OnLine

now browsing by tag

 
 

Online #game designed to #bring more #young women into #cybersecurity #field

Source: National Cyber Security – Produced By Gregory Evans

High school girls will soon have a chance to play as “cyber protection agents” in an online game designed to attract more women into the cybersecurity field.

Delaware is one of seven states to partner with the SANS Institute, a for-profit cybersecurity training company, on the pilot of CyberStart. The online game is designed to teach cybersecurity skills to young people through sets of interactive challenges. The first round of the program engaged 358 students in Delaware and 3,300 across all seven states — but just five percent were women.

The latest version, Girls Go CyberStart, is designed to draw more young women to the game and ultimately the fast-growing cybersecurity field.

“The importance of cybersecurity cannot be understated and I encourage young women in Delaware high schools to take advantage of this opportunity to explore career options in this vital field,” Gov. John Carney said. “Delaware needs a pipeline of talent and a strong workforce to remain competitive in the innovation economy.”

Girl Scouts of the Chesapeake Bay CEO Anne T. Hogan said the organization will encourage its members to play the game. “This program will allow girls to learn by doing, develop important problem solving and leadership skills, and take the lead on their futures,” she said.

The players must complete 10 levels of challenges based around protecting an “operational base” under threat of cyber attack. The game will provide an agent field manual to help overcome the basic technical challenges of cybersecurity.

Registration will open January 29 and run until February 16. The first 10,000 applicants can play the game from February 20-25. More information is available at GirlsGoCyberStart.com.

The post Online #game designed to #bring more #young women into #cybersecurity #field appeared first on National Cyber Security .

View full post on National Cyber Security

Hacker gets #woman’s #nude pics, #threatens to #post them #online

A woman said her email account was hacked. She told Lee County Sheriff’s Office that she is not being threatened by an unknown suspect with her own photographs.

The woman believed the person found her email address on Facebook.

“Revenge porn is a form of harassment. It’s a form of abuse,” Elizete Velado said. Velado is an attorney at Goldberg and Noone in Downtown Fort Myers.

Velado’s firm is not involved with this particular case. However, she told 4 In Your Corner revenge porn has been a problem for years.

“It’s really important for people to remember it’s not the victim’s fault when someone breaks into their computer,” Velado said. “Breaking into your computer is like breaking into your home,” she added.

The victim told investigators she was bombarded with messages. The unknown person wanted her to pay up. She told the deputy that the person would post the nude pictures of her.

Hackers like the one in this case have stayed slightly ahead of the laws.

“It’s very difficult for the law to keep up with emerging technology and sexual cyber stalking takes many forms,” Velado added.

Florida has laws against sexual cyber stalking. It allows victims to get compensated.

Arrests are few and far between because hackers hide behind IP addresses and proxy servers.

Velado hopes future laws will bring about justice.

“It’s great that we finally got national attention on this. It is an issue that needs to be dealt with. The people that are doing this need to be held accountable,” Velado said.

The woman in this case plans to press charges if and when the suspect is found. She submitted screenshots of the messages to investigators.

advertisement:

The post Hacker gets #woman’s #nude pics, #threatens to #post them #online appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

SEARCH #ENGINE WITH #MILLIONS OF #HACKED DUTCH #PASSWORDS #ONLINE

A search engine showing 1.4 billion of leaked or hacked passwords, including those of some 3.3 million Dutch, is officially online. On Gotcha.pw Dutch people can now check whether their password was stolen by searching for their email address. If there is a leaked password associated with that email address, the site shows the first two characters of the password, NU.nl reports.

You can also search domain names on the site. In this way organizations can see which of their employees’ email addresses and passwords are on the street. Passwords from the National Coordinator for Counter-terrorism and Security, among others, can be found on the site, according to the newspaper. It is not clear whether these are old or current passwords.

The Gotcha.pw site administrator collected these passwords from previous data leaks and bundled them into a search engine. Such search engines have existed for some time. The Dutch police offer a similar service, and people can also use Have I Been Pwned to find out if their password is not safe.

The arrival of the Gotcha.pw search engine was announced with great fanfare last week – in a front page story on AD. The search engine was online for a short time last week Friday, but was taken down again. It initially showed the full hacked password, which is illegal. The administrator therefore adjusted the site to only show the first two letters of the passwords, according to NU.nl.

advertisement:

The post SEARCH #ENGINE WITH #MILLIONS OF #HACKED DUTCH #PASSWORDS #ONLINE appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

How To #Shop Safely #Online During the #Holidays

Source: National Cyber Security – Produced By Gregory Evans

Shopping online for your holiday gifts is incredibly convenient. Why stand in long lines at the mall, when you can find everything you need for your friends and family in your pajamas? The National Retail Federation reports that 59 percent of consumers shop online for the holidays. But you can also open yourself up to identity theft, scams and hacking.

Here are a few ways to keep your information safe.

1. Only shop on websites that have a reputation for being trustworthy with your financial information, like Amazon or Target.com. Moreover, it helps to track your credit score to ensure that you haven’t been hacked. Forty-five percent (45%) of people use a credit monitoring tool so that they have access to tools and resources they need to improve or protect their credit, according to the 2017 Capital One Credit Protection Survey.

2. Check the url of the website. Never put your credit card information online unless there is a padlock icon, and the url starts with “https”. This is called a secure sockets layer or SSL. “Use different passwords for different websites whenever possible, specifically ensuring your banking password is different for other merchants,” says Sarah Strauss, head of fraud and managing vice president, U.S. Card at Capital One

3. Track your credit report on a regular basis so you’ll know when something goes wrong. Thirty-six percent (36%) of people could be doing more to protect their credit, according to the same survey. “You can regularly monitor your credit with a free tool like CreditWise,” says Strauss. “Also, sign up for purchase notifications from your credit card company or bank so you know when your card is used.”

4. Avoid simple passwords. Have at least eight characters that include both upper and lowercase letters, numbers and symbols. Never use your date of birth, name, or any other personal information that a hacker can guess. “If your information is compromised, a fraudster can use that information to open new accounts, access existing accounts, and/or use stolen credit card numbers to make fraudulent purchases,” says Strauss. “One of the biggest risks to your credit score is if a fraudster opens an account in your name, and then defaults on the loan.”

In the worst case scenario, you still have the power to save your credit score. If you see that someone has stolen your identity, you can call one of the three major credit bureaus — Experian, Equifax or TransUnion — and do a credit freeze. This means that you cannot open any new cards under your own name. But the thief can’t, either.

“While your liability for credit card fraud is limited, the process to clean up the fraudulent information on your credit bureau can be time consuming,” says Strauss. “In a world where our information is increasingly digital, the best strategy for consumers is to be vigilant and regularly monitor your credit report and bank accounts to catch fraud quickly.”

The post How To #Shop Safely #Online During the #Holidays appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

1.4 #billion #hacked #passwords leaked #online, now you’re at #risk

Source: National Cyber Security – Produced By Gregory Evans

Staying protected from cybercriminals is something everyone needs to stay on top of now that we’re living in a digital world. New data breaches, malware and phishing scams are popping up constantly.

Having sensitive information fall into the hands of criminals is the last thing that we need. You definitely don’t want your identity stolen or hackers having access to your bank accounts.

Unfortunately, a massive archive of stolen credentials was recently discovered online that could put you at risk.

Have your credentials been exposed?

Security researchers at 4iQ recently discovered a 41GB archive that contains more than 1.4 billion stolen user credentials. The credentials, including passwords, are unencrypted on the Dark Web.

The database includes email addresses, passwords and usernames. This isn’t actually a new data breach, it’s a collection of information that had been stolen in previous data breaches.

Researchers who discovered the file said, “While scanning the deep and dark web for stolen, leaked or lost data, 4iQ discovered a single file with a database of 1.4 billion clear text credentials–the largest aggregate database found in the dark web to date.”

More than 250 previous data breaches contributed to this collection of stolen credentials. The stolen information was well organized, even indexed alphabetically by the criminal who put it together.

Anytime there is a massive data breach, there are steps that you need to take to make sure your information is secure. Keep reading for suggestions.

Change your password

Whenever you hear news of a data breach, it’s a good idea to change your account passwords. This is especially true if you use the same credentials for multiple websites, which is a bad idea.

If your credentials are stolen from a breach, criminals can test them on other sites to log into those accounts as well.

Keep an eye on your bank accounts 

You should already be frequently checking your bank statements, looking for suspicious activity. It’s even more critical when sensitive information has been exposed through a data breach.

If you see anything that seems strange, report it immediately. It’s the best way to keep your financial accounts safe.

Set up two-factor authentication 

Two-factor authentication, also known as two-step verification, means that to log into your account, you need two ways to prove you are who you say you are. This is an extra layer of security that will help keep your accounts safe.

Investigate your email address 

This is a critical step and it will only take a few seconds of your time. You need to find out if your credentials are part of any recent data breach. The best way to find out if you’re impacted is with the Have I Been Pwned website. 

It’s an easy-to-use site with a database of information that hackers and malicious programs have released publicly. It monitors hacker sites and collects new data every five to 10 minutes about the latest breaches. You can even set up alerts to be notified if your email address is impacted in the future.

Beware of phishing scams 

Scammers will try and piggyback on data breaches like this. They will create phishing emails, hoping to get victims to click on malicious links that could lead to more problems. You need to familiarize yourself with what phishing scams look like so you can avoid falling victim to one.

FROM WEBCAMS, SIGN-INS, TO ALEXA, DON’T MAKE THESE MISTAKES

When our PCs work normally, we sometimes take them for granted. We recklessly fill up our hard drives with data, download files, install applications and browse the web as we please. But of course, all it takes is one installation of a malicious application to ruin your PC and worse, have all your information stolen.

The post 1.4 #billion #hacked #passwords leaked #online, now you’re at #risk appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Cyber security #expert warns about the #dangers of sending #explicit images #online

Source: National Cyber Security – Produced By Gregory Evans

Cyber security #expert warns about the #dangers of sending #explicit images #online

A cyber security expert is warning about the dangers of sending sexually explicit images to strangers online.

Many Irish companies increased their IT security in the wake of the ‘Wanna Cry’ randsomware incident earlier this year, which affected systems in hundreds of countries around the world.

‘Sextortion’ is a much less complicated scheme which targets individuals on various social networking sites.

The CEO of Cyber Risk International, Paul Dwyer, who will be speaking at todays Cyber Threat Summit in Dublin, says people need to be aware of the scam.

He said: “People hear time and time again about the fact that there are fake profiles that reach out to people.

“They start a relationship with them and then they will ask them to do an embarassing act on camera, then hold them to ransom.

“That is happenning all the time, we are getting regular calls, and not just us but other security providers too.”

 

The post Cyber security #expert warns about the #dangers of sending #explicit images #online appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Millennials are more aware of #cyber risks yet are ‘alarmingly’ careless #online. What gives?

Source: National Cyber Security – Produced By Gregory Evans

Millennials are more aware of #cyber risks yet are ‘alarmingly’ careless #online. What gives?

Millennials are more aware of cybersecurity careers than they were four years ago and believe that cyber attacks influenced the 2016 presidential election, and yet they’re not interested in pursuing cyber professionally and exhibit careless online habits in their everyday lives.

No, this is not the head-scratching dichotomy of the latest viral video from Simon Sinek explaining this either self-absorbed and entitled or passionately idealistic generation — it depends on whom you ask — born between 1981 and 1997. Rather, the insights are from a new survey from Raytheon Co.’s Intelligence, Information and Services business unit, based in Dulles, along with the National Cyber Security Alliance and Forcepoint, an Austin, Texas-based cyber company owned by Raytheon.

The annual study, in its fifth year, captures what the companies call “alarming” trends among millennials when it comes to cybersecurity. And why does a $24 billion gov-con giant like Waltham, Massachusetts-based Raytheon (NYSE: RTE) care?

Because “the demand for skilled cyber talent has become a national security issue,” Dave Wajsgras, president of the company’s Intelligence, Information and Services division, said in a statement. “While great strides have been made to increase millennial awareness in the cybersecurity profession, there is still work to be done.”

Indeed, hacks and breaches seem to grow more damaging and widespread by the day. At the same time ISACA, a nonprofit information security advocacy group formerly known as the Information Systems Audit and Control Association, predicts there will be a global shortage of 2 million cybersecurity professionals by 2019.

Every year in the U.S., 40,000 jobs for information security analysts go unfilled, and employers are struggling to fill 200,000 other cybersecurity-related roles, according to cybersecurity data tool CyberSeek. For every 10 cybersecurity posts that appear on careers site Indeed, only seven people even click on one of the ads, let alone apply, according to Forbes.

Opinion research firm Zogby Analytics independently conducted the Raytheon survey, polling 3,359 young adults ages 18-26 in nine countries: Australia, Germany, Jordan, Poland, Qatar, Saudi Arabia, United Arab Emirates, United Kingdom and United States.

Some of the survey’s findings are encouraging, showing rising cyber awareness and engagement among millennials:

  • 34 percent of U.S. survey respondents (37 percent globally) said a teacher discussed cybersecurity with them as a career choice, up 21 percent from the number of respondents who said a career in cyber had been mentioned to them by a teacher, guidance or career counselor in 2013.
  • 51 percent of U.S. respondents (52 percent globally) said they know the typical range of responsibilities and job tasks involved in the cybersecurity profession, up from 37 percent in the U.S. in 2014.
  • Globally, 46 percent of men have met or known someone studying cybersecurity at the high school, university or graduate level.
  • 71 percent of young adults surveyed think it’s their responsibility to keep themselves secure online rather than relying on the government, commercial companies or other individuals.

At the same time:

  • Globally, only 38 percent of millennials were willing to consider a career in cybersecurity. That percentage is unchanged from 2016.
  • Only 26 percent of women globally have met or known someone studying cybersecurity at the high school, university or graduate level.
  • Globally, 63 percent click on links even if they aren’t sure the source of the link is legitimate.
  • The proportion of U.S. young adults who share passwords with non-family members nearly doubled from 23 percent in 2013 to 39 percent in 2017 (42 percent globally this year).
  • 74 percent reported using unsecured public Wi-Fi today in the U.S. as a matter of convenience even though the security risks are well documented, up from 66 percent in 2013.

“We need to be providing the tools for this generation to take action and embrace safe online practices,” Michael Kaiser, executive director of the National Cyber Security Alliance, said in a statement. “We also need strong role models – including parents, teachers, colleagues, and friends – to help improve cyber practices nationwide and encourage the pursuit of cybersecurity careers among young adults.”

 

The post Millennials are more aware of #cyber risks yet are ‘alarmingly’ careless #online. What gives? appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Online crime presents new challenges for insurers

Source: National Cyber Security – Produced By Gregory Evans

Any business in its right mind has crime insurance. What it may not have is the protection it needs to face new threats such as social-engineering fraud and ransomware. The recent $11.8-million vendor-impersonation scam against MacEwan University in Edmonton is only the latest high-profile social-engineering fraud in what has become…

The post Online crime presents new challenges for insurers appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Her invention is a nightmare for hackers, and could soon become the ‘gold standard’ for online identification

Source: National Cyber Security – Produced By Gregory Evans

Swedish company Yubico is pioneering a digital security standard that uses an USB drive for online identification. With customers including Google, Facebook and Dropbox, and a $30 million capital injection secured, the company’s Silicon Valley-based CEO Stina Ehrensvärd is ready to go global. At a time when cyberattacks are exploding,…

The post Her invention is a nightmare for hackers, and could soon become the ‘gold standard’ for online identification appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures