Hacker in a dark room

Hackers-for-hire group targeting government assets, report says

Hidden Lynx, a sophisticated group of professional hackers located in China, has carried out high-profile attacks on government, IT contractors and other industries at least since 2009, Symantec says.

stealth

Stealth can protect networks by making parts invisible

Unisys has high hopes for government uses of the software tool that controls who sees what on a network.

DNS

NIST updates guidelines for securing the DNS

NIST updated its guidance for deploying a secure Domain Name System in government enterprises to ensure the availability and integrity of critical DNS data.

LynxWorks rootkit detection

LynuxWorks rootkit detector adds hardware punch to security scanning

LynuxWorks' system, called RDS5201, is an appliance capable of detecting low-level, zero-day rootkits in real time.

ID

5 pilots to take trusted online ID plan to the next stage

The NSTIC programs, which received more than $7 million in grants, range from military, civilian and commercial authentication initiatives to one aimed at protecting children’s privacy online.

eyes

Biometric ID coming to a government office near you

This week's Biometric Consortium Conference showcases a wide range of hardware and software solutions for personal identification/authentication applications in government.

back door

Suspect NIST crypto standard long thought to have a back door

The agency is advising against using an elliptic curve algorithm adopted in 2006 that has concerned cryptographers from the beginning.

FDAS

Forensics tool makes sure investigators don't come up empty

CyanLine's Fast Disk Acquisition System gives forensics teams a real-time preview of what's on a drive, including whether it's set to prevent copying.

scam

Officials warn of spoofed health exchange websites

The look-alike Web pages may be created by interest groups, private insurance companies and, sometimes, scammers looking to gather personal information.

PIV

PIV credentials can now be used with mobile devices

The latest revision of FIPS 201, which sets the requirements for PIV cards, includes credentials for mobile devices and new interfaces to enable access with contactless connections.

Football referees check instant replay machine

NSA reports prompt NIST to reopen public review of crypto standards

Public concern over possible tampering by the NSA has led NIST to reopen the comment period on a suite of publications, but the IT security community isn't worried.

iPhone scan

Is the new iPhone's fingerprint scanner a sign of things to come?

If opened to app developers, Apple's Touch ID could give another authentication option to agencies looking to manage mobile devices, especially if other smartphone manufacturers follow suit.

Topic Resources

  • GameChanger: Microsegmentation

    In less than a decade, more than 87 million records with sensitive or private information have been exposed due to cyber-incidents on federal networks alone. Increasingly, organizations are beginning to realize that perimeter-based security just isn’t enough anymore. Download to learn how for many data centers, the solution is microsegmentation.