Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: Cybercrime

EY, LANL make new cybersecurity tools available to private sector

News release: “Ernst & Young LLP and Los Alamos National Laboratory have formed a strategic alliance to deliver some of the most advanced behavioral cybersecurity tools available to the commercial market. “Cybersecurity attacks are ever more frequent and more sophisticated, and they destroy the trust needed to conduct business,” said Duncan McBranch, Chief Technology Officer at Los Alamos National Laboratory. “Every organization must improve its ability to detect and stop attacks as they occur, and before secure data is compromised. This unique relationship with EY will improve our ability to develop and test adaptive cybersecurity technologies across both industry and government networks.  Defensive cybersecurity is an area that requires strong public-private partnerships to shift the balance.” The alliance comes at a watershed moment when increasingly sophisticated cyberattacks are inflicting significant economic, social and even political damage to US organizations. The tools developed by Los Alamos and delivered to the private sector exclusively by Ernst & Young LLP can help counter these threats by detecting them before they do deep and lasting damage. “We are very excited to be working with Los Alamos as part of our overall mission to transition their heritage of national cybersecurity and innovation to the private sector, and arming our clients with the most advanced tools and resources to combat cyber-threats, said Bob Patton, EY Americas Advisory Vice Chair. This collaborative approach is reflective of our global strategy to help organizations manage cybersecurity better and doing our part to build a better working world.”

Appeals Court Upholds FTC’s Data Security Authority

EPIC – “A federal appeals court ruled that the Federal Trade Commission can enforce data security standards. In FTC v. Wyndham, the agency sued Wyndham hotels after the company exposed financial data of hundreds of thousands of customers. The company argued that the FTC lacked authority to enforce security standards, but the court disagreed. EPICContinue Reading

FCW obtained official timeline of OPM data breach

FCW.com: “An official timeline of the Office of Personnel Management breach obtained by FCW pinpoints the hackers’ calibrated extraction of data and the government’s step-by-step response. It illuminates a sequence of events that lawmakers have struggled to pin down in public hearings with Obama administration officials. The timeline makes clear that the heist of dataContinue Reading

Mandatory Minimum Sentencing: Federal Aggravated Identity Theft

CRS report vai FAS – Mandatory Minimum Sentencing: Federal Aggravated Identity Theft – Charles Doyle, Senior Specialist in American Public Law. August 20, 2015. “Aggravated identity theft is punishable by a mandatory minimum sentence of imprisonment for two years or by imprisonment for five years if it relates to a terrorism offense. At least thusContinue Reading

How Victims Can Regain Control Mitigate Threats in Wake of OPM Breach

 “In June 2015, the Nation learned that the personnel records of 21.5 million United States citizens had been exfiltrated by an unknown adversary from the Office of Personnel Management, one of the largest known breaches in the history of the U.S. Government.  The immediate public outcry included congressional hearings attributing the breach to OPM administrators andContinue Reading

Invincea 1H 2015 Advanced Endpoint Threat Report

Nextgov: “Malicious code Russians reportedly used to jimmy open a White House network and malware Chinese hackers reportedly used to rupture insurer Anthem’s network were similar — and free, according to new research…The Anthem hackers compromised the Social Security numbers and other personal information of about 80 million customers. The White House hackers infiltrated anContinue Reading

Binaryedge Report – more than petabyte of data on unsecured servers

Via Digital Guardian – “The research firm Binaryedge says it found more than a petabyte of data stored in high performance databases like MongoDB is exposed to the public Internet.”

Another Snowden Reveal – Telecom Giant Provides Massive Data Pipeline to NSA

NYT and ProPublica investigative reports: “The National Security Agency’s ability to spy on vast quantities of Internet traffic passing through the United States has relied on its extraordinary, decades-long partnership with a single company: the telecom giant AT&T. While it has been long known that American telecommunications companies worked closely with the spy agency, newlyContinue Reading

Homeland Security Advisory Council-New Tasking

August 14, 2015 Federal Register Notice: “The Secretary of the Department of Homeland Security (DHS), Jeh Johnson, tasked his Homeland Security Advisory Council to establish a subcommittee entitled Cybersecurity Subcommittee on August 6, 2015. The Cybersecurity Subcommittee will provide findings and recommendations to the Homeland Security Advisory Council on best practices sourced from industry, stateContinue Reading

Not Even Close: The State of Computer Security (with slides) – James Mickens

“In this bleak, relentlessly morbid talk, James Mickens will describe why making computers secure is an intrinsically impossible task. He will explain why no programming language makes it easy to write secure code. He will then discuss why cloud computing is a black hole for privacy, and only useful for people who want to fillContinue Reading

Cyber crimes against NATO and its members

Via Atlantic Council – New Twists in Russia’s Cyber Campaign Against NATO and Its Members By Sam Jones, Financial Times: “Russia’s aggressive actions in cyber space are all carefully designed to fall short of warranting any kind of serious military or aggressive response. One of Moscow’s new favoured tactics is to arm crime syndicates withContinue Reading

IT Salary Survey 2015

ComputerWorld 29th Annual Report It Salary Survey: “After years of tight budgets, employers are boosting pay to attract and retain hot IT talent. Our survey of more than 4,800 tech workers reveals who’s getting the cash — and how you can too..Topics include: Cash Is Back!; IT Pay All the Numbers; Job Seekers Call theContinue Reading