader Kim Jong- un.

The company now could face tens of millions of dollars in costs from the massive computer hack that hobbled its operations for days. Major costs include investigations into what happened, computer repairs or replacements, and steps to prevent a future attack. Lost productivity while operations were disrupted will add to the price tag.

The attack, believed to be the worst of its type on a company on U.S. soil, also hits Sony’s reputation for a perceived failure to safeguard information. Recently on October that U.S. President Barack Obama signed an executive order to strengthen security measures for federal credit cards, and urged banks and retailers to follow suit in an effort to combat cyber theft and identity fraud. Several major corporations would take steps to make their own systems more secure and offer more customer protections as well.

These recommendations came after many other large companies including Adobe Systems, Automated Data Processing, Citigroup, E*Trade Financial, Fidelity Investments, Home Depot, HSBC, JPMorgan Chase, Nasdaq OMX, Neiman Marcus, Target and Wal-mart had suffered high-profile cyber security breaches. It is not beyond the realm of possibilities to think that today the information of every American has already been compromised in any of these publicly disclosed attacks.

For instance, JPMorgan Chase, America’s largest bank with $2.39 trillion in assets, has revealed that about 76 million households and 7 million of small-business customers have been impacted by a cybersecurity attack in one of the most sweeping disclosed global breaches. Unknown attackers stole customers’ contact information, which included names, email addresses, phone numbers and addresses, affecting an amount equivalent to two-thirds of American households.

Cyber Security World Conference 2015 New York City (http://www.CyberSecurityWorldConference.com) will provide a platform for information security authorities and innovative service providers to distil their latest research for hundreds of senior executives focused on protecting enterprise and government valuable assets. Cyber security experts will discuss subjects such as protecting individuals and companies against cyber-attacks, biometrics as the future of security, risks brought by mobile computing, and protecting corporate and national infrastructure against foreign attacks.

Top-of-mind topics that Cyber Security World Conference 2015 will discuss include:

  • Cyber Security Megatrends Security Professionals can’t Ignore Today
  • Strengthening the Security of Industry-wide Technology Infrastructure
  • How Hackers Really Operate to Obtain Financial Data
  • Cyber Security and its Role in the Overall Security of the United States
  • Key Considerations about Security in the Internet of Things Age
  • Designing and Managing Effective Information Security Programs

Cyber Security World Conference 2015 is produced by Golden Networking, the premier networking community for business and technology executives, entrepreneurs and investors. Panelists, speakers and sponsors are invited to contact Golden Networking by sending an email to information@goldennetworking.com.

Standard
Business, Cloud Computing, Cyber Security, cyber security legislation, Cybersecurity, E commerce, Education, Government, Healthcare, IT Security, Security, Technology

Cybersecurity Cooperation between China and United States to be Analyzed by The Speed Traders and Knightmare on Wall Street’s Edgar Perez at Golden Networking’s Cyber Security World Conference 2015 New York City

Cyber Security World Conference 2015 New York City

Cyber Security World Conference 2015 New York City

Cybersecurity has historically been a contentious issue between China and the United States, yet both countries would benefit from strategic cooperation in this area, according to the Capstone Report by the School of International and Public Affairs, Columbia University. The two global powers are vested stakeholders in an interconnected international system of trade, finance, and other globalized institutional systems. Cyber networks underpin the critical infrastructures of such systems, and cyber protection necessitates the information exchange of threats as well as coordinated efforts in managing defensive capabilities.

Because of the subtlety surrounding cultural values, it is necessary to pay attention to some distinct facets of Chinese culture, especially bureaucratic culture, which Chinese counterparts may reflect. To build productive dialogue, the report suggests, it is essential to understand the differences in culture and communications between the two countries. Unlike the U.S., Chinese strategic culture is characterized by ambiguity, disinformation and secrecy. Through this approach, China aims to achieve its strategic objectives, thereby “winning without fighting.” The way in which an entity shares information reflects its strategic culture, which in China is traditionally dominated by the state. Differences in cultural values and assumptions are usually invisible, often subconscious, and difficult to discern by an outside observer.

Amidst this critical differences, Edgar Perez (http://mredgarperez.com), author of Knightmare on Wall Street, will discuss the state of the cybersecurity dialogue between the United States and China at Cyber Security World Conference 2015 New York City (http://www.CyberSecurityWorldConference.com). The forum will provide a platform for information security authorities and innovative service providers to distil their latest research for hundreds of senior executives focused on protecting enterprise and government valuable assets. Cyber security experts will discuss subjects such as protecting individuals and companies against cyber-attacks, biometrics as the future of security, risks brought by mobile computing, and protecting corporate and national infrastructure against foreign attacks.

Mr. Perez has been engaged to present at the Council on Foreign Relations, Vadym Hetman Kyiv National Economic University (Kiev), U.S. Securities and Exchange Commission (Washington DC), Quant Investment & HFT Summit APAC 2012 (Shanghai), CFA Singapore, Hong Kong Securities Institute, Courant Institute of Mathematical Sciences at New York University, University of International Business and Economics (Beijing), Hult International Business School (London and Shanghai) and Pace University (New York), among other public and private institutions.

Mr. Perez is widely regarded as the preeminent global expert in technology and investing. He is the author of Knightmare on Wall Street and The Speed Traders and has been interviewed on CNN, CNBC, FOX BUSINESS, Bloomberg TV, CNN en Español, CCTV China, BNN, Bankier.pl, Leaderonomics, TheStreet.com, GPW Media, Channel NewsAsia’s Business Tonight and Cents & Sensibilities. Mr. Perez has been globally featured on FXFactor, Columbia Business, OpenMarkets, Sohu, News.Sina.com, Yicai, eastmoney, Caijing, ETF88.com, 360doc, AH Radio, CNFOL.com, CITICS Futures, Tongxin Securities, ZhiCheng.com, CBNweek.com, Caixin, Futures Daily, Xinhua, CBN Newswire, Chinese Financial News, ifeng.com, International Finance News, hexun.com, Finance.QQ.com, Finance.Sina.com, The Korea Times, The Korea Herald, The Star, The Malaysian Insider, BMF 89.9, iMoney Hong Kong, CNBC, Bloomberg Hedge Fund Brief, The Wall Street Journal, The New York Times, Dallas Morning News, Valor Econômico, FIXGlobal Trading, TODAY Online, Oriental Daily News and Business Times.

Mr. Perez was a vice president at Citigroup, a senior consultant at IBM, and a strategy consultant at McKinsey & Company in New York City. Mr. Perez has an undergraduate degree from Universidad Nacional de Ingeniería in Lima, Peru (1994), a Master of Administration from Universidad ESAN in Lima, Peru (1997) and a Master of Business Administration from Columbia Business School in New York, with a dual major in Finance and Management (2002). He belongs to the Beta Gamma Sigma honor society. Mr. Perez resides in the New York City area and is an accomplished salsa and hustle dancer.

About Cyber Security World Conference 2015

Renowned information security experts and innovative service providers will present at Cyber Security World Conference 2015 their latest thinking to hundreds of senior executives focused on protecting enterprises and governmental agencies.

Standard
Golden Networking's Cyber Security World Conference 2014 New York City
Business, Cloud Computing, Cyber Security, Cybersecurity, Defense, Education, Finance, Government, IT Security, Security, Technology

State Department Computers Hacked, Email Shut Down while Repairing Possible Damage from Suspected Hacker Attack

The State Department has taken the unprecedented step of shutting down its entire unclassified email system as technicians repair possible damage from a suspected hacker attack.

A senior department official said Sunday that “activity of concern” was detected in the system around the same time as a previously reported incident that targeted the White House computer network.

That incident was made public in late October, but there was no indication then that the State Department had been affected. Since then, a number of agencies, including the U.S. Postal Service and the National Weather Service, have reported attacks.

Read more

Standard
Business, Cloud Computing, Cyber Security, cyber security legislation, Cybersecurity, Defense, Government, IT Security, Security, Technology

Obama Signs 5 Cybersecurity Bills

First Time in Dozen Years Major CyberSec Bills Become Law

Without ceremony, President Obama on Dec. 18 signed five cybersecurity-related bills, including legislation to update the Federal Information Security Management Act, the law that governs federal government IT security.

See Also: How to Implement the NIST Cybersecurity Framework Using COBIT 5

It’s the first time in 12 years that significant cybersecurity legislation has become law. The last major piece of cybersecurity law to be passed by Congress and signed by a president was the E-Government Act of 2002, which included FISMA.

Standard