AT&T asks FCC to drastically reduce $100M fine

AT&T asked the Federal Communications Commission (FCC) to limit its fine to no more than $16,000 and to delay non-monetary sanctions until they could undergo judicial review.

Survey: Nearly all Americans support and want retaliation for cyberattacks

Survey: Nearly all Americans support and want retaliation for cyberattacks

A new poll indicates that Americans want the government to retaliate for cyberattacks that compromise sensitive data.

NSA to lose telephone metadata database access in November

The White House detailed its plans for after the 180-day transition period covered under the USA Freedom Act.

CIA may pull spies from China after OPM hacks

After data on 21.5 million former and current OPM workers was exposed, U.S. officials are concerned that hackers can use the information to determine the identity of spies operating in China.

Federal appeals court rules no expectation of privacy for preventable 'butt dials'

Federal appeals court rules no expectation of privacy for preventable 'butt dials'

A federal appeals court ruled there is no expectation of privacy for "butt dials" that a caller doesn't' take reasonable steps to prevent.

OPM bringing users back on to e-QIP in increments

OPM bringing users back on to e-QIP in increments

After a pair of breaches rocked OPM and a vulnerability was discovered in the agency's e-QIP system; now user access is slowly being re-enabled.

Senators introduce bill to expand DHS oversight of federal .gov domain

A bipartisan group of senators introduced legislation, that would increase the Department of Homeland Security's role in protecting federal the .gov domain.

FTC alleges LifeLock violated 2010 settlement by lying about security measures

LifeLock is being investigated by the FTC for the second time after allegedly making false claims about security measures.

Security pros issue comments before Wassenaar Arrangement deadline

Security pros issue comments before Wassenaar Arrangement deadline

The call for comments on the Wassenaar Arrangement closed on Monday after multiple heavy hitting tech experts and companies filed their thoughts.

Exclusive: Visa application portal closed following SC Magazine investigation

Exclusive: Visa application portal closed following SC Magazine investigation

VFS Global closes visa application portal following SC Magazine investigation. Editable Schengen visa application forms accessed FOUR DAYS after operating company VFS Global said a vulnerability had been fixed.

Former Senator says Edward Snowden should be publicly executed

During a speech earlier in July, retired Sen. Saxby Chambliss (R-Ga.), drew parallels between breaches at the Office of Personnel Management (OPM) and Edward Snowden's actions.

OPM rewrites privacy policy to allow for system investigations

The Office of Personnel Management (OPM) rewrote its privacy regulations to allow legislators and outside entities to look through its databases for signs of data breaches.

DHS employees found using private web-based email on gov't PCs

Certain employees at the Department of Homeland Security were exempted from the ban on private web-based email use on work computers.

Israel and U.S. issue joint statement on cybersecurity coordination

The U.S. Deputy Secretary of Homeland Security traveled to Israel to discuss the two countries' coordination on cybersecurity.

Rep. McCaul says U.S. should target ISIS social media influence

Rep. Michael McCaul (R-TX) said the U.S. should target the social media influence that the Islamic State uses to inspire domestic attacks.

Every Child Achieves Act requires DOE to submit cybereducation report

An amendment to the Every Child Achieves Act takes on cybersecurity education in an effort to address worker shortage.

Lauri Love rearrested in U.K.

Lauri Love, an Englishman accused of hacking into the U.S. Army, NASA and the Federal Reserve, was rearrested on Wednesday on an extradition warrant.

Thousands of vulnerabilities identified in government system

The U.S. Department of the Interior received an Inspector General report that pointed out nearly 3,000 vulnerabilities in its system.

Army National Guard breach affects 850K, not related to OPM

The Army National Guard said a data breach that may have impacted more than 850,000 current and former members.

ACLU asks appeals court to bar NSA bulk collection of data

ACLU asks appeals court to bar NSA bulk collection of data

The government has argued that it can continue to collect data during the 180-day transition period to the USA Freedom Act.

Black market 'Darkode' bust leads to arrests in 20 countries

Black market 'Darkode' bust leads to arrests in 20 countries

According to the FBI, the crackdown led to U.S. indictments against 12 individuals, including Darkode's alleged administrator.

Legislators call for lifetime identity protection for OPM data breach victims

Nearly seven percent of the U.S. population was impacted in the OPM data breaches, and nine legislators are now calling for lifetime identity theft protection for them.

Iran deal prompts concerns over country's growing cyber program

A diplomatic agreement that restricts Iran's nuclear program, may indirectly shift its focus towards cyber warfare efforts.

Russian hackers exploit unusual Java zero-day to hit unnamed NATO country

Russian hackers exploit unusual Java zero-day to hit unnamed NATO country

Cyber-espionage group 'Pawn Storm' has been exploiting an unusual Java zero-day vulnerability to carry out drive-by-download attacks on a NATO country and US defence company, according to Trend Micro.

Canadian court allows expansion of student loan breach lawsuit

A Canadian federal court will allow students more options to pursue damages in a class action lawsuit against the government.

OPM repercussions might never be fully understood, says former White House cybersecurity advisor

OPM repercussions might never be fully understood, says former White House cybersecurity advisor

Although the number of data breach victims is now qualified, the true effects of the breaches might continue for years to come.

Government agency initiates vulnerability disclosure discussions

Government agency initiates vulnerability disclosure discussions

The National Telecommunications and Information Administration (NTIA) announced on Thursday plans to launch its first cybersecurity "multistakeholder process" with a focus on vulnerability disclosure.

OPM Director Katherine Archuleta resigns

OPM Director Katherine Archuleta resigned from her post following the release of details about the agency's second data breach.

21.5 million SSNs stolen in second OPM breach, along with fingerprints and background info

OPM released the details of its second data breach on Thursday and said personal information, SSNs and fingerprints were all stolen.

Threat intelligence survey: 43 percent only share info internally

Threat intelligence survey: 43 percent only share info internally

Many information security pros said threats discovered were shared strictly within the organization, but 81 percent wanted more public-to-private sector sharing.

Foreign hackers briefly commandeer German missile systems

Although a report indicated that a German missile system was taken over by hackers, a military spokesperson denied the claims.

Encryption hearing focuses on retaining access to users' devices

FBI Director James Comey brought his case against encryption to the Senate Judiciary Committee on Wednesday and said it hampers terrorism investigations.

Comey again denounces default encryption in editorial

While James Comey continues to argue that encryption will harm Americans, a group of security experts, including Susan Landau and Bruce Schneier, released a paper on Tuesday saying otherwise.

Nearly all Japanese pension system files kept unprotected pre-breach

An investigation into the compromising of Japan's national pension system found that 99 percent of the accessed files were without any sort of password protection.

Hacking Team hacked; leaked documents confirm sale of software to Sudan and Ethiopia

Hacking Team hacked; leaked documents confirm sale of software to Sudan and Ethiopia

An unknown number of hackers accessed, downloaded and posted at least 400 GB-worth of documents from Hacking Team, a company often seen as aiding in human rights violations.

DHS, FBI lead 'Cyber Guard' exercise in Virginia

From June 8 through June 26 more than 100 organizations participated in the fourth annual Cyber Guard exercise.

FTC launches 'Start With Security' initiative

The Federal Trade Commission will share lessons learned from the 54 data security cases it has brought as part of its "Start With Security" program.

Tech firms fear vague language in Chinese security law could be used to force backdoors

Vague language in a new Chinese security law has multinational tech firms concerned that China may use it to force them to build backdoors or provide encryption keys and source code.

FISC judge gives NSA go-ahead to resume surveillance

A surveillance court judge ruled Monday that the NSA could temporarily resume its bulk data collection program during the transition period to the reforms of the USA Freedom Act signed into law June 2.

FBI investigates physical attacks on San Francisco internet cables

The attacks reportedly date back a year, and happened as recently as Tuesday morning.

OPM shuts down background investigation system, faces lawsuit

OPM shuts down background investigation system, faces lawsuit

OPM shut down one of its background investigation systems after it discovered a vulnerability, on that same day, the country's largest federal employees union filed a lawsuit against the agency.

NEWS ALERT: OPM shuts down eQip system

A vulnerability found in OPM's e-QIP background check system has prompted the agency to shut it down until enhanced security measures are in place.

GAO issues report on Department of Treasury bureau

The U.S. Government Accountability Office identified nine new deficiencies in the Department of Treasury's Bureau of Fiscal Service's information systems.

Akhter twins plead guilty to State Dept. hack, other crimes

Akhter twins plead guilty to State Dept. hack, other crimes

The twins, Muneeb and Sohaib Akhter, face a maximum 50- and 30-year prison sentence, respectively.

DOJ investigates ATF official in possible data breach

An ATF official is under investigation by the DOJ for allegedly improperly accessing and downloading ATF employee data.

Europol, Interpol, and Ameripol arrest 130 suspected of airline fraud

Europol, Ameripol and Interpol collaborated to arrest 130 individuals across 49 countries between June 16 and 17 as part of a global initiative targeting criminals using stolen credit card information to purchase airline tickets,

FAA panel to focus on top cybersecurity risks to aircrafts

An FAA advisory committee aims to develop international design and testing standards that will thwart cyberattacks, a Wall Street Journal report reveals.

U.S., China agree to cybersecurity code of conduct

U.S., China agree to cybersecurity code of conduct

Even as U.S. and China pledge cooperation in cybersecurity matters, U.S. DNI John Clapper says China is the lead suspect in the OPM breach.

SEC commissioner urges info sharing, quick action at SINET summit

SEC commissioner urges info sharing, quick action at SINET summit

At a SINET Innovation Summit in New York, SEC Commissioner Luis Aguilar said the agency needs to do more and called for more formalized information sharing.

Study: Leaked credentials on Pastebin, similar sites, linked to 47 gov't agencies

Study: Leaked credentials on Pastebin, similar sites, linked to 47 gov't agencies

After analyzing information on Pastebin and similar sites, Recorded Future found login credentials for 47 agencies on the open web.

OPM breach possibly compromises more than 32 million current and former employees' PII

OPM breach possibly compromises more than 32 million current and former employees' PII

OPM Director Katherine Archuleta testified a second time for the House Oversight and Government Reform Committee and kept mum about exact victim figures.

In economic forum, U.S. talks gov't sponsored theft with Chinese officials

During the Washington meetings, cybersecurity affairs were discussed, though officials tiptoed around the subject of the OPM breach.

SEC asks firms for data breach details linked to insider trading

The Securities and Exchange Commission (SEC) is asking hacked firms to provide details on their breaches where stolen information from emails may have been used for insider trading.

Michigan State Audit finds several department systems vulnerable

Michigan State Audit finds several department systems vulnerable

Michigan's DTMB failed to establish effective security management and access controls for several departments within the state, according to the Single Audit Report.

Privacy advocates applaud Supreme Court ruling on hotel registry searches

Privacy advocates applaud Supreme Court ruling on hotel registry searches

Justices ruled Monday that an Los Angeles ordinance, legalizing warrantless demands to inspect hotel guest registries, is unconstitutional.

National Archives and Records Administration computers possibly accessed in connection to OPM breaches

NARA indicated the attackers, possibly the same as those involved in the OPM data breaches, accessed three desktop computers.

Germany agrees to extradite Turkish hacker to U.S.

A Turkish man accused of stealing nearly $60 million in ATM heists and cyber attacks will be extradited to the U.S. after a custody battle.

Reports tie together Anthem and OPM data breaches

Evidence seems to indicate that the Anthem data breach and OPM data breaches were carried out by the same Chinese actors.

Georgia Dept. of Education names CPO

The Georgia Department of Education has named its Technology Management Director Levette Williams as chief privacy officer.

White House criticizes bill clarifying Cyber Threat Intelligence Integration Center missions

White House criticizes bill clarifying Cyber Threat Intelligence Integration Center missions

The Obama administration said it would recommend that the president veto the act partially because of its simultaneous limitations on the Cyber Threat Intelligence Integration Center and expansion of its missions.

NIST guidance helps ensure protection of gov't data stored by contractors

NIST guidance helps ensure protection of gov't data stored by contractors

NIST published the guidance on Friday, following the close of a final comment period.

Secret Service agent pleads guilty for pocketing $820K from Silk Road

U.S. agent charged accused of stealing $820,000 worth of Bitcoin has reached a plea agreement.

Obama backs OPM director as agency sends questionable email notifications

Obama backs OPM director as agency sends questionable email notifications

Fallout from the OPM breaches continues with legislators calling for OPM Director Katherine Archuleta's firing and President Obama backing her as a qualified leader.

Senators propose bill to ban warrantless federal aerial surveillance

Lawmakers proposed "Protecting Individuals from Mass Aerial Surveillance Act" on Wednesday to require federal authorities to obtain warrants to conduct aerial surveillance.

'Lotus Blossom' cyberattacks hit military, gov't targets in Southeast Asia

A cyberespionage dubbed "Lotus Blossom" has carried out more than 50 cyber attacks against military and government targets in Hong Kong, Taiwan, Vietnam, the Philippines, and Indonesia.

OPM breaches more serious to national security than 9/11, Congresswoman argues during hearing

OPM breaches more serious to national security than 9/11, Congresswoman argues during hearing

The U.S. House Committee on Oversight and Government Reform held a hearing to clarify facts on the OPM data breaches and push the agency's staffers on why their security failed so spectacularly.

North Dakota Workforce Safety Institute experiences a breach

Incident and payroll reports were compromised in a breach of a North Dakota Workforce and Safety Institute (WSI) server, last Wednesday.

IRS Security Summit yields recommendations to fight fraud

IRS Security Summit yields recommendations to fight fraud

The IRS revealed steps it plans to take to fight identity theft and to protect taxpayer information at the time of filing.

Amazon releases first transparency report

Amazon issued its first transparency report on Friday with an accompanying blog post on its privacy policies.

Private security clearance info accessed in second OPM breach

Private security clearance info accessed in second OPM breach

Officials believe Chinese operatives accessed information from SF-86 forms filled out by candidates applying for security clearance.

Senate vote falls short of approving defense act with CISA amendment

Senate vote falls short of approving defense act with CISA amendment

Senate Republicans and Democrats traded barbs over Defense Authorization Act vote.

OPM breach exposed SSNs, personnel records of all fed workers

OPM breach exposed SSNs, personnel records of all fed workers

The OPM data breach likely exposed the Social Security numbers and personnel records of every federal worker and prompted a clash between members of Congress over the fate of cybersecurity legislation.

49 arrested in Europe for phishing, MitM scheme that netted millions of euro

Europol arrested a total of 49 suspects Tuesday as the result of a joint investigation into a cybercrime gang that defrauded victims out of six million euro.

OMB mandates federal sites to use HTTPS connections

All publicly accessible federal websites and web services will soon be required to provide all services through secure HTTPS connections to better protect data and to establish a consistent government-wide privacy policy.

SEA claims hack on Army website

Attackers claiming to be with the SEA compromised the official website for the U.S. Army, posting

Motives for OPM hack unclear, U.S. could retaliate

Motives for OPM hack unclear, U.S. could retaliate

President Obama's press secretary declined to confirm China's role in the massive OPM breach, but left open the potential for retaliation if a nation state is determined to be involved.

OPM breach has widespread implications, may be work of China

OPM breach has widespread implications, may be work of China

A breach at the Office of Personnel Management, which may impact millions of federal workers, casts harsh light on vulnerabilities in federal IT systems.

House bill would give DOJ $4 million to fight cyber harassment

A bill introduced in the House of Representatives would give the Justice Department $4 million hire and train additional FBI agents to enforce existing cybercrime laws.

Amnesty International issues plan to protect human rights in digital age

Amnesty International issues plan to protect human rights in digital age

Amnesty International and Privacy International proposed a seven-point plan on Friday to help protect human rights in the digital age.

Calif. Senate approves bill requiring warrant before electronic device search

Despite some police groups' opposition to the bill, the legislation was approved Wednesday by the state's Senate.

NEWS ALERT: U.S. Office of Personnel Management suffers major breach

The Associated Press reported on Thursday that the White House administration and other government entities are investigating a massive breach at the U.S. Office of Personnel Management.

Connecticut lawmakers unanimously OK changes to strengthen data breach bill

Connecticut Governor Dannel Malloy is expected to sign a bill that updates existing law to include data breach notification deadlines and requires one year of identity theft protection for those whose SSNs have been compromised.

Treasury IG says recommended updates would have made breaching IRS harder

Treasury IG says recommended updates would have made breaching IRS harder

Treasury Inspector General Russell George criticized the IRS in front a Senate committee hearing for failing to make a number of updates recommended by his office.

IRS commissioner appears before Senate, attributes breach, in part, to budget cuts

IRS commissioner appears before Senate, attributes breach, in part, to budget cuts

IRS Commissioner John Koskinen said budget cuts are prompting the agency to expand its online services even as watchdog groups warn the expansion could increase the risk of additional breaches.

UN watchdog group warns of cyberattacks on nuclear facilities

Nuclear facilities around the world are facing daily cyberattacks on its systems, a United Nations nuclear watchdog group said.

Section 215 expired today, and the internet isn't worried

Section 215 expired today, and the internet isn't worried

After weeks of speculation and debate, certain surveillance provisions expired on Monday, and while government officials are sounding the alarm, others online seem unfazed.

Japan's national pension fund breach affects 1.25M

More than one million people were affected when Japan's national pension system was compromised after employees opened a malicious email.

Congress promotes sharing

Congress promotes sharing

Congress took significant action in April to address cybersecurity information-sharing efforts.

Public-private partnership?: Intelligence sharing

Public-private partnership?: Intelligence sharing

The DHS has been thrust into the midst of threat intelligence sharing. But will Corporate America embrace the effort? Lee Sustar reports.

Who goes there?: Tor Project

Who goes there?: Tor Project

Misperceptions about Tor - and who is using it - are preventing its wider acceptance, says security researcher Runa Sandvik. Adam Greenberg reports..

Fasten your seatbelts: Car hacking

Fasten your seatbelts: Car hacking

While not a pressing problem at the moment, the hacking of on-board car networks could soon prove dangerous. Alan Earls reports.

Information sharing at work

Information sharing at work

There's been quite a bit of lip service paid to the ages-old concept of information sharing, says Illena Armstrong, VP, editorial, SC Magazine..

UN report says encryption protects people's liberties and expression

UN report says encryption protects people's liberties and expression

A new UN report says hindering encryption on devices and communications will negatively impact the right to freedom of opinion and expression.

Websites redirect Congressional users to protest page, groups call for end of surveillance

A protest led by Fight for the Future gained steam as 14,000 websites included code that would redirect Congressional users to a protest page; while a coalition penned a letter to Senate leaders urged the rejection of a pair of FISA bills.

IRS attack may have originated in Russia

An IRS breach may have been instigated by attackers in Russia, a U.S. Congressman said.

North Dakota, Nevada amend data breach notification laws

North Dakota and Nevada have amended their breach notification laws as well as clarified specified what counts as personal information.

ACLU urges gov't to establish bug bounty programs, disclosure policies

ACLU urges gov't to establish bug bounty programs, disclosure policies

In a letter, ACLU encouraged the government to follow in the footsteps of some tech companies that have introduced "security researcher-friendly policies."

Megaupload sites seized by DOJ now distributing malware

Megaupload domains that were seized by the U.S. Department of Justice three years ago are now being used to distribute malware.

Florida issues notification for 'inadvertent release of information' to 13K

Florida issues notification for 'inadvertent release of information' to 13K

The Florida Department of State sent a notification for the inadvertent release of personal information of 13,000 people.

Iran says attack on oil ministry work of U.S. hackers

For four days in March, attackers launched cyber assault on Iran's oil ministry but were rebuffed by country's Cyber Police (FATA).

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US