Public

now browsing by tag

 
 

New York offers free #cyber #security #tools to #public to deter #hackers

New York City will offer free cyber security tools to the public as part of a new effort to improve online safety, officials said on Thursday, a week after Atlanta was hit with a ransomware attack that knocked some municipal systems offline.

The program, dubbed NYC Secure, will launch a free smartphone protection app to warn users when suspicious activity is detected on their devices, New York Mayor Bill de Blasio announced at a news conference.

“New Yorkers aren’t safe online. We can’t wait around for other levels of government to do something about it or the private sector,” New York Mayor Bill de Blasio said.

The program will cost the city about $5 million per year, he said.

“It’s our job in government to make sure that people are safe online. It’s a new reality,” de Blasio said.

City agencies will also beef up security protection on public Wi-Fi networks by the end of the year to protect residents, workers and visitors.

Those networks will be secured with a tool, dubbed Quad9, that is available to anybody in New York City and beyond at quad9.net Quad9 routes a user’s web traffic through servers that identify and block malicious sites and email.

NYC Secure was unveiled as Atlanta officials worked alongside federal law enforcement and technicians from private security firms to investigate the cause of the attack that encrypted data on computers.

Atlanta City Council President Felicia Moore said she was waiting to hear more about how the hackers breached city networks, the scope of the attack and when city services would be fully operational.

“Everybody in the public wants to know. I want to know, too,” Moore said at a news conference. “But I do think that we need to give them an opportunity to get the information.”

Atlanta on Thursday reactivated a website that allows residents to make requests for trash pickup, report traffic signal outages and ask for other public works-related services.

Municipal court services remained offline on Thursday and City Hall employees told Reuters their work computers were still unusable a week after the hack was detected.

advertisement:

The post New York offers free #cyber #security #tools to #public to deter #hackers appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Public #sector executive #pay should be #linked to #cybersecurity

Source: National Cyber Security News

Cybersecurity is constantly in the headlines for all the wrong reasons.

Earlier this month, we heard that all 200 UK NHS Trusts that have been assessed so far failed to meet the standards of the government-backed Cyber Essentials Plus scheme. Some of them even failed on patching, which was the vulnerability that led to the WannaCry ransomware attack. They clearly haven’t learned the lessons from an event which caused massive disruption across the health service, with operations postponed and appointments cancelled.

You would think that, if public sector organisations can’t even manage basic security hygiene such as patching, there would be consequences for those running them. However, while the forthcoming GDPR is bringing in new requirements for the protection of personal data, the large fines (€20m or 4% of global revenue) for a privacy breach will apply to the organisations concerned and will not affect their leaders.

After the TalkTalk cyberattack, its then chief executive Dido Harding may have had her cash bonus halved, from £432,000 to £220,000, but she was still paid a total of £2.81M in 2015, despite the personal and financial details of tens of thousands of customers disappearing into the ether.

Read More….

advertisement:

View full post on National Cyber Security Ventures

International Conference on Practice and Theory of Public Key Cryptography

Source: National Cyber Security News

Cryptography/ Crypto Event

 March 25 – 28, 2018 | Rio De Janeiro, Brazil

Cybersecurity Conference Description [Submitted by Organizer/ Or Written By Us]

PKC 2018 is the 21st edition of the International Conference on Practice and Theory of Public Key Cryptography, the main annual conference with an explicit focus on public-key cryptography, sponsored by IACR, the International Association for Cryptologic Research. Original research papers on all aspects of public-key cryptography, covering theory, implementations and applications, are solicited for submission to PKC 2018. Accepted papers will be published by Springer in their Lecture Notes in Computer Science series.

Read More….

advertisement:

View full post on National Cyber Security Ventures

Stolen #identities and a #lack of #verification render #public comment #procedures #meaningless

Source: National Cyber Security News

Before implementing policy and regulatory changes, federal agencies are legally required to permit the public to comment directly to the agency. At the end of the comment period, it is customary for the agency review the comments received and, occasionally, include comments received concerning the policy change or regulation.

Prior to the Federal Communication Commission’s decision to repeal the 2015 net neutrality rules, the FCC received over 22 million comments. If that sounds like a lot, it is. So many, in fact, that it prompted a closer look by the agency. As a result of its investigation, it determined that millions of these comments were fake. According to multiple researchers, more than one million of the 22 million cumulative comments were bots that used natural language generation to artificially amplify the call to repeal net neutrality protections. On June 19, 2017, nearly 500,000 comments were submitted in a mere second and nearly all of them were identical. In fact, about 7,000 comments were submitted under the name, “The Internet” and over 400,000 of them came from Russian email addresses.

The FCC is not alone, as other agencies have received fake comments from living as well as dead Americans including the SEC, the Consumer Financial Protection Bureau, the Federal Energy Regulatory Commission and the Department of Labor (DOL).

Read More….

advertisement:

View full post on National Cyber Security Ventures

Restaurant-goer has #Bitcoins #stolen over #unsecured public #wireless #network

Source: National Cyber Security – Produced By Gregory Evans

AFTER logging on to the public Wi-Fi at a restaurant, a man unwittingly had $155,000 stolen from his digital wallet. This is the real problem with Bitcoin.

AN UNSUSPECTING diner has had $155,000 worth of the digital currency Bitcoin stolen from him while logged on to a restaurant’s unsecured public Wi-Fi network.

The incident reportedly took place in an Austrian restaurant this week with the cyber thieves moving the digital currency to an “unknown, non-traceable account,” police said in a statement.

The 36-year-old victim reportedly logged on to the unsecured network to check the value of his Bitcoin holdings. He later realised that $100,000 euros worth had been stolen.

It remains unclear whether the victim’s account was already hacked before he logged on to the unsecured network, police said.

The incident, while small in nature, highlights the issue of hackers targeting personal Bitcoin accounts as the digital currency has exploded in value in recent years.

While Bitcoin is arguably becoming mainstream, it has had to endure a string of controversies along the way.

In January 2014, a Japanese-based Bitcoin exchange known as Mt Gox was hacked. It was once the largest bitcoin intermediary and the world’s leading bitcoin exchange before thieves made off with 850,000 BTC. At today’s value, that’s worth a staggering $A 9,147,700,000.

In June this year, South Korea’s largest Ethereum (another popular cryptocurrency) and Bitcoin exchange was breached by hackers who stole customers’ data and targeted their accounts in an effort to drain their digital wallets. According to local media reports, one person claimed to have lost 1.2 billion won, or about $A1.4 million.

And this week, a cryptocurrency start-up specialising in Initial Coin Offerings (ICOs) called Confido raised about $500,000 before the company’s website and founders vanished, along with the cash.

These are just a few examples of the potential dangers posed by operating in the still emerging crypto market. That being said, the threat of hackers certainly isn’t a problem confined to cryptocurrencies as hackers have also targeted central banks, recently fleecing more than $US100 million from the Bangladesh central bank’s account at the US Federal Reserve.

But if you’re going to check how much your Bitcoin wallet is worth, maybe be careful about where you log on.

The post Restaurant-goer has #Bitcoins #stolen over #unsecured public #wireless #network appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Arrests in Spokane Public Schools are down, but racial disparities persist

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ Spokane Public Schools has reduced the number of student arrests by 85 percent, with 99 students arrested in the 2016-17 school year compared to 806 students the year before, according to district data. But one thing…

The post Arrests in Spokane Public Schools are down, but racial disparities persist appeared first on Become007.com.

View full post on Become007.com

Public bodies are vulnerable to hacking – government needs to step up to protect them

more information on sonyhack from leading cyber security expertsSource: National Cyber Security – Produced By Gregory Evans Barely a month passes in 2017 without some kind of IT failure hitting the headlines, but the hacks, leaks and breaches that make the news may represent just the tip of the iceberg. An investigation by the i newspaper has revealed that public bodies such as […] View full post on AmIHackerProof.com | Can You Be Hacked?

Safety tips for using public Wi-Fi

Source: National Cyber Security – Produced By Gregory Evans

Q: What can I do to be safe when using public Wi-Fi? The convenience of accessing public Wi-Fi networks has become somewhat of an expectation when we’re away from our primary home and work connections, but it’s important to understand the risks. Anytime you share a connection with strangers, whether…

The post Safety tips for using public Wi-Fi appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Worker pleads guilty to tampering with public records in child abuse cases

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ Whitney Adams pleaded guilty Thursday morning to tampering with public records. Adams was sentenced to 5 years probation and community service. Adams was accused of lying about her investigations in dozens …

The post Worker pleads guilty to tampering with public records in child abuse cases appeared first on Become007.com.

View full post on Become007.com

Personal Security Takes A Hit With Public Release Of NSA’s Hacking Toolkit

Source: National Cyber Security – Produced By Gregory Evans

Personal Security Takes A Hit With Public Release Of NSA’s Hacking Toolkit

Former members of Team Espionage recently expressed their concern that the Shadow Brokers’ dump of NSA Windows exploits had done serious damage to the security of the nation. The unwanted exposure of NSA power tools supposedly harmed intelligence gathering efforts, even though the tools targeted outdated operating systems and network software.
However, there are still plenty of computers and networks online using outmoded software. This makes the released exploits a threat (especially those targeting XP users, as that version will never be patched). But not much of a threat to national security, despite the comments of anonymous former Intelligence Community members. It makes them a threat to personal security, as Chris Bing at CyberScoop points out:
One of these hacking tools, a backdoor implant codenamed DOUBLEPULSAR — which is used to run malicious code on an already compromised box — has already been installed on 30,000 to 50,000 hosts, according to Phobos Group founder Dan Tentler. Other researchers have also engineered different detection scripts to quickly scan the internet for infected computers.
John Matherly, the CEO of internet scanning-tool maker Shodan.io, said that upwards of 100,000 computers could be affected.
Rather surprisingly, data gathered by security researchers shows a majority of the infected computers are in the United States. This shows Microsoft’s steady updating push still faces a sizable resistance right here at home. What it also shows is how fast exploits can be repurposed and redeployed once they’re made public. The scans for DOUBLEPULSAR have turned up thousands of hits worldwide.
DOUBLEPULSAR is simply a backdoor, but an extremely handy one. Once installed, it makes targeted computers extremely receptive to further malware payloads.
“The presence of DOUBLEPULSAR doesn’t mean they’re infected by the NSA, it means there is a loading dock ready and waiting for whatever malware anyone wants to give it,” Tentler said. “The chances are none that all theses hosts [were hacked by] the NSA.
So, there’s that small bit of comfort. It’s not the NSA nosing around the innards of your Windows box, but a bunch of script kiddies playing with new toys… adding them to the normal rolls of malware purveyors seeking to zombify your device and/or make off with whatever information is needed to open fraudulent credit card accounts or whatever.
The NSA certainly could have informed Microsoft of these exploits before it ended support for certain platforms, thus ensuring late- (or never-) adopters were slightly more protected from malware merchants and state agencies. But that’s the Vulnerabilities Equity Process for you: no forewarning until a third party threatens to turn your computing weapons over to the general public.

Source:

The post Personal Security Takes A Hit With Public Release Of NSA’s Hacking Toolkit appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures