Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Carbon Black: “Despite investing heavily in security, financial institutions continue to experience cyber attacks at a rapid pace. Conducted primarily for the purpose of yielding illicit financial gain, cyber attacks against the financial services industry are increasing in sophistication and are often undetectable, global and instantaneous. This will be one of the themes of this …
“The Internet Safety Strategy looks at how we can ensure Britain is the safest place in the world to be online. The Strategy considers the responsibilities of companies to their users, the use of technical solutions to prevent online harms and government’s role in supporting users. The consultation covered various aspects of online safety including: …
Fortune: “While the Islamic State has been largely wiped off the physical battlefield, the terrorist group continues to maintain a steady presence on popular websites despite an increased push by tech companies to purge them. On Tuesday, the cybersecurity firm Flashpoint released a new report that lists the most popular sources of ISIS propaganda over …
EFF: “…you should stop using PGP for encrypted email and switch to a different secure communications method for now. A group of researchers released a paper today that describes a new class of serious vulnerabilities in PGP (including GPG), the most popular email encryption standard. The new paper includes a proof-of-concept exploit that can allow …
“This update to NIST Special Publication 800-37 (Revision 2) responds to the call by the Defense Science Board, Executive Order 13800, and OMB Memorandum M-17-25 to develop the next-generation Risk Management Framework (RMF) for information systems, organizations, and individuals. There are seven major objectives for this update: Provide closer linkage and communication between the risk …
Via LLRX – Pete Recommends – weekly highlights on cyber security issues – May 6 2018: Privacy and security issues impact every aspect of our lives – home, work, travel, education, health/medical, to name but a few. On a weekly basis Pete Weiss highlights articles and information that focus on the increasingly complex and wide …
Encryption Policy And Its International Impacts: A Framework For Understanding Extraterritorial Ripple Effects by Ryan Budish, Herbert Burkert. Urs Gasser. March 2, 2018. “This paper explores the potential international ripple effects that can occur following changes to domestic encryption policies. Whether these changes take the form of a single coherent national policy or a collection …
NextGov: “The federal government is now using anti-phishing security on its emails at a higher rate than any major industry sector, according to a report released Thursday. The study from the email security firm ValiMail comes roughly six months after the Homeland Security Department mandated the email security tool called DMARC for all federal agencies. …
Via LLRX – Pete Recommends – weekly highlights on cyber security issues – April 23 2018 – Privacy and security issues impact every aspect of our lives – home, work, travel, education, health/medical, to name but a few. On a weekly basis Pete Weiss highlights articles and information that focus on the increasingly complex and …
Supply Chain Vulnerabilities from China in U.S. Federal Information and Communications Technology, April 2018. This research report was prepared at the request of the U.S.-China Economic and Security Review Commission to support its deliberations. “The U.S. government needs a national strategy for supply chain risk management (SCRM) of commercial supply chain vulnerabilities in U.S. federal …
“This publication is intended to be used in conjunction with NIST Special Publication 800-160 Volume 1, Systems Security Engineering – Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems. It can be viewed as a handbook for achieving the identified cyber resiliency outcomes based on a systems engineering perspective on system life …
James Fisher: “I recently received an email from Netflix which nearly caused me to add my card details to someone else’s Netflix account. Here I show that this is a new kind of phishing scam which is enabled by an obscure feature of Gmail called “the dots don’t matter”. I then argue that the dots …
