Tag: Government

Is the lack of women in the information security field making us more vulnerable to attack? (Image courtesy of defense.gov.)

Opinion: the Lack of Women in Cybersecurity is both a Problem and a Threat

In-brief: The author argues that the devaluation of traditionally “soft” skills like empathy, communication and collaboration in the information security space may be hampering the ability of IT security teams to respond to human-focused threats and attacks.

Mira botnet infections globally. (Image courtesy of Imperva.)

Report: Millions (and Millions) of Devices Vulnerable in latest Mirai Attacks

In-brief: Attacks that took 900,000 broadband routers offline in Germany have hit other countries as well, as security experts warn that the number of devices vulnerable to attack could number in the millions. 

Fare collection systems, email and other critical systems used by San Francisco's transit agency were crippled by an outbreak of ransomware over the weekend, the agency confirmed. (Image courtesy of SFMTA.)

Ransomware Used Against Muni Known As Harsh, Virulent

San Francisco’s Municipal Transportation Agency (MTA) was hit with a ransomware attack over the weekend, disrupting a number of agency computer systems including email, the MTA said in a statement on Sunday. And security experts say that the ransomware used has a reputation for virulence. Computer terminals observed at MTA (or “Muni”) stations displayed a message that read, in part, “You Hacked. All Data Encrypted” over the weekend, paralyzing toll collection operations and forcing the MTA to open its turnstiles and let the public ride for free. According to a report by The San Francisco Examiner claims that the ransomware thieves have infected more than 2,000 of the agency’s 8,000 computers, affecting not only fare collection, but also systems that assign routes to bus drivers. The thieves are demanding $73,000 in ransom, paid in bitcoin. In a statement on Sunday, San Francisco MTA said that the attack “disrupted some of our […]

The Department of Defense unveiled a public bug bounty program on Monday, standardizing rules for security researchers to report information on vulnerabilities in public facing systems operated by the Department of Defense.

Department of Defense Sets Ground Rules for Hackers

In-brief: The U.S. Department of Defense published guidelines on Monday for independent security researchers to disclose vulnerabilities in DoD’s public facing systems. The program, managed by the firm HackerOne, provides a legal route for hackers to disclose vulnerabilities to the military.

Traffic observed from an IP surveillance camera shows communication with servers operated by the manufacturer. Often, such communications were found to be insecure. (Image courtesy of zScaler.)

Survey Sounds More Alarms on Internet of Things in the Enterprise

In-brief: A survey of customer networks by the firm zScaler found that cameras, printers, video recorders and other devices are common – and often easy to snoop on and attack.