Business, Cloud Computing, Cyber Security, Cybersecurity, Data Breach, Defense, E commerce, Finance, IT Security, Security, Technology

Agencies fall short of White House targets for cybersecurity

The White House continues to see an upward trend in new cybersecurity practices governmentwide, but the Obama administration is finding that not all agencies are living up to the cyber standards it set forth in last year’s cross-agency priority goals.

Published with the 2015 budget, the cross-agency priority (CAP) goals focus on longstanding and critical issues affecting agencies across the federal government. Cybersecurity — one of the first mentioned of the White House’s 15 CAP goals — is a mission-based goal to “[i]mprove awareness of security practices, vulnerabilities, and threats to the operating environment, by limiting access to only authorized users and implementing technologies and processes that reduce the risk from malicious activity,” according to a goal statement. It says the president views cybersecurity as “one of the most serious national security, public safety, and economic challenges we face as a nation.”

Read More

Standard
Business, Cloud Computing, Cyber Security, Data Breach, Defense, Finance, IT Security, Security, Technology

North Korea boosts cyber army to 6,000 troops to cause ‘physical and psychological paralysis’

North Korea has boosted its “cyber army” in a bid to cause “physical and psychological paralysis” in the South.

According to the South Korean Defence Ministry’s latest white paper, the hermit state’s military unit, which is dedicated to cyber activities, is now double that of South Korea’s.

“North Korea is currently running its 6,000 (member) workforce for cyber warfare and performing cyberattacks for physical and psychological paralysis inside South Korea such as causing troubles formilitary operations and national infrastructures,” said the South Korean Defence Ministry.

In 2013, South Korea blamed Pyongyang for the raft of crippling cyber attacks on its banks and broadcasters.

Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Data Breach, Defense, Finance, IT Security, Security, Technology

North Korea is doubling its skilled cyber security staffers

NORTH KOREA IS REPORTEDLYdoubling the number of its highly skilled cyber soldiers while still denying claims that it ever maliciously hacked anyone.

In case you missed it, North Korea has been accused of hacking like a dry cough. The country has had more fingers pointed at it than a button, and has got rather comfortable with denyingaccusations that it has done things like tear apart Sony Pictures Entertainment.

Now it is accused of doubling its cyber warfare posse, called Bureau 121, which the last time anyone checked was made up of some 3,000 skilled staffers.

Today, according to reports, including this one on Reuters, that number is 6,000 if South Korea is to be believed.

A white paper from the South Korean Defence Ministry said that the enlarged unit will be used to bring mischief on the South, and possibly other countries and their utilities.

Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Data Breach, Defense, Finance, Government, IT Security, Security, Technology

SONY HACK SIGNALS ‘NEW NORMAL’ IN CYBERSECURITY

The Sony hack copied a multinational company’s financial documents, its employees’ personally identifiable information and years’ worth ofembarrassing – and poorly written, it must be said – emails from high-level executives and released them all for the world to see.

But for many cybersecurity observers, the real eye opener was how the hack illustrates today’s cyber landscape: It’s likely to get worse before it gets better.

A growing collection of high-level computer security experts believe evidence points to aninsider-orchestrated attack, while the U.S. government quickly blamed and sanctioned North Korea, whose leader, Kim Jong-un, is portrayed in an unflattering fashion in the Sony-backed film, The Interview.

Meanwhile, as Sony’s image continues to tarnish with each leaked, scandalous revelation, the company experienced an added layer of suffering other data-breached companies — Target, Neiman Marcus and Home Depot — had avoided.

Read More

Standard
Business, Cloud Computing, Cyber Security, Data Breach, Defense, Finance, Government, IT Security, Security, Technology

Trend Micro Supports Cybersecurity Curriculum with Educational Grant

DALLAS, Jan. 7, 2015 /PRNewswire/ — Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global leader in security software, has announced a $10,000 donation to the Mission College Center for Innovation and Technology (MC²IT). The grant will provide resources and expertise to advise and help enhance cybersecurity course curriculum. As the security and privacy industry continues to expand and evolve, Trend Micro is committed to encouraging students to enter the cybersecurity field while empowering them with the core competency to do so.

“As part of our responsibility to help keep the world safe for exchanging digital information, Trend Micro is helping MC²IT rebuild existing curriculums while recommending relevant courses,” said Raimund Genes, CTO, Trend Micro. “The addition of these types of courses will help students to become future experts and next generation leaders in cyber security.”

As a member of the MC²IT advisory board, Trend Micro and other security and privacy leaders recognize the challenges presented by a lack of skilled cybersecurity professionals. With the advent of new technology, experts and professionals will need training on how to investigate and manage corresponding threats.

“With the expertise and knowledge that Trend Micro and the security advisory board bring to MC²IT, we can bridge the gap between technology and education,” said Daniel Peck, president, Mission College. “We have the right people collaborating, bringing their passion to the security profession to motivate students and others interested in learning more about technology careers.”

Read More

Standard
Business, Cloud Computing, Cyber Security, Data Breach, Defense, Finance, IT Security, Security, Technology

Ex-Federal Cybersecurity Director Gets 25 Years for Child Porn

A former cybersecurity chief at the Department of Health and Human Services Timothy DeFoggi was sentenced to 25 years in prison on child pornography charges Monday, according to the Department of Justice. “Using the same technological expertise he employed as Acting Director of Cyber Security at HHS, DeFoggi attempted to sexually exploit children and traffic in child pornography through an anonymous computer network of child predators,” Assistant Attorney General Leslie Caldwell said in a statement.

A federal jury in the District of Nebraska convicted DeFoggi of child exploitation and conspiracy to distribute child pornography on Aug. 26. The 56-year-old was a member of a pornography website on the Tor network — a web browser that helps users remain anonymous online — from May 2012 until December 2012 when it was taken down by the FBI, according to the statement. He is the sixth person to be convicted in an ongoing federal investigation into three Tor-network-based child pornography websites, according to the DOJ.

Read More

Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Data Breach, Defense, Finance, IT Security, Security, Technology

White House cyber czar: Even non-critical infrastructure vulnerable – Top Sony Corp. exec condemns hack at CES

WHITE HOUSE CYBER CZAR: EVEN NON-CRITICAL INFRASTRUCTURE VULNERABLE — The Sony hack demonstrated that attacks on non-critical infrastructure can still implicate fundamental American values, White House Cybersecurity Coordinator Michael Daniel tells Dave in a Q&A out this morning. The hack also means the Obama administration might need to expand its cybersecurity outreach to the private sector, Daniel said.

“Obviously, part of the issue with Sony is … the fact that it was aimed at, effectively, suppressing speech,” Daniel said. “While that’s not critical infrastructure, that’s a value the U.S. holds pretty dear.” As a result, the devastating Thanksgiving week attack on the studio “raises a very interesting question about exactly how broadly we have to cast the net” in cybersecurity information sharing and other policy areas, he said.

Daniel’s 2015 prognosis: “One of the things you can look for from us is continued effort to identify places where we can take executive action…We will be looking for all the cases where we can potentially take some executive action to further things like information sharing and improving cybersecurity. Another big area you should look for us to do is continue pressing on legislation…like information sharing, and there’s still the issue of getting a national data breach law.

Read More

Standard
Business, Cloud Computing, Cyber Security, Defense, Finance, IT Security, Security, Technology

As 2014 came to a close, we got a front row seat to the horror show that was the Sony hack.

As if we needed a case study to show us, we saw, with vivid clarity, what can happen when hackers run amok inside servers and start sharing confidential business content with the world — and we learned it gets ugly in a hurry.

We’re less than a week into the new year and already we’ve seen a major Bitcoin attack. You know that it’s only a matter of time before we hear about the next catastrophic system assault. It’s a bit like cybersecurity roulette. We keep spinning the wheel to find out who the next victim is.

The question is, why are we still so vulnerable, and why is the industry not banding together to solve this once and for all? Security matters to everyone from governments to finance to private sector companies of all sorts. Nobody wants to be the next JP Morgan, Home Depot or Sony. Yet everybody seems equally vulnerable. That’s why we must work together and put the best minds to bear on the problem to figure this out. The trouble is these are dreadfully difficult problems or we would have solved them by now.

Read More

Standard
Business, Cloud Computing, Cyber Security, cyber security legislation, Defense, Finance, IT Security, Security, Technology

The Sony Hack Wrecked A LOT Of Equipment

The November hack of Sony “resulted in the destruction of about three-quarters of the computers and servers at the studio’s main operations,” David Sanger and Michael Schmidt reported this weekend in the New York Times.

American officials had previously concluded that North Korea was “centrally involved,” and intelligence officials told the Times that the US intelligence community “concluded that the cyberattack was both state-sponsored and far more destructive than any seen before on American soil.”
Read more: 

Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Defense, Finance, IT Security, Security, Technology

Targeted attacks will become as prevalent as cybercrime, says Trend Micro: 2015 Technology Predictions

In 2015, more cyber criminals will turn to darknets and exclusive-access forums to share and sell crime ware; increased cyber activity will translate to better, bigger and more successful hacking tools and attempts; and exploit kits will target Android as mobile vulnerabilities play a bigger role in device infection. This is all according to Trend Micro, a global developer of cyber security solutions.

Trend Micro’s predictions about Internet security are all part of our second annual Technology Predictions series in which industry experts share their predictions with us about the hot tech trends that they think will take center stage in 2015. We’ll be sharing all of their predictions with you over the next several days. Read on for more predictions from Trend Micro (which were originally posted on Trend Micro’s blog here). Edited and reprinted below with permission.

Read More

Standard