The U.S. Cybersecurity and Infrastructure Security Agency (CISA), part of the Department of Homeland Security, debuted the Joint Cyber Defense Collaborative (JCDC), which will leverage the expertise of Big Tech companies including Amazon, Google and Microsoft. According to CISA director Jen Easterly, the initiative’s aim is first to combat ransomware and cyberattacks on cloud-computing providers and ultimately to improve defense planning and information sharing between the government and private sectors. Continue reading U.S. Cybersecurity Agency Enlists Amazon, Google, Microsoft

President Joe Biden is working on a draft executive order to require companies doing business with the federal government to report hacks within a few days. Homeland Security secretary Alejandro Mayorkas stated the order would also require the companies to use data encryption and two-factor authentication and would combat ransomware and improve protection for industrial control systems, transportation and election security. The SolarWinds hack has prompted the government to pay closer attention to cybersecurity. Continue reading Biden to Issue Executive Order Upgrading U.S. Cybersecurity

Russia and China recently ran sophisticated hacks from servers inside the United States, going undetected by the National Security Agency, which is prohibited from conducting surveillance in the U.S., as well as the FBI and Department of Homeland Security. Private computer security firms were the first to raise the alarm on these foreign attacks, and Microsoft reported that its patches are being reverse-engineered by criminal groups to launch ransomware attacks on corporations. The White House is paying attention. Continue reading Cybersecurity: White House Pursues Public-Private Alliances

FireEye data scientist Philip Tully showed off a convincing deepfake of Tom Hanks he built with less than $100 and open-source code. Until recently, most deepfakes have been low quality and pretty easy to spot. FireEye demonstrated that now, even those with little AI expertise can use published AI code and a bit of fine-tuning to create much more convincing results. But many experts believe deepfake text is a bigger threat, as the GPT-3 autoregressive language model can produce text that is difficult to distinguish from that written by humans. Continue reading Quality of Deepfakes and Textfakes Increase Potential Impact

One conspiracy theory making the rounds on the Internet connects the coronavirus outbreak to 5G technology. Although actors Woody Harrelson and John Cusack are among those endorsing the misinformation, researchers indicate the majority of online activity around this theory is coordinated and possibly state sponsored. That’s the conclusion of Marc Owen Jones, a researcher at Qatar’s Hamad bin Khalifa University, who analyzed 22,000 Twitter interactions and found a large number displaying “inauthentic activity.” Continue reading Social Media Campaign Aims to Link Coronavirus to 5G Tech

The National Security Agency and security firm FireEye recently detected extensive attacks by Iran on U.S. banks, businesses and government agencies, prompting the Department of Homeland Security to declare an emergency during the government shutdown. The attacks from Iran took place at the same time that China renewed its efforts to steal trade and military secrets, from Boeing, General Electric Aviation and T-Mobile. Meanwhile, Microsoft detected a Russian government operation targeting think tanks critical of Russia. Continue reading Chinese, Iranian, Russian Hackers Honing Their Attack Skills

Facebook identified and removed 652 fake accounts, pages and groups from Iran and Russia that were attempting to sow misinformation in several countries. Such campaigns in the past — most notably leading up to the 2016 presidential election — targeted the U.S., but these accounts targeted the U.K., Latin America and the Middle East as well. This discovery is dramatically larger than the 32 pages and accounts that Facebook removed last month. The Kremlin-linked Internet Research Agency was indicted for the 2016 campaign. Continue reading Facebook Removes Fake Accounts Linked to Iran and Russia

Led by tech titans Facebook and Microsoft, more than 30 tech companies have signed a Cybersecurity Tech Accord as part of their efforts to protect customers from cyberattacks and “the misuse of their technology.” According to the agreement, tech companies pledge not to assist governments that initiate attacks against “innocent civilians and enterprises.” Among the signatories are companies that power Internet technology and information infrastructure, including Cisco, Cloudflare, Dell, HP, LinkedIn, Nielsen, Nokia, Oracle, Symantec and VMware. Continue reading Tech Firms Sign a Cybersecurity Pledge to Protect Customers

Uber Technologies acknowledged that one year ago it paid hackers $100,000 to hide a data breach that impacted 47 million accounts. The company fired then-chief security officer Joe Sullivan and deputy Craig Clark for both the breach itself and concealing it. The hackers got the names, emails and phone numbers of millions of riders as well as 600,000 drivers’ license numbers, although apparently Social Security numbers and credit card numbers were not accessed. Uber says it will inform those impacted by the breach in “coming days.” Continue reading New Uber CEO Faces the Impact of Undisclosed Data Breach

The Chinese government, increasingly uneasy about virtual currency, is on the verge of shutting down the country’s Bitcoin exchanges, say sources. The move comes as the government focuses on preventing capital from leaving to digital currencies. But if China, the world’s No. 2 economy, does indeed take this step, the market for cryptocurrencies, including all the new companies using it, will feel the impact. Of all the virtual currencies, Bitcoin is the largest, since restrictions on it were loosened in Japan and elsewhere. Continue reading Sources Say China Is Planning to Shutter Bitcoin Exchanges

Cybersecurity technology from Los Alamos National Laboratory is now available to banks and other private sector businesses, via the consulting firm Ernst & Young. The New Mexico lab, benefitting from the $1 billion the U.S. spends a year on unclassified cybersecurity research, has developed a great deal of relevant technology, but is not set up to market the results of its own research. Ernst & Young, which consults on cybersecurity, will communicate the lab’s products and add its own expertise. Continue reading New Initiative: U.S. Offers Cybersecurity Tech to Private Sector

Companies such as IBM and Symantec are investing in new technologies to detect viruses and hackers and make stealing customer data more difficult. The companies believe that traditional antivirus software that erect barriers to keep out threats is becoming increasingly ineffective as hackers around the world regularly create novel bugs. IBM plans to analyze behavior in computer network data to detect irregularities. Symantec is launching its own division that will help hacked businesses respond to security breaches.  Continue reading Cybersecurity Focus Shifts From Blocking to Spotting Threats