Cyber Security Summit Blog

The 2014 Cyber Security Summit is less than two months away and will contain more actionable takeaways for attendees than ever before. (View this year's agenda here.) However, with cyber threats showing no signs of slowing down, plans are already well underway for the 2015 Summit, beginning with today's announcement of the 2015 Summit Chair: Andrew Borene. "I am honored to have been asked to help communicate the global leadership of cyber security solutions, policy and providers from within America's heartland," Borene said. "Addressing the increasingly real challenges for our companies, governments and individual privacy require strong public-private partnerships for ...
Read More
This week marks yet another historic moment in cyber breaches: Security researchers say Russian hackers have stolen 4.5 billion records, gathered from more 400,000 websites, with 1.2 billion of these credentials appearing to be unique and belonging to over half a billion email addresses. This dwarfs the number of individuals affected by the Target data breach, which included the credit card information of 40 million customers and around 70 million email and mailing addresses. Hold Security, an information security and investigations company, released a statement this week that after more than seven month of research, it was able to identify ...
Read More
With new reports of data breaches seemingly occurring on a monthly basis, companies are regularly encouraging users to change their passwords to protect personal and financial information. The most recognizable methods of attaining this information are keyloggers, phishing scams, Trojans, and more recently the Heartbleed bug, which may still pose a threat to users who assume that the problem has been fixed. However, there is another method for gaining access to data that many people overlook but that has been prevalent for some time: USB devices. In the past, a person with malicious intent was required to manually copy data onto a ...
Read More
Following reports of the well-documented Target data breach in 2013, the need to improve the existing security framework to ensure that customer credit card numbers and other personal data are no longer at risk has been brought up by corporations and media alike. Target Corp. responded to their data breach with a change in CIO and CEO, the latter being appointed earlier today. The widespread publicity surrounding the Target breach has brought added attention to the problem, but unfortunately it hasn't prevented other similar breaches from occurring in its wake. The entry point for the afflicted 70 million customers in the Target breach was the point-of-sale ...
Read More
Unisys Corporation recently sponsored a survey by the Ponemon Institute of 599 security executives of critical infrastructure providers. The top three functions of the respondents were chief information officer, business operations leader and IT security leader. According to the report, the research was conducted "to learn how utility, oil and gas, alternate energy and manufacturing organizations are addressing cyber security threats. These industries have become a high profile target for security exploits.” The survey found that almost 70 percent of the businesses surveyed had experienced a major security breach within the last year. 64 percent said they were expecting at ...
Read More
McAfee Labs recently released its June 2014 Threats Report. The report outlines key topics and threat statistics and is published every quarter. The report dives into four key cyber security topics of the quarter, which include: Almost 80 percent of the 300 Flappy Bird mobile game clones contained malware. Malware botnets that have virtual currency-mining capabilities. Despite previous decline, it is expected that rootkit-based attacks will begin to increase in the near future. Mobile platform protection is not enough to keep mobile apps safe. The report also includes statistics about mobile malware, malware, web threats, messaging threats and network threats. According to the report, “In just ...
Read More
At the 2014 Clinton Global Initiative America meeting yesterday, Symantec announced the launch of Symantec Cyber Career Connection, a program focused on closing the cyber security workforce gap by providing students with virtual mentorships, training, and cyber security internships. Symantec says it will assist program graduates in obtaining jobs through the use of its networks. According to a press release from Symantec: “An estimated 300,000 cybersecurity jobs are vacant in the United States; among those, 60,000 could be filled by individuals without a four-year college degree.” Those numbers are expected to increase with time along with the number of cyber security ...
Read More
A recent survey shows that many businesses are confident in their ability to detect a data breach, though some experts question whether that confidence is justified. Successful attacks on organizations including Target, eBay and Evernote have demonstrated that even large businesses are not immune to cyber threats. However, the survey, conducted by Atomic Research and sponsored by security solutions provider Tripwire, Inc., showed that many companies have not increased the level of attention given to their security. The survey included 253 organizations in the U.K., all of which process card payments. Of the 253 organizations, 102 were financial and 151 were retail ...
Read More
More than 400 teams are already registered for the 2014-2015 season of CyberPatriot, a competition that began in 2009 to motivate students to consider careers in cyber security and other science, technology, engineering, and mathematics disciplines. The current season, known as CyberPatriot VII, boasts participation from 40 states as well as Puerto Rico, Canada, and U.S. Department of Defense Dependent Schools in Germany. Each team consists of a coach and two to six students from the same middle school, high school, or other approved educational organization. The competition is structured as a tournament where the highest scoring teams advance until the top 28 teams are identified. The ...
Read More
In remarks delivered earlier today at the American Enterprise Institute in Washington, D.C., FCC Chairman Tom Wheeler outlined his organization's philosophy on cyber security. Stressing the importance of network security, Wheeler noted that today information networks don't just support the economy, they essentially are the economy. "As such, information networks aren’t ancillary; they are integral," he said. "And their security is vital." Wheeler said that given the dynamic nature of the threats we face today, the new security paradigm must be based on private sector innovation and the alignment both public and private interests. “Companies must have the capacity to assure themselves, their ...
Read More