The threat is what might be called "weaponized metadata," and the risks are detailed extensively in a new report, Metadata: The Most Potent Weapon in this Cyberwar, recently published by the Institute for Critical Infrastructure Technology (ICIT), a Washington, D.C.-based cybersecurity think tank. ICIT produces many publications annually, but the 28-page
CS Digest Section: Critical Infrastructure
DOE Receives First Installment of Anti-cyberwarfare Networking Technology
Veracity Industrial Networks said it has delivered on the first phase of its contract with the Department of Energy to provide SDN-based network infrastructure designed to help the U.S. industry, including power utilities, defend against cyberattacks. After several recent hacking events that many security analysts believe were instances of cyberwarfare,
Stuxnet-Like Malware From Russia is Attacking U.S. Power Plants
Security researchers confirmed on Monday that a vicious new cyberattack has compromised the computer systems of over 1,000 organizations in 84 countries. Dubbed "Energetic Bear," the Stuxnet-like malware is largely targeting energy and utility companies. It's almost certainly from Russia.
http://gizmodo.com/stuxnet-like-malware-from-russia-is-attacking-u-s-powe-1598091987
U.S. Warns Businesses of Hacking Campaign Against Nuclear, Energy Firms
The U.S government warned industrial firms this week about a hacking campaign targeting the nuclear and energy sectors, the latest event to highlight the power industry's vulnerability to cyber attacks.
https://www.reuters.com/article/us-usa-cyber-energy-idUSKBN19L2Z9
Hackers Breached a Dozen US Nuclear Plants, Reports Say
The targets included the Wolf Creek nuclear facility in Kansas, according to several reports. An urgent Department of Homeland Security (DHS) report indicated a foreign power, possibly Russia, was responsible, the New York Times said. The DHS document carried the second-highest threat rating, the Times said.
Raytheon, DARPA Developing Advanced Tech to Protect US Power Grid Against Cyber Attack
The Pentagon's Defense Advanced Research Projects Agency, better known as DARPA, has awarded Raytheon multiple contracts to research and develop technologies that will detect and respond to cyber attacks on the U.S. power grid infrastructure. The contracts, which total $9 million, were awarded under DARPA's Rapid Attack Detection, Isolation and
WannaCry Ransomware Hits U.S. Critical Infrastructure
A Department of Homeland Security official told Reuters earlier this week that some U.S. critical infrastructure operators have been affected by the recent WannaCry ransomware campaign.
http://www.esecurityplanet.com/threats/wannacry-ransomware-hits-u.s.-critical-infrastructure.html
Homeland Security Issues Warning on Cyberattack Campaign
The Department of Homeland Security is warning IT services providers, healthcare organizations and three other business sectors about a sophisticated cyberattack campaign that involves using stolen administrative credentials and implanting malware, including PLUGX/SOGU and RedLeaves, on critical systems.
http://www.bankinfosecurity.com/homeland-security-issues-warning-on-cyberattack-campaign-a-9898
The Pentagon’s Bug Bounty Program Should Be Expanded to Bases, DOD Official Says
The Hack the Pentagon bug bounty program that allowed citizens to test the defenses of Defense Department websites could soon see a spinoff inviting hackers to probe the Pentagon’s critical infrastructure.
Computer Hack Sets off 156 Emergency Sirens across Dallas
Dallas' 156 sirens, normally used to warn of tornadoes and other dangerous weather, were triggered at 11:42 p.m. CDT on Friday. The wailing did not end until 1:17 a.m. CDT on Saturday when engineers manually shut down the sirens' radio system and repeaters, city Emergency Management Director Rocky Vaz said.
http://www.reuters.com/article/us-texas-sirens-idUSKBN17B001
