DHS, FBI lead 'Cyber Guard' exercise in Virginia

From June 8 through June 26 more than 100 organizations participated in the fourth annual Cyber Guard exercise.

FTC launches 'Start With Security' initiative

The Federal Trade Commission will share lessons learned from the 54 data security cases it has brought as part of its "Start With Security" program.

Tech firms fear vague language in Chinese security law could be used to force backdoors

Vague language in a new Chinese security law has multinational tech firms concerned that China may use it to force them to build backdoors or provide encryption keys and source code.

FISC judge gives NSA go-ahead to resume surveillance

A surveillance court judge ruled Monday that the NSA could temporarily resume its bulk data collection program during the transition period to the reforms of the USA Freedom Act signed into law June 2.

FBI investigates physical attacks on San Francisco internet cables

The attacks reportedly date back a year, and happened as recently as Tuesday morning.

OPM shuts down background investigation system, faces lawsuit

OPM shuts down background investigation system, faces lawsuit

OPM shut down one of its background investigation systems after it discovered a vulnerability, on that same day, the country's largest federal employees union filed a lawsuit against the agency.

NEWS ALERT: OPM shuts down eQip system

A vulnerability found in OPM's e-QIP background check system has prompted the agency to shut it down until enhanced security measures are in place.

GAO issues report on Department of Treasury bureau

The U.S. Government Accountability Office identified nine new deficiencies in the Department of Treasury's Bureau of Fiscal Service's information systems.

Akhter twins plead guilty to State Dept. hack, other crimes

Akhter twins plead guilty to State Dept. hack, other crimes

The twins, Muneeb and Sohaib Akhter, face a maximum 50- and 30-year prison sentence, respectively.

DOJ investigates ATF official in possible data breach

An ATF official is under investigation by the DOJ for allegedly improperly accessing and downloading ATF employee data.

Europol, Interpol, and Ameripol arrest 130 suspected of airline fraud

Europol, Ameripol and Interpol collaborated to arrest 130 individuals across 49 countries between June 16 and 17 as part of a global initiative targeting criminals using stolen credit card information to purchase airline tickets,

FAA panel to focus on top cybersecurity risks to aircrafts

An FAA advisory committee aims to develop international design and testing standards that will thwart cyberattacks, a Wall Street Journal report reveals.

U.S., China agree to cybersecurity code of conduct

U.S., China agree to cybersecurity code of conduct

Even as U.S. and China pledge cooperation in cybersecurity matters, U.S. DNI John Clapper says China is the lead suspect in the OPM breach.

SEC commissioner urges info sharing, quick action at SINET summit

SEC commissioner urges info sharing, quick action at SINET summit

At a SINET Innovation Summit in New York, SEC Commissioner Luis Aguilar said the agency needs to do more and called for more formalized information sharing.

Study: Leaked credentials on Pastebin, similar sites, linked to 47 gov't agencies

Study: Leaked credentials on Pastebin, similar sites, linked to 47 gov't agencies

After analyzing information on Pastebin and similar sites, Recorded Future found login credentials for 47 agencies on the open web.

OPM breach possibly compromises more than 32 million current and former employees' PII

OPM breach possibly compromises more than 32 million current and former employees' PII

OPM Director Katherine Archuleta testified a second time for the House Oversight and Government Reform Committee and kept mum about exact victim figures.

In economic forum, U.S. talks gov't sponsored theft with Chinese officials

During the Washington meetings, cybersecurity affairs were discussed, though officials tiptoed around the subject of the OPM breach.

SEC asks firms for data breach details linked to insider trading

The Securities and Exchange Commission (SEC) is asking hacked firms to provide details on their breaches where stolen information from emails may have been used for insider trading.

Michigan State Audit finds several department systems vulnerable

Michigan State Audit finds several department systems vulnerable

Michigan's DTMB failed to establish effective security management and access controls for several departments within the state, according to the Single Audit Report.

Privacy advocates applaud Supreme Court ruling on hotel registry searches

Privacy advocates applaud Supreme Court ruling on hotel registry searches

Justices ruled Monday that an Los Angeles ordinance, legalizing warrantless demands to inspect hotel guest registries, is unconstitutional.

National Archvies and Records Administration computers possibly accessed in connection to OPM breaches

NARA indicated the attackers, possibly the same as those involved in the OPM data breaches, accessed three desktop computers.

Germany agrees to extradite Turkish hacker to U.S.

A Turkish man accused of stealing nearly $60 million in ATM heists and cyber attacks will be extradited to the U.S. after a custody battle.

Reports tie together Anthem and OPM data breaches

Evidence seems to indicate that the Anthem data breach and OPM data breaches were carried out by the same Chinese actors.

Georgia Dept. of Education names CPO

The Georgia Department of Education has named its Technology Management Director Levette Williams as chief privacy officer.

White House criticizes bill clarifying Cyber Threat Intelligence Integration Center missions

White House criticizes bill clarifying Cyber Threat Intelligence Integration Center missions

The Obama administration said it would recommend that the president veto the act partially because of its simultaneous limitations on the Cyber Threat Intelligence Integration Center and expansion of its missions.

NIST guidance helps ensure protection of gov't data stored by contractors

NIST guidance helps ensure protection of gov't data stored by contractors

NIST published the guidance on Friday, following the close of a final comment period.

Secret Service agent pleads guilty for pocketing $820K from Silk Road

U.S. agent charged accused of stealing $820,000 worth of Bitcoin has reached a plea agreement.

Obama backs OPM director as agency sends questionable email notifications

Obama backs OPM director as agency sends questionable email notifications

Fallout from the OPM breaches continues with legislators calling for OPM Director Katherine Archuleta's firing and President Obama backing her as a qualified leader.

Senators propose bill to ban warrantless federal aerial surveillance

Lawmakers proposed "Protecting Individuals from Mass Aerial Surveillance Act" on Wednesday to require federal authorities to obtain warrants to conduct aerial surveillance.

'Lotus Blossom' cyberattacks hit military, gov't targets in Southeast Asia

A cyberespionage dubbed "Lotus Blossom" has carried out more than 50 cyber attacks against military and government targets in Hong Kong, Taiwan, Vietnam, the Philippines, and Indonesia.

OPM breaches more serious to national security than 9/11, Congresswoman argues during hearing

OPM breaches more serious to national security than 9/11, Congresswoman argues during hearing

The U.S. House Committee on Oversight and Government Reform held a hearing to clarify facts on the OPM data breaches and push the agency's staffers on why their security failed so spectacularly.

North Dakota Workforce Safety Institute experiences a breach

Incident and payroll reports were compromised in a breach of a North Dakota Workforce and Safety Institute (WSI) server, last Wednesday.

IRS Security Summit yields recommendations to fight fraud

IRS Security Summit yields recommendations to fight fraud

The IRS revealed steps it plans to take to fight identity theft and to protect taxpayer information at the time of filing.

Amazon releases first transparency report

Amazon issued its first transparency report on Friday with an accompanying blog post on its privacy policies.

Private security clearance info accessed in second OPM breach

Private security clearance info accessed in second OPM breach

Officials believe Chinese operatives accessed information from SF-86 forms filled out by candidates applying for security clearance.

Senate vote falls short of approving defense act with CISA amendment

Senate vote falls short of approving defense act with CISA amendment

Senate Republicans and Democrats traded barbs over Defense Authorization Act vote.

OPM breach exposed SSNs, personnel records of all fed workers

OPM breach exposed SSNs, personnel records of all fed workers

The OPM data breach likely exposed the Social Security numbers and personnel records of every federal worker and prompted a clash between members of Congress over the fate of cybersecurity legislation.

49 arrested in Europe for phishing, MitM scheme that netted millions of euro

Europol arrested a total of 49 suspects Tuesday as the result of a joint investigation into a cybercrime gang that defrauded victims out of six million euro.

OMB mandates federal sites to use HTTPS connections

All publicly accessible federal websites and web services will soon be required to provide all services through secure HTTPS connections to better protect data and to establish a consistent government-wide privacy policy.

SEA claims hack on Army website

Attackers claiming to be with the SEA compromised the official website for the U.S. Army, posting

Motives for OPM hack unclear, U.S. could retaliate

Motives for OPM hack unclear, U.S. could retaliate

President Obama's press secretary declined to confirm China's role in the massive OPM breach, but left open the potential for retaliation if a nation state is determined to be involved.

OPM breach has widespread implications, may be work of China

OPM breach has widespread implications, may be work of China

A breach at the Office of Personnel Management, which may impact millions of federal workers, casts harsh light on vulnerabilities in federal IT systems.

House bill would give DOJ $4 million to fight cyber harassment

A bill introduced in the House of Representatives would give the Justice Department $4 million hire and train additional FBI agents to enforce existing cybercrime laws.

Amnesty International issues plan to protect human rights in digital age

Amnesty International issues plan to protect human rights in digital age

Amnesty International and Privacy International proposed a seven-point plan on Friday to help protect human rights in the digital age.

Calif. Senate approves bill requiring warrant before electronic device search

Despite some police groups' opposition to the bill, the legislation was approved Wednesday by the state's Senate.

NEWS ALERT: U.S. Office of Personnel Management suffers major breach

The Associated Press reported on Thursday that the White House administration and other government entities are investigating a massive breach at the U.S. Office of Personnel Management.

Connecticut lawmakers unanimously OK changes to strengthen data breach bill

Connecticut Governor Dannel Malloy is expected to sign a bill that updates existing law to include data breach notification deadlines and requires one year of identity theft protection for those whose SSNs have been compromised.

Treasury IG says recommended updates would have made breaching IRS harder

Treasury IG says recommended updates would have made breaching IRS harder

Treasury Inspector General Russell George criticized the IRS in front a Senate committee hearing for failing to make a number of updates recommended by his office.

IRS commissioner appears before Senate, attributes breach, in part, to budget cuts

IRS commissioner appears before Senate, attributes breach, in part, to budget cuts

IRS Commissioner John Koskinen said budget cuts are prompting the agency to expand its online services even as watchdog groups warn the expansion could increase the risk of additional breaches.

UN watchdog group warns of cyberattacks on nuclear facilities

Nuclear facilities around the world are facing daily cyberattacks on its systems, a United Nations nuclear watchdog group said.

Section 215 expired today, and the internet isn't worried

Section 215 expired today, and the internet isn't worried

After weeks of speculation and debate, certain surveillance provisions expired on Monday, and while government officials are sounding the alarm, others online seem unfazed.

Japan's national pension fund breach affects 1.25M

More than one million people were affected when Japan's national pension system was compromised after employees opened a malicious email.

Congress promotes sharing

Congress promotes sharing

Congress took significant action in April to address cybersecurity information-sharing efforts.

Public-private partnership?: Intelligence sharing

Public-private partnership?: Intelligence sharing

The DHS has been thrust into the midst of threat intelligence sharing. But will Corporate America embrace the effort? Lee Sustar reports.

Who goes there?: Tor Project

Who goes there?: Tor Project

Misperceptions about Tor - and who is using it - are preventing its wider acceptance, says security researcher Runa Sandvik. Adam Greenberg reports..

Fasten your seatbelts: Car hacking

Fasten your seatbelts: Car hacking

While not a pressing problem at the moment, the hacking of on-board car networks could soon prove dangerous. Alan Earls reports.

Information sharing at work

Information sharing at work

There's been quite a bit of lip service paid to the ages-old concept of information sharing, says Illena Armstrong, VP, editorial, SC Magazine..

UN report says encryption protects people's liberties and expression

UN report says encryption protects people's liberties and expression

A new UN report says hindering encryption on devices and communications will negatively impact the right to freedom of opinion and expression.

Websites redirect Congressional users to protest page, groups call for end of surveillance

A protest led by Fight for the Future gained steam as 14,000 websites included code that would redirect Congressional users to a protest page; while a coalition penned a letter to Senate leaders urged the rejection of a pair of FISA bills.

IRS attack may have originated in Russia

An IRS breach may have been instigated by attackers in Russia, a U.S. Congressman said.

North Dakota, Nevada amend data breach notification laws

North Dakota and Nevada have amended their breach notification laws as well as clarified specified what counts as personal information.

ACLU urges gov't to establish bug bounty programs, disclosure policies

ACLU urges gov't to establish bug bounty programs, disclosure policies

In a letter, ACLU encouraged the government to follow in the footsteps of some tech companies that have introduced "security researcher-friendly policies."

Megaupload sites seized by DOJ now distributing malware

Megaupload domains that were seized by the U.S. Department of Justice three years ago are now being used to distribute malware.

Florida issues notification for 'inadvertent release of information' to 13K

Florida issues notification for 'inadvertent release of information' to 13K

The Florida Department of State sent a notification for the inadvertent release of personal information of 13,000 people.

Iran says attack on oil ministry work of U.S. hackers

For four days in March, attackers launched cyber assault on Iran's oil ministry but were rebuffed by country's Cyber Police (FATA).

Senate fails to pass USA Freedom Act; McConnell moves for revote of Patriot Act extension

Senate fails to pass USA Freedom Act; McConnell moves for revote of Patriot Act extension

While the U.S. House of Representatives overwhelmingly supported the USA Freedom Act, the Senate failed to garner enough votes to pass the new legislation.

Site operator sentenced to 13 months for facilitating prostitution

Site operator sentenced to 13 months for facilitating prostitution

The case has resulted in the first federal conviction of a website operator for such crimes.

ISA presses for data to shape cyber security policy, encourages use of NIST framework

ISA presses for data to shape cyber security policy, encourages use of NIST framework

The Internet Security Alliance called for data driven analysis to determine incentives, prioritization and cost-effectiveness to encourage voluntary use of NIST Framework.

NEWS ALERT: Senate blocks USA PATRIOT Act reauthorization

A Friday night 57-42 vote in the Senate before the Memorial Day weekend fell short of the 60 votes needed to reauthorize Section 215 of the USA PATRIOT Act.

IC3 report says social media-related complaints quadrupled over five years

On Tuesday, the FBI's Internet Crime Complaint Center (IC3) published trends and findings from 2014.

Nigerian man sentenced to 3 years for phishing scam targeting gov't workers

A Nigerian man was sentenced to three years in prison for his role in a phishing scheme targeting U.S. government employees.

FTC gives thumbs up to companies that cooperate during breach probes

FTC gives thumbs up to companies that cooperate during breach probes

In a Wednesday blog post the FTC explained the process it follows to investigate security breaches and said it looks favorably on companies that cooperate in law enforcement investigations.

Senate gears up for Saturday USA Freedom Act vote; House breaks for recess

Senate gears up for Saturday USA Freedom Act vote; House breaks for recess

The USA Freedom Act's fate will soon be decided with Senate Majority Leader Mitch McConnell (R-Ky.) announcing on Thursday that the Senate will convene for a rare Saturday vote on the bill.

RadioShack, state coalition reach terms on sale of customer data

RadioShack and a coalition of 38 states have reached an agreement allowing RadioShack to sell the customer data under certain conditions.

Federal prosecutors charge Chinese nationals with trade secret theft

Federal prosecutors charge Chinese nationals with trade secret theft

The Justice Department claims that two of the six defendants are former employees of U.S. tech firms.

Letter urges McConnell, Senate leaders to let sun set on Section 215

In a brief, to-the-point letter, a wide mix of organizations asked Senate leaders to abandon attempts to extend Section 215 of the USA PATRIOT Act.

FTC recommends conditions for sale of RadioShack consumer information

FTC recommends conditions for sale of RadioShack consumer information

The FTC has recommended a list of conditions that a bankruptcy court should impose on the sale of RadioShack's information assets.

After House vote, USA Freedom Act moves to Senate

After House vote, USA Freedom Act moves to Senate

The USA Freedom Act was passed by the House Wednesday but critics call for strengthening of bill in the Senate.

NEWS ALERT: House of Representatives passes USA Freedom Act

The U.S. House of Representatives overwhelmingly passed the USA Freedom Act today with 338 Representatives voting in favor of the bill and only 88 against it

Washington state passes law requiring warrant for 'stingray' use

Washington state passes law requiring warrant for 'stingray' use

While Congress ramps up for its discussions and vote on the USA Freedom Act, Washington state has taken privacy into its own hands through legislation requiring a warrant to use the devices.

White House urges Congress to pass USA Freedom Act

The bill, which aims to end NSA's bulk collection of Americans' phone data, recently passed a House committee.

Getting a grip on enterprise risk

Managing compliance and risk has become one of the most torturous assignments in the enterprise, particularly for those that must adhere to the ever-increasing challenge of industry, state and federal regulations.

Former FTC chief technologist Felten is new White House deputy CTO

Princeton professor and former FTC chief technologist Ed Felten has joined the White House "techie" team as deputy CTO.

VA inks $50M contract to improve audit readiness

The Department of Veterans Affairs (VA) has awarded a $50 million contract to ASM Research to help improve security and audit readiness.

NSA chief confirms physical retaliation could be warranted in cyber attack response

Navy Adm. and head of the National Security Agency (NSA) Michael Rogers on the U.S. government's stance on cyber attack retaliation.

Former Nuclear Regulatory Commission employee arrested for alleged spear phishing campaign

Former Nuclear Regulatory Commission employee arrested for alleged spear phishing campaign

Charles Harvey Eccleston allegedly targeted U.S Department of Energy and U.S. Nuclear Regulatory Commission employees with spear phishing emails designed to drop malware on their systems.

Russia and China form cyber alliance

Russia and Chiana have agreed to join forces stop not hack each other as well as to fight cyber attacks as well.

Laptop search and seizure at CA border ruled unreasonable

A federal court has ruled that the search of a traveling businessman's laptop in 2013 was unreasonable and violated his privacy.

Germany stops NSA internet surveillance, sets parameters

Germany has stopped its internet surveillance for the NSA after tensions arose over the US spying on European officials.

Katherine Brin will serve as the new FTC CPO

The Federal Trade Commission announced, in a release today, Katherine Race Brin will serve as the new FTC CPO

Va. ACLU sues Fairfax police dept. for storing data from ALPR

ACLU has sued a Virginia police department for collecting an LPR database on vehicles belonging to people not under investigation.

EC Digital Single Market Strategy takes aim at geo-blocking, copyright restrictions

The European Commission has adopted a new 16-initiative strategy that would make it easier for consumers to access digital services and goods.

Harry Reid attempts to block trade vote until FISA is discussed

The Senate will likely vote on a trade bill over the expiring Foreign Intelligence Surveillance Act.

IRS adds new unit to fight cybercrime, fraud

The IRS is assembling a team to combat the rising tide of identity theft and fraudulent tax return claims.

FBI promotes Demarest to new cyber exec position

The FBI has created a new position to help coordinate its response efforts to cybercrimes and establish better data sharing relationships.

DOJ begins reviewing stingray uses and policies

DOJ begins reviewing stingray uses and policies

The Department of Justice confirmed that it is looking into its policies surrounding cell-site simulators and surveillance technology.

India and Japan form cyber alliance

Indian officials met with a Japanese contingent last week to discuss how the two nations could work together to fight cyber crime and invest in India's IT sector.

U.S. Senate Commerce, Science and Transportation Committee chairman requests info on White House breach

U.S. Senate Commerce, Science and Transportation Committee chairman requests info on White House breach

Chairman John Thune penned a letter to President Obama this past Thursday to ask him to clarify whether any personal information was compromised in October's cyber attack on the White House.

FireEye first cybersecurity firm awarded DHS SAFETY Act certification

FireEye first cybersecurity firm awarded DHS SAFETY Act certification

The Department of Homeland Security (DHS) certified FireEye technology under the SAFETY Act, effectively shielding the company's customers from any liability in the event of a cyber terrorism attack.

FAA: Software bug impacts Boeing 787 electrical power

The aviation authority instructed operators to take "interim action" to prevent loss of AC electrical power, until a software fix is available.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US