IT Security


House passes CISPA, despite veto threat

The first two cybersecurity bills being considered in the House during "Cyber Week," CISPA and the Federal Information Security Amendments Act, passed April 26; two more bills are to be considered today.

The real threat: China, Iran or our own weaknesses?

Forget Russia, China and Iran. The real threat to critical infrastructure is a failure to address security fundamentals in the design and operation of U.S. systems, says one analyst.

Conficker returns, exploiting weak passwords on network systems

Infections by the persistent worm, which takes advantage of weak or shared passwords or stolen login tokens, rose in 2011, Microsoft says.

New chip tracks smart-phone locations down to the inch, even indoors

Broadcom's new chip uses sensors, wireless protocols and multiple satellite constellations to pinpoint locations outside or inside, and even tell you which floor you're on.

Iran a more dangerous cyber threat than China or Russia, experts tell Congress

Iran's willingness to attack the United States and its plans for cyber war capability make it a serious threat, a panel of experts said during a House hearing.

James Langevin

Rep. Langevin: Cyber law dithering endangers US critical infrastructure

Congress should set aside partisan differences to pass legislation that would require cybersecurity standards to protect U.S. critical infrastructure.

CISPA debate heats up in House as vote nears

Both sides agree on the need to better share threat information, but disagreement on how to protect privacy threatens the bill.

Security pros not ready for attacks, still don't want government regs

Respondents in a new survey expect to be hit by cyberattacks and have failed to adequately secure their systems, but they also do not want government regulation.

Dynasty? U of W repeats as national cyber defense champ.

This year's 10-school National Collegiate Cyber Defense Competition featured red team attacks, orange team service demands and a couple of surprises.

1 in 5 Macs infected with (Windows) malware, study finds

The malware won't cause damage unless you're running Windows, but Sophos' study also found malware written for Mac OS X.

Major cyberattack on US 'inevitable,' experts tell Congress

Without government mandates to secure critical infrastructure, a damaging cyberattack on the nation will happen, experts tell a House panel.

FBI, working group reboot effort to rid computers of DNSChanger

The bureau and the ad hoc DNSChanger Working Group have relaunched their effort to clean machines of the malware before a July deadline.

Smart-grid tech outpacing security, in 'delicate dance with risk'

Innovation for a smart energy grid is ahead of security, and breaches are inevitable, says the chief of an industry advisory group.

Iran takes oil refineries offline after cyberattack

Latest strike involving the country's industrial systems does limited damage, state-run news agency reports.

April is a cruel month for medical records breaches

Disks containing 315,000 patient records have gone missing from Emory University Hospital in Atlanta, the second major U.S. medical information breach in as many weeks.