Cyber

October 19, 2016
By Julianne Simpson

National Cyber Security Awareness Month is designed to engage and educate public and private sector partners through events and initiatives to raise awareness about cybersecurity; provide them with tools and resources needed to stay safe online; and increase the resiliency of the nation in the event of a cyber incident. This week’s theme is “Recognizing and Combating Cybercrime.”

October 21, 2016

Major websites such as Twitter, Spotify, Amazon—and AFCEA International and SIGNAL Media—fell victim to successive massive distributed denial of service (DDoS) attacks on Friday. The Internet traffic firm Dyn informed people of the cyber attack after the sites were shut down.

"We have begun monitoring and mitigating a DDoS attack against our Dyn Managed (Domain Name System) infrastructure,” the company said in a statement. “Our engineers are continuing to work on mitigating this issue.” Service was restored late Friday morning. Some customers experienced increased DNS query latency and delayed zone propagation. 

October 18, 2016

NATO Allied Command Transformation and the NATO Communications and Information (NCI) Agency launched yesterday an independent project to research options for streamlining NATO’s cyber capability development and acquisition processes. The final report from RAND Corporation is due in January.

October 17, 2016
By Aubrey Merchant-Dest

Last year, the Defense Department issued the Cybersecurity Culture and Compliance Initiative (DC3I), a memorandum containing alarming statistics on the actual number of successful network compromises and their causes, and principles for guiding daily operations for network users. The good news is that out of 30 million known malicious intrusions occurring over 10 months, 99.9 percent were prevented.

October 14, 2016
By Robert K. Ackerman

Last in a four-part series on election cyber vulnerabilities.

Standardizing voter registration processes, voting machines and vote tabulation is the key to eliminating most vulnerabilities plaguing U.S. elections, according to several cybersecurity experts. These standardizations would embed security, enable backups and eliminate many backdoors through which hackers and vote fraudsters currently can warp the results of an election.

October 14, 2016
By Sandra Jontz

Lt. Gen. Paul M. Nakasone, USA, assumed leadership of U.S. Army Cyber Command and 2nd Army during a ceremony Friday at Fort Belvoir, Virginia. He took over responsibilities from outgoing commander Lt. Gen. Edward C. Cardon, USA, who led Army Cyber for more than three years.

October 13, 2016
By Robert K. Ackerman

Third in a four-part series on election cyber vulnerabilities.

October 12, 2016
By Robert K. Ackerman

Second in a four-part series on election cyber vulnerabilities.

October 12, 2016
By Julianne Simpson

Being a victim of a cyber attack, either as an individual or business, can not only wreak havoc through major inconvenience and annoyance, but can also lead to financial ruin and can potentially threaten a victim’s reputation and safety.

October 11, 2016
By Robert K. Ackerman

This is the first of a four-part series, based on interviews with private sector cybersecurity experts, on the vulnerability of U.S. elections to cyberspace intrusion. The next three parts will focus on voting machines, vote tabulation and potential solutions to existing and future challenges.

October 11, 2016
By Aubrey Merchant-Dest

Defense and intelligence agencies need more than security tools and solutions to guard against the increasing number of cyber threats. They must create a culture to ensure that the nation’s cyber borders are secure. As highlighted in last week’s blog, it takes just one negligent worker to open the door and throw out the welcome mat to a malicious attacker.

October 5, 2016
By Sandra Jontz
In this U.S. Army file photo, Lt. Gen. Edward Cardon, USA, commanding general of Army Cyber Command, testifies before the U.S. Senate in 2015.

The U.S. Army is fighting fire with cyber fire, applying an “incredible focus” on attacking a primary terrorist threat by creating a task force to concentrate on a single targeted mission, says Lt. Gen. Edward Cardon, USA, commanding general of Army Cyber Command.

Responding to a rebuke by Defense Department Secretary Ash Carter that the cyber war against the Islamic State of Iraq and the Levant (ISIL) was progressing too slowly, the U.S. Cyber Command launched a unit with the sole task of going after the militant group’s online activity and put Gen. Cardon in charge of that effort.

October 6, 2016

Naval Information Forces has developed a website for the Navy Cyber IT and Cybersecurity Workforce (Cyber IT/CSWF) Qualification Program. Pertinent ALCOMS, the Navy cyber IT and cybersecurity qualification matrix, designation and appointment letter templates, program checklists and much more can be found on the new site.

October 5, 2016
By Julianne Simpson

The first week of National Cyber Security Awareness Month focuses on promoting cybersecurity for individuals. However, organizations of all types and sizes, especially small businesses, must be aware of the devastating consequences of a cyber domain attack.

October 3, 2016
By Aubrey Merchant-Dest

October is National Cyber Security Awareness Month (NCSAM) and the U.S. Department of Homeland Security hopes to use the month-long campaign to inform everyone—individuals, nonprofits, the military, private industries, educational institutions and governments—about cybersecurity.

October 1, 2016
By Sandra Jontz
U.S. Army cyber warriors defend the network at the tactical operations center for the 2nd Armored Brigade Combat Team, 1st Armored Division, during a Network Integration Evaluation in fall 2015.

With cyberspace emerging as a critical warfare domain, U.S. military leaders have been forced to dump both old habits and doctrine in the name of network security. These arduous tasks are part of adapting to the new normal of the digital age, which can include contorting Army policies and actions to win modern wars and address global crises, says Essye Miller, the Army’s director of cybersecurity.

October 1, 2016
By Capt. Terry Traylor, USMC
A screen shot depicts a future multiphase training program called Cylon Raider. The program would show how cyber factors into the modern battlefield.

Some U.S. Marine Corps cyber warriors are playing their way toward proficiency. The Corps’ Delta Company, Communication Training Battalion, has turned to gamification to foster a new cyber instruction method that is becoming much more than fun and games. Retooling teaching techniques gave rise to what is dubbed “2-3-6 training” to integrate the intelligence directorate with operations and communications, which in military parlance are designated by the numerals 2, 3 and 6.

October 1, 2016
By Shuangbao (Paul) Wang
Establishing paired firewalls between corporate and SCADA networks protects one sector from threats emerging from the other.

A defense-in-depth architecture built around a dual-data model reduces the risk of supervisory control and data acquisition networks being hacked or their data being stolen. The dual-data approach makes connecting various sensors and legacy systems easy, and initial tests show that adding a defense-in-depth architecture provides a degree of security not found in many of these networks, which often lack effective protection against intruders. 

October 1, 2016
By Paul A. Strassmann
U.S. Air Force F-15 Eagles flying for the U.S. Pacific Command taxi near a runway at Kadena Air Base, Okinawa, Japan. North Korean hackers stole wing designs for the F-15 from a South Korean company in a series of cyber attacks over a two-year period.

The vaunted technology edge enjoyed by Western nations risks fading into history because of espionage by nation-states. National competitors and potential adversaries are saving years of research and development and billions of dollars in related expenses by extricating secrets through cyberspace. Both military and commercial organizations are suffering what could amount to devastating losses from opportunistic enemies, and communications and information technologies top the list of desirable targets.

October 1, 2016
By Kevin Davis
The guided-missile destroyer USS Gridley leaves San Diego in June for its new home port of Everett, Washington. The crew of approximately 250 is trained to execute multimission tasking, including air, surface, undersea, space and cyber warfare.

Cyber capabilities have dramatically transformed the battlefield and how conflicts are resolved. Traditionally, battles were fought in conventional domains—land, air, sea, space—using kinetic, psychological and economic means to defeat opponents. In the cyber realm, anything goes. There are no rules. And adversaries are developing advanced cyber capabilities just as quickly as the United States, threatening critical infrastructure and other systems. So-called cyber-to-physical attacks, when hackers target physical buildings, networks and sites, demonstrate the potentially catastrophic results of a successful campaign against power, water and transportation services. 

Pages