The Cybersecurity (CS) Digest is a curated bi-weekly news summary for cybersecurity professionals. It is transmitted in an HTML-formatted email and provides links to articles and news summaries across a spectrum of cybersecurity topics.

RECENT HEADLINES:

NIST Issues Completed Cybersecurity Framework - Info-Security

In case you missed this last month - "The framework provides a consensus description of what's needed for a comprehensive cybersecurity program," according to Under-secretary of commerce for standards and technology and NIST, director Patrick Gallagher.

RECENT HEADLINES:

Cloud Computing:

How Big Data Analytics is Aiding Search for Flight 370 - eWeek

Adaptive Computing of Utah, home of "Moab HPC Suite " is teaming with DigitalGlobe of Colorado to offer crowssourcing search of commercial overhead imagery.

Critical Infrastructure:

LightOut is Latest Cyber Threat to Target Energy Sector - Info-Security

Late February "LightsOut" watering hole vector used to implant Energy Sector mal-ware through third party exploit. Target development is improving.

Cyberwarfare:

Crimean govt: Referendum website downed by cyber-attack from US - Russia Today

University of Illinois Urbana-Champaign accused of launching DDOS against Crimean Government site. More to come...

Kremlin website hit by ‘powerful’ cyber attack - Sydney Morning Herald

Kremlin, RU Foreign Ministry and Rossia Central Bank sites taken down by DDOS, possibly by Anonymous Russsia. Kremlin denies linkage to "the events in Ukraine" according to TASS.

NATO websites hit in cyber attack linked to Crimea tension - Reuters

"Cyber Berkut" hacktivists  ostensibly in Ukraine launch DDOS on www.Nato.int as well as NATO Cyber Center of Excellence in Estonia

Mobile Security:

Android RATs Branch out with Dendroid - Symantec

Remote Access Toolkit (RAT) "Dendroid" sells for $300 on the darknet, can make and record calls, open apps, intercept texts.

Pre-installed malware turns up on new Android devices - InfoWorld

Marble Security using static code analysis of Android and iOS application code discovers "preloaded" Netflix based malware phoning home to Russia.

Network Security:

Website attack kits heighten threat from cyber criminals - Financial Times

According to Akamai, DDOS attacks up 370% in February, due to proliferation of DDOS attack kits. Web-based commerce most vulnerable to asymmetric attack, due to loss in sales.

The CS Digest provides links to third party Websites. The CSIAC is not responsible for the availability of, and content provided on, third party Websites. You should refer to the policies posted by other Websites regarding their privacy and other topics before you use them. The CSIAC is not responsible for third party content accessible through the CSIAC CS Digest, including opinions, advice, statements, advertisements and endorsements, and you bear all risks associated with the use of such content.