Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Google Online Security Blog: “Today, you can find more online security tips in a few seconds than you could use in a lifetime. While this collection of best practices is rich, it’s not always useful; it can be difficult to know which ones to prioritize, and why. Questions like ‘Why do people make some security …
Defense Infrastructure: Improvements in DOD Reporting and Cybersecurity Implementation Needed to Enhance Utility Resilience Planning, GAO-15-749: Published: Jul 23, 2015. Publicly Released: Jul 23, 2015. Federal Green Building: Federal Efforts and Third-Party Certification Help Agencies Implement Key Requirements, but Challenges Remain, GAO-15-667: Published: Jul 23, 2015. Publicly Released: Jul 23, 2015. IRS Examination Selection: Internal …
Cora Currier – The Intercept: “There are lots of ways that government spies can attack your computer, but a U.S. drone company is scheming to offer them one more. Boeing subsidiary Insitu would like to be able to deliver spyware via drone. The plan is described in internal emails from the Italian company Hacking Team, which makes off-the-shelf software that can remotely infect …
Bank for International Settlements: “The Basel Committee on Banking Supervision has today issued for public consultation a revised version of the General guide to account opening, which was first published in February 2003. Most bank-customer relationships start with an account opening procedure. The customer information collected and verified at this stage is crucial in order …
Handing Over the Keys to the Castle – OPM Demonstrated that Antiquated Security Practices Harm National Security. Institute for Critical Infrastructure Technology. July 2015. “In this digital age, information is secured, coveted, and exfiltrated by nation states, hacktivists, and ambitious actors because, now more than ever, knowledge is power. Modern needs dictate that only authorized …
FFIEC Cybersecurity Assessment Tool June 2015. OMB Control 1557-0328. Expiration Date: December 31, 2015. “In light of the increasing volume and sophistication of cyber threats, the Federal Financial Institutions Examination Council (FFIEC) developed the Cybersecurity Assessment Tool (Assessment), on behalf of its members, to help institutions identify their risks and determine their cybersecurity maturity. The …
“Bravard, Christophe and charroin, liza, Optimal Design and Defense of Networks Under Link Attacks (July 1, 2015). Available for download at SSRN: http://ssrn.com/abstract=2631443 “Networks facilitate the exchange of goods and information and create benefits. We consider a network composed of complementary nodes, i.e., nodes that need to be connected to generate a positive payoff. This …
“There is good news this month on the email-based front of the threat landscape. According to our metrics, the overall spam rate has dropped to 49.7 percent. This is the first time this rate has fallen below 50 percent of email for over a decade. The last time Symantec recorded a similar spam rate was …
DOD Business Systems Modernization: Additional Action Needed to Achieve Intended Outcomes, GAO-15-627: Published: Jul 16, 2015. Publicly Released: Jul 16, 2015. Insider Threats: DOD Should Improve Information Sharing and Oversight to Protect U.S. Installations, GAO-15-543: Published: Jul 16, 2015. Publicly Released: Jul 16, 2015. Patient Protection and Affordable Care Act: Observations on 18 Undercover Tests …
CRS Legal Sidebar – Is There a Judicial Remedy for Victims of Federal Data Breaches? “The scope of information believed to have been compromised by a series of cyber-intrusions at the Office of Personnel Management (OPM) continues to grow. OPM recently announced that further investigation of the initial breach affecting 4.2 million current and former …
“OPM – This site will be updated regularly. What happened How you may be affected What you can do What we are doing to help Frequently Asked Questions What Happened? OPM recently discovered two separate but related cyber-security incidents that have impacted the data of Federal government employees, contractors, and others: In April 2015, OPM …
Washington Post, Ellen Nakashima: “The massive hack last year of the Office of Personnel Management’s system containing security clearance information affected 21.5 million people, including current and former employees, contractors and their families and friends, officials said Thursday. That is in addition to a separate hack – also last year — of OPM’s personnel database …
