The Cybersecurity (CS) Digest is a curated bi-weekly news summary for cybersecurity professionals. It is transmitted in an HTML-formatted email and provides links to articles and news summaries across a spectrum of cybersecurity topics.
Alerts Issued for Zero-Day Flaws in SCADA Systems - Security Week
The Industrial Control Systems Computer Emergency Response Team (ICS-CERT) has published a total of six advisories to warn organizations about a series of Supervisory Control and Data Acquisition (SCADA) system vulnerabilities disclosed by a researcher at the recent DEFCON conference in Las Vegas.
Tags: Critical Infrastructure Protection (CIP)
Cyber-Physical Attacks: Hacking a Chemical Plant - Network World
Def Con 23 included a talk about 'hacking chemical plants for competition and extortion.' Researchers released their Damn Vulnerable Chemical Process framework; using it, you can hack a chemical plant (simulation model) like an attacker and learn to spot cyber-physical attacks like a defender.
Tags: Cyber Physical Systems (CPSs)
Hackers Hit University of Virginia - The Hill
The University of Virginia's network is back online after a cyberattack forced a weekend shutdown of the school's servers.
Researchers at cloud security company Zscaler have spotted a campaign in which attackers are redirecting victims to malware-serving websites with the aid of thousands of hijacked WordPress sites.
The US Internal Revenue Service has confirmed that its "Get Transcript" security breach has seen 220,000 more taxpayers fall victim, with another 170,000 people to be contacted by the organisation.
At a lab near San Jose, IBM has built the digital equivalent of a rodent brain---roughly speaking. It spans 48 of the company's experimental TrueNorth chips, a new breed of processor that mimics the brain's biological building blocks.
Faced with escalating aggression from Russia and China, the Pentagon is planning to increase its use of drones by about 50 percent over the next several years, using the Army and civilian contractors to put more of the unmanned aircraft in the air.
Apple has reportedly built an electric, self-driving car that's "almost ready for the road," according to the Guardian, and it's currently looking for a secure site in the San Francisco Bay Area to test the vehicle.
Google today released to open source a new patch for the infamous Stagefright vulnerability found in 950 million Android devices after researchers at Exodus Intelligence discovered the original patch was incomplete and Android devices remain exposed to attack.
Researchers with Fortinet have observed Android malware that locks up the mobile device, encrypts the SD card, presents a frightening FBI warning containing the user's picture and IP address, and requests $500 to unlock the device - however, the threat is more than just ransomware.
Security experts at BinaryEdge have analyzed how developers and system administrators configured different technologies and have found out that most of them fail to change the default configuration, which leaves their servers open to outside intrusions.
The federal government is owning up to the modern-day reality that data breaches, no matter the quality of cyberdefenses in place, are inevitable.
To make true quantum photonic computers a reality, photonic circuitry must first become at least as efficient at multi-tasking as the microprocessors it is designed to replace. Researchers claim to have produced a photonic chip that does just that.
The Cyber COI engages in multiple activities and forums for coordinating cyber S&T strategies, sharing innovative ideas and technical approaches, promoting technology transfer and upcoming business opportunities, and in jointly planning programs across the Department of Defense and other government agencies. Membership is based upon approval by the Cyber COI group administrator.
The CS Digest provides links to third party Websites. The CSIAC is not responsible for the availability of, and content provided on, third party Websites. You should refer to the policies posted by other Websites regarding their privacy and other topics before you use them. The CSIAC is not responsible for third party content accessible through the CSIAC CS Digest, including opinions, advice, statements, advertisements and endorsements, and you bear all risks associated with the use of such content.