From June 8 through June 26 more than 100 organizations participated in the fourth annual Cyber Guard exercise.
The Federal Trade Commission will share lessons learned from the 54 data security cases it has brought as part of its "Start With Security" program.
Vague language in a new Chinese security law has multinational tech firms concerned that China may use it to force them to build backdoors or provide encryption keys and source code.
A surveillance court judge ruled Monday that the NSA could temporarily resume its bulk data collection program during the transition period to the reforms of the USA Freedom Act signed into law June 2.
The attacks reportedly date back a year, and happened as recently as Tuesday morning.
OPM shut down one of its background investigation systems after it discovered a vulnerability, on that same day, the country's largest federal employees union filed a lawsuit against the agency.
A vulnerability found in OPM's e-QIP background check system has prompted the agency to shut it down until enhanced security measures are in place.
The U.S. Government Accountability Office identified nine new deficiencies in the Department of Treasury's Bureau of Fiscal Service's information systems.
The twins, Muneeb and Sohaib Akhter, face a maximum 50- and 30-year prison sentence, respectively.
An ATF official is under investigation by the DOJ for allegedly improperly accessing and downloading ATF employee data.
Europol, Ameripol and Interpol collaborated to arrest 130 individuals across 49 countries between June 16 and 17 as part of a global initiative targeting criminals using stolen credit card information to purchase airline tickets,
An FAA advisory committee aims to develop international design and testing standards that will thwart cyberattacks, a Wall Street Journal report reveals.
Even as U.S. and China pledge cooperation in cybersecurity matters, U.S. DNI John Clapper says China is the lead suspect in the OPM breach.
At a SINET Innovation Summit in New York, SEC Commissioner Luis Aguilar said the agency needs to do more and called for more formalized information sharing.
After analyzing information on Pastebin and similar sites, Recorded Future found login credentials for 47 agencies on the open web.
OPM Director Katherine Archuleta testified a second time for the House Oversight and Government Reform Committee and kept mum about exact victim figures.
During the Washington meetings, cybersecurity affairs were discussed, though officials tiptoed around the subject of the OPM breach.
The Securities and Exchange Commission (SEC) is asking hacked firms to provide details on their breaches where stolen information from emails may have been used for insider trading.
Michigan's DTMB failed to establish effective security management and access controls for several departments within the state, according to the Single Audit Report.
Justices ruled Monday that an Los Angeles ordinance, legalizing warrantless demands to inspect hotel guest registries, is unconstitutional.
National Archvies and Records Administration computers possibly accessed in connection to OPM breaches
NARA indicated the attackers, possibly the same as those involved in the OPM data breaches, accessed three desktop computers.
A Turkish man accused of stealing nearly $60 million in ATM heists and cyber attacks will be extradited to the U.S. after a custody battle.
Evidence seems to indicate that the Anthem data breach and OPM data breaches were carried out by the same Chinese actors.
The Georgia Department of Education has named its Technology Management Director Levette Williams as chief privacy officer.
The Obama administration said it would recommend that the president veto the act partially because of its simultaneous limitations on the Cyber Threat Intelligence Integration Center and expansion of its missions.
NIST published the guidance on Friday, following the close of a final comment period.
U.S. agent charged accused of stealing $820,000 worth of Bitcoin has reached a plea agreement.
Fallout from the OPM breaches continues with legislators calling for OPM Director Katherine Archuleta's firing and President Obama backing her as a qualified leader.
Lawmakers proposed "Protecting Individuals from Mass Aerial Surveillance Act" on Wednesday to require federal authorities to obtain warrants to conduct aerial surveillance.
A cyberespionage dubbed "Lotus Blossom" has carried out more than 50 cyber attacks against military and government targets in Hong Kong, Taiwan, Vietnam, the Philippines, and Indonesia.
The U.S. House Committee on Oversight and Government Reform held a hearing to clarify facts on the OPM data breaches and push the agency's staffers on why their security failed so spectacularly.
Incident and payroll reports were compromised in a breach of a North Dakota Workforce and Safety Institute (WSI) server, last Wednesday.
The IRS revealed steps it plans to take to fight identity theft and to protect taxpayer information at the time of filing.
Amazon issued its first transparency report on Friday with an accompanying blog post on its privacy policies.
Officials believe Chinese operatives accessed information from SF-86 forms filled out by candidates applying for security clearance.
Senate Republicans and Democrats traded barbs over Defense Authorization Act vote.
The OPM data breach likely exposed the Social Security numbers and personnel records of every federal worker and prompted a clash between members of Congress over the fate of cybersecurity legislation.
Europol arrested a total of 49 suspects Tuesday as the result of a joint investigation into a cybercrime gang that defrauded victims out of six million euro.
Attackers claiming to be with the SEA compromised the official website for the U.S. Army, posting
President Obama's press secretary declined to confirm China's role in the massive OPM breach, but left open the potential for retaliation if a nation state is determined to be involved.
A breach at the Office of Personnel Management, which may impact millions of federal workers, casts harsh light on vulnerabilities in federal IT systems.
A bill introduced in the House of Representatives would give the Justice Department $4 million hire and train additional FBI agents to enforce existing cybercrime laws.
Amnesty International and Privacy International proposed a seven-point plan on Friday to help protect human rights in the digital age.
Despite some police groups' opposition to the bill, the legislation was approved Wednesday by the state's Senate.
The Associated Press reported on Thursday that the White House administration and other government entities are investigating a massive breach at the U.S. Office of Personnel Management.
Connecticut Governor Dannel Malloy is expected to sign a bill that updates existing law to include data breach notification deadlines and requires one year of identity theft protection for those whose SSNs have been compromised.
Treasury Inspector General Russell George criticized the IRS in front a Senate committee hearing for failing to make a number of updates recommended by his office.
IRS Commissioner John Koskinen said budget cuts are prompting the agency to expand its online services even as watchdog groups warn the expansion could increase the risk of additional breaches.
Nuclear facilities around the world are facing daily cyberattacks on its systems, a United Nations nuclear watchdog group said.
After weeks of speculation and debate, certain surveillance provisions expired on Monday, and while government officials are sounding the alarm, others online seem unfazed.
More than one million people were affected when Japan's national pension system was compromised after employees opened a malicious email.
Congress took significant action in April to address cybersecurity information-sharing efforts.
The DHS has been thrust into the midst of threat intelligence sharing. But will Corporate America embrace the effort? Lee Sustar reports.
Misperceptions about Tor - and who is using it - are preventing its wider acceptance, says security researcher Runa Sandvik. Adam Greenberg reports..
While not a pressing problem at the moment, the hacking of on-board car networks could soon prove dangerous. Alan Earls reports.
There's been quite a bit of lip service paid to the ages-old concept of information sharing, says Illena Armstrong, VP, editorial, SC Magazine..
A new UN report says hindering encryption on devices and communications will negatively impact the right to freedom of opinion and expression.
A protest led by Fight for the Future gained steam as 14,000 websites included code that would redirect Congressional users to a protest page; while a coalition penned a letter to Senate leaders urged the rejection of a pair of FISA bills.
An IRS breach may have been instigated by attackers in Russia, a U.S. Congressman said.
North Dakota and Nevada have amended their breach notification laws as well as clarified specified what counts as personal information.
In a letter, ACLU encouraged the government to follow in the footsteps of some tech companies that have introduced "security researcher-friendly policies."
Megaupload domains that were seized by the U.S. Department of Justice three years ago are now being used to distribute malware.
The Florida Department of State sent a notification for the inadvertent release of personal information of 13,000 people.
For four days in March, attackers launched cyber assault on Iran's oil ministry but were rebuffed by country's Cyber Police (FATA).
While the U.S. House of Representatives overwhelmingly supported the USA Freedom Act, the Senate failed to garner enough votes to pass the new legislation.
The case has resulted in the first federal conviction of a website operator for such crimes.
The Internet Security Alliance called for data driven analysis to determine incentives, prioritization and cost-effectiveness to encourage voluntary use of NIST Framework.
A Friday night 57-42 vote in the Senate before the Memorial Day weekend fell short of the 60 votes needed to reauthorize Section 215 of the USA PATRIOT Act.
On Tuesday, the FBI's Internet Crime Complaint Center (IC3) published trends and findings from 2014.
A Nigerian man was sentenced to three years in prison for his role in a phishing scheme targeting U.S. government employees.
In a Wednesday blog post the FTC explained the process it follows to investigate security breaches and said it looks favorably on companies that cooperate in law enforcement investigations.
The USA Freedom Act's fate will soon be decided with Senate Majority Leader Mitch McConnell (R-Ky.) announcing on Thursday that the Senate will convene for a rare Saturday vote on the bill.
RadioShack and a coalition of 38 states have reached an agreement allowing RadioShack to sell the customer data under certain conditions.
The Justice Department claims that two of the six defendants are former employees of U.S. tech firms.
In a brief, to-the-point letter, a wide mix of organizations asked Senate leaders to abandon attempts to extend Section 215 of the USA PATRIOT Act.
The FTC has recommended a list of conditions that a bankruptcy court should impose on the sale of RadioShack's information assets.
The USA Freedom Act was passed by the House Wednesday but critics call for strengthening of bill in the Senate.
The U.S. House of Representatives overwhelmingly passed the USA Freedom Act today with 338 Representatives voting in favor of the bill and only 88 against it
While Congress ramps up for its discussions and vote on the USA Freedom Act, Washington state has taken privacy into its own hands through legislation requiring a warrant to use the devices.
The bill, which aims to end NSA's bulk collection of Americans' phone data, recently passed a House committee.
Managing compliance and risk has become one of the most torturous assignments in the enterprise, particularly for those that must adhere to the ever-increasing challenge of industry, state and federal regulations.
Princeton professor and former FTC chief technologist Ed Felten has joined the White House "techie" team as deputy CTO.
The Department of Veterans Affairs (VA) has awarded a $50 million contract to ASM Research to help improve security and audit readiness.
Navy Adm. and head of the National Security Agency (NSA) Michael Rogers on the U.S. government's stance on cyber attack retaliation.
Charles Harvey Eccleston allegedly targeted U.S Department of Energy and U.S. Nuclear Regulatory Commission employees with spear phishing emails designed to drop malware on their systems.
Russia and Chiana have agreed to join forces stop not hack each other as well as to fight cyber attacks as well.
A federal court has ruled that the search of a traveling businessman's laptop in 2013 was unreasonable and violated his privacy.
Germany has stopped its internet surveillance for the NSA after tensions arose over the US spying on European officials.
The Federal Trade Commission announced, in a release today, Katherine Race Brin will serve as the new FTC CPO
ACLU has sued a Virginia police department for collecting an LPR database on vehicles belonging to people not under investigation.
The European Commission has adopted a new 16-initiative strategy that would make it easier for consumers to access digital services and goods.
The Senate will likely vote on a trade bill over the expiring Foreign Intelligence Surveillance Act.
The IRS is assembling a team to combat the rising tide of identity theft and fraudulent tax return claims.
The FBI has created a new position to help coordinate its response efforts to cybercrimes and establish better data sharing relationships.
The Department of Justice confirmed that it is looking into its policies surrounding cell-site simulators and surveillance technology.
Indian officials met with a Japanese contingent last week to discuss how the two nations could work together to fight cyber crime and invest in India's IT sector.
U.S. Senate Commerce, Science and Transportation Committee chairman requests info on White House breach
Chairman John Thune penned a letter to President Obama this past Thursday to ask him to clarify whether any personal information was compromised in October's cyber attack on the White House.
The Department of Homeland Security (DHS) certified FireEye technology under the SAFETY Act, effectively shielding the company's customers from any liability in the event of a cyber terrorism attack.
The aviation authority instructed operators to take "interim action" to prevent loss of AC electrical power, until a software fix is available.
Sign up to our newsletters
SC Magazine Articles
- Samsung devices, including Galaxy S6, vulnerable to remote code execution
- Dridex banking malware spreading through new spam campaign
- More than 440K new Android malware strains found in Q1, study finds
- U.S., China agree to cybersecurity code of conduct
- Suspicious activity on LastPass network, data compromised
- FireKeepers confirms breach, says about 85,000 cards and other info are at risk
- Plex video sharing customers left at risk after hack attack
- Former Georgia-Pacific sysadmin charged with damaging protected computers
- Harvard University announces network intrusion, possible data exposure
- Saboteurs leverage RIPv1 for DDoS reflection attacks