[ISN] Israel ramps up cyber defense with new national body

http://www.timesofisrael.com/israel-ramps-up-cyber-defense-with-new-national-body/ By David Shamah The Times of Israel September 21, 2014 Israel is stepping up its cyber-defense efforts. The government on Sunday announced establishment of a new cyber-defense authority to coordinate cyber-security efforts among government, industry, and the civilian sectors. Just last year, it set up the National Cyber Bureau and the two steps show that the nation is taking cyber threats seriously, now that it’s a favorite target for politically motivated hackers Heading the new effort will be the National Cyber Bureau head, Dr. Eviatar Matania, who will be given “the authority to defend the civilian sphere from cyber threats and will constitute an operative agency that will act alongside the National Cyber Bureau, which will continue to build and maintain the State of Israel’s national strength as an international leader in the field,” Prime Minister Benjamin Netanyahu’s office said in a statement. Experts say Israel is the target of almost daily attacks, especially denial of service (DDOS), in which hackers try to flood a site with messages to paralyze it. Israeli cyber-security arms have been so effective in blocking the attacks that most never even cross the threshold of public awareness. Such attacks multiplied during the summer war against Hamas terrorists in Gaza, but none caused significant damage. The announcement of the new body comes just a week after a major international event on cyber-security, sponsored by Tel Aviv University’s Cyber Research Center (ICRC). Dozens of cyber-security officials and experts gathered to discuss the latest on-line threats and how to defend against them. […]




Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Developers want mHealth security talks

http://www.healthcareitnews.com/news/developers-want-mhealth-HIPAA-security-talks By Eric Wicklund Editor, mHealthNews September 18, 2014 App developers, who say they are being left out of important mHealth privacy and security conversations, are calling on the federal government to give them a little more transparency around the issues. In a letter to Congressman Tom Marino, R-Pa., several developers and the 5,000-member ACT/The App Association have asked to be brought up to date on mHealth regulations. They’ve also requested changes to the Health Insurance Portability and Accountability Act, or HIPAA, to make it more in tune with current technology. Specifically, the letter calls on the government to make existing regulations more accessible to developers, improve outreach to new companies in the mHealth space, and update “Security Rule Guidance Material” to help developers stay abreast of mobile implementations and standards. The letter was signed by ACT/The App Association, AirStrip, AngelMD, Aptible, CareSync and Ideomed. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Home Depot ignored security warnings for years, employees say

http://arstechnica.com/security/2014/09/home-depot-ignored-security-warnings-for-years-employees-say/ By Sean Gallagher Ars Technica Sept 20 2014 Former information technology employees at Home Depot claim that the retailer’s management had been warned for years that its retail systems were vulnerable to attack, according to a report by the New York Times. Resistance to advice on fixing systems reportedly led several members of Home Depot’s computer security team to quit, and one who remained warned friends to use cash when shopping at the retailer’s stores. In 2012, Home Depot hired Ricky Joe Mitchell as its senior IT security architect. Mitchell got the job after being fired from EnerVest Operating in Charelston, South Carolina—and he sabotaged that company’s network in an act of revenge, taking the company offline for 30 days. Mitchell retained his position at Home Depot even after his indictment a year later and remained in charge of Home Depot’s security until he pled guilty to federal charges in January of 2014. The Home Depot breach, which reportedly began in April of 2014 and went undetected until earlier this month, exposed an estimated 56 million credit card numbers. Home Depot spokesperson Stephen Holmes told the New York Times that the company maintains “robust security systems.” Home Depot officials have said that the malware used in the attack, BlackPOS, had not been seen before and would have been difficult to detect with its security scans. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] For White House Cyber Czar, Being Called a ‘Total n00b’ Just Comes with the Territory

http://www.nextgov.com/cybersecurity/2014/09/white-house-cyber-czar-being-called-total-n00b-just-comes-territory/94652/ By Jack Moore Nextgov September 19, 2014 Michael Daniel, the White House’s cybersecurity coordinator, courted controversy last month when he gave an interview on his role setting cyber policy for the Obama administration. But it wasn’t his thoughts on how the government can better protect its IT systems from intrusions or how the feds should respond to cyberattacks that caused a fuss. It was his résumé. In an Aug. 21 interview with GovInfoSecurity, Daniel


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] The greatest John McAfee email ever

http://venturebeat.com/2014/09/18/the-greatest-john-mcafee-email-ever/ By Richard Byrne Reilly VentureBeat September 18, 2014 At the Defcon security conference in Las Vegas in early August, I waited in line with my esteemed colleague Dean Takahashi for 40 minutes in order to get our pictures taken with perhaps the most unabashed instigator in the history of technology. John McAfee. McAfee, of course, is the security software legend who founded McAffee, Inc. For nearly a month I had been reaching out to McAfee in order to score an interview about his latest security startup, Brownlist. Brownlist, which aims to help the little guy battle big government, was unveiled at Defcon to a packed house of nearly 700 people who were hanging on McAfee’s every word. McAfee and I exchanged digits and posed for the picture. And he promised to be in touch. But he never emailed. Or called. Weeks passed. I began to lose interest. Meanwhile, McAfee had been on CNN, Bloomberg, and other channels, railing about technology and how he would once again change the paradigm. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail