S N Pradhan, director general, National Disaster Response Centre

Predictive Policing Can Obviate Cybercrime

Geetha Nandikotkur • March 25, 2019

India is gradually entering into the league of those nations where critical infrastructure is controlled by the cyber architecture and therefore, naturally becoming an attractive target for the enemies of the state and countries, says S N Pradhan, director general of NDRF, Ministry of Home Affairs.

Cloud Security

Electronic Voting Machine Security: The Debate Continues

Latest

Cyberwarfare / Nation-state attacks

Mueller's Investigation Finds No Trump-Russia Conspiracy

Mathew J. Schwartz • March 25, 2019

Special Counsel Robert Mueller's two-year investigation into Russia's 2016 election interference has concluded, finding no evidence that President Trump's campaign coordinated with Moscow, although Mueller declined to exonerate Trump over obstruction of justice, says U.S. Attorney General William Barr.

Cybersecurity

Threat Watch: Phishing, Social Engineering Continue

Mathew J. Schwartz • March 25, 2019

Reviewing 2018 attacks, Jon Clay of Trend Micro, says social engineering persists, including phishing attacks, while criminals also continue to steal credentials, lob ransomware at targets and push cryptomining malware.

Data Breach

FEMA Exposed 2.3 Million Disaster Victims' Private Data

Jeremy Kirk • March 25, 2019

Victims of hurricanes, wildfires and other disasters now face a second hit: The U.S. Federal Emergency Management Agency inadvertently shared 2.3 million disaster survivors' personal data of with an agency contractor, leaving victims at increased risk from fraud and identity theft.

Encryption & Key Management

Securing Smartphones from Eavesdropping

Nick Holland • March 25, 2019

Smartphone security is paramount for certain scenarios, but software based encryption has been shown to be insufficient. Mike Fong, founder and CEO of Privoro, demonstrates a hardware based solution to smartphone encryption

Cybersecurity

Cyber Risk Management: Why Automation is Essential

Mathew J. Schwartz • March 22, 2019

The challenge of wanted to adopt the latest and greatest point products, as opposed to opting for a more platform-based approach, seems never-ending, and can only be managed by bringing greater amounts of automation to bear, says Skybox Security's Michelle Cobb.

Data Breach

GDPR: Data Breach Notification 101

Mathew J. Schwartz • March 22, 2019

Since the EU's new GDPR privacy law came into effect in May 2018, one challenge for organizations that suffer a breach is knowing whether or not they must report it to authorities, says Brian Honan, president and CEO of BH Consulting in Dublin.

Breach Response

EU Seeks Better Coordination to Battle Next Big Cyberattack

Scott Ferguson • March 22, 2019

Life after WannaCry and NotPetya: Europol, the EU's law enforcement intelligence agency, wants member states to be able to rapidly respond to the next big cyberattack against Europe. But with warnings of ongoing Russian election interference campaigns, the next big attack may already be underway.

Anti-Malware

Microsoft Brings Defender ATP Platform to macOS

Jeremy Kirk • March 22, 2019

A decade or more ago, this would have been unthinkable: Microsoft developing an anti-malware platform for macOS. But Windows Defender ATP is now available for Macs via a limited preview. Microsoft says the move will help protect customers running non-Windows machines.

Cybersecurity

The Future of Cybersecurity Education - Part 2

Tom Field • March 22, 2019

What are America's universities doing to help fill the cybersecurity skills gap felt by enterprises worldwide? In part two of a two-part panel discussion on the future of cybersecurity education, Lisa Ho of the University of California-Berkeley and Amit Elazari Bar On of Intel Corp. offer insights.

Cybersecurity

The Future of Cybersecurity Education - Part 1

Tom Field • March 22, 2019

What is the role of professional certification companies in the cybersecurity education ecosystem? In part one of a two-part panel discussion on the future of cybersecurity education, John McCumber of (ISC)2 and Rob Clyde of ISACA share their philosophies.

Cybersecurity

Warnings Issued About Medtronic Cardiac Devices

Marianne Kolbasuk McGee • March 22, 2019

Federal regulators and medical device maker Medtronic have issued new warnings about cybersecurity vulnerabilities in certain cardiac devices from the manufacturer that could potentially allow attackers to manipulate the products' functionality, posing safety risks to patients.

Awareness & Training

Norsk Hydro's Ransomware Headache

Nick Holland • March 22, 2019

The latest edition of the ISMG Security Report discusses the recent ransomware attack on aluminum giant, Norsk Hydro. Plus, confessions of a former LulzSec and Anonymous hacktivist, and the growing problem of cyber extortion.