Home / hacking

hacking

Defense Digital Service and HackerOne Initiate Third ‘Hack the Army’ Bug Bounty Challenge

January 6, 2021
Posted by Julianne Simpson
Credit: Shutterstock/Aleksandar Malivuk

The Defense Digital Service (DDS) and HackerOne announced the launch of the DDS’s latest bug bounty program with HackerOne. It is the eleventh such program for DDS and HackerOne and the third with the U.S. Department of the Army.

Hack the Army 3.0 is a security test— time-bound and hacker-powered—aimed at revealing vulnerabilities so they can be resolved before they are exploited by adversaries. The bug bounty program will run from January 6, 2021, through February 17, 2021, and is open to both military and civilian participants.

Zeroizing Network Shrinks Attack Surfaces

October 1, 2020
By Joseph Mitola III
Senior Airman Daniel M. Davis, USAF, 9th Communications Squadron information system security officer, looks at a computer in the cybersecurity office on Beale Air Force Base. Cybersecurity airmen must manage more than 1,100 controls to maintain the risk management framework. Credit: U.S. Air Force photo by Airman Jason W. Cochran

Users need to transition all networked computing from the commercial central processing unit addiction to pure dataflow for architecturally safe voting machines, online banking, websites, electric power grids, tactical radios and nuclear bombs. Systems engineering pure dataflow into communications and electronic systems can protect them. The solutions to this challenge are in the users’ hands but are slipping through their fingers. Instead, they should grab the opportunity to zeroize network attack surfaces.

Current Threats Require Multifactor Protection

October 1, 2020
By Dirk W. Olliges
Leslie Bryant, civilian personnel office staffing chief, demonstrates how to give fingerprints to Jayme Alexander, Airmen and Family Readiness Center casualty assistance representative selectee. Although requiring fingerprints to access information is better than single-factor identification verification, it should be part of a multifactor authentication approach. Credit: 2nd Lt. Benjamin Aronson, USAF

The two-factor authentication schema is often heralded as the silver bullet to safeguard online accounts and the way forward to relegate authentication attacks to the history books. However, news reports of a phishing attack targeting authentication data, defeating the benefits of the protection method, have weakened confidence in the approach. Furthermore, hackers have targeted account recovery systems to reset account settings, yet again mitigating its effectiveness. Facilitating additional layers of security is crucial to bolstering user account protection and privacy today and into the future.

Characteristics of a Cyber Marauder

May 28, 2020
By Kimberly Underwood
Characteristics of cyber actors give clues as to who poses a credible threat, experts say. Credit: Shutterstock/BABAROGA

The persistence, frequency and destructiveness of cyber attackers in this day and age propels digital defenders to search the Internet to understand how attackers operate in order to thwart attacks or fix vulnerabilities. Amidst all of the nefarious activity, cyber defenders must discern between credible threat players and less dangerous actors. One company, New York-based Flashpoint, searches the deep web and the dark web to gain intelligence on malicious cyber activity, including where, when, why and how bad actors are operating. More and more, threat actors are selling stolen, sensitive or valuable information, or they are selling awareness of vulnerabilities of companies.

Military Will Host Virtual Hack-A-Sat Event

May 19, 2020
Posted by Kimberly Underwood
Credit: Shutterstock/Pogorelova Olga

The Space Force has announced that the planned satellite hacking challenge known as Space Security Challenge 2020: Hack-A-Sat would proceed as planned, but in a virtual format due to the pandemic. The Department of the Air Force and the Defense Digital Service's (DDS's) event includes an online qualification event May 22-24, followed by a final August 7-9. During the final, participants will attempt to reverse-engineer representative ground-based and on-orbit satellite system components to overcome planted “flags” or software code.

Stealth Attacks Require Stealth Responses

July 1, 2019
By Kyle Aldrich
Looking Glass stock

Global, asymmetrical threats now dominate attacks on nations and businesses alike, and the enemy is not always immediately knowable, identifiable or even seen. These realities are forcing leaders to invest more resources into analytics, as well as intelligence, surveillance, reconnaissance and other 21st century responses to cyber bombardments today.

Cyber Is the Perfect Weapon

May 22, 2019
By Julianne Simpson
David Sanger, national security correspondent for The New York Times, discusses cyber at the AFCEA-GMU C4I and Cyber Center Symposium.

Cyber is fundamentally changing the national security landscape. David Sanger, national security correspondent for The New York Times and author of The Perfect Weapon, used his keynote address on day two of the AFCEA-GMU C4I and Cyber Center Symposium not to explain what is happening, but why this is happening.

To illustrate the new age of weaponizing information, Sanger described the differences between Watergate and the hack of the DNC in December 2016. The Russians didn’t have to do anything the Watergate hackers did.

Mission First: The Story of an NSA Hacker

August 1, 2018
By George I. Seffers
Credit: TheDigitalArtist/Pixaba

Millions of times every single day, antagonists search for entry into the U.S. Defense Department’s networks. They come from all over: Russia, China, North Korea, Iran. Some are sponsored by nation-states; others are terrorist groups.

Hacking the Human Is the Next Cyber Threat

August 1, 2018
By Robert K. Ackerman
Shutterstock imagery by Pavel Chagochkin

Medical technologies such as electronic devices implanted or injected into the human body are the next growth area for hackers pursuing money or control of individual people. With nanotechnology implants already being used for some medical treatments, advances in their application could pose as great a cybersecurity threat as what faces the Internet of Things, experts say.

Latest Leakers Are Canaries in Coal Mine

July 1, 2018
By Margaret S. Marangione
The millennial generation came of age when the ability to share information via technology was just beginning. Without guidelines, many began to share everything without regard of the consequences to themselves or others. Credit: GaudiLab/Shutterstock

The recent dissemination of classified information through media outlets and social media indicate that contemporary insider threat management has entered a new phase. Unlike previous generations that adhered to a strict code of silence, some millennials in charge of keeping U.S. secrets safe have the urge to share information they deem the public has the right to know. Rather than going through official channels to reveal actions they believe are wrong, people like Chelsea Manning, Edward Snowden and Reality Winner leak classified material through media and are just the first indication of information management processes that must change with the times.

This Team Is a Lean, Mean Cyber Crime-Fighting Machine

January 1, 2018
By Milan Balazik and Col. Katerina Bernardova, CZA (Ret.)
The Czech army examines the dynamics within social groups using a technique called sociomapping, which helps analyze an adversary’s team member relationships and applies to offensive cybersecurity team building.

Modern information and networking technologies bring exciting functionalities to everyone, everywhere, all the time. Manufacturers, service providers and users alike welcome the advancements because they boost business opportunities and enable new and better computing capabilities that offer convenience, increase independence and save time.

Plainly, innovations are appealing, but important security aspects are being pushed into the background. Security adds complexity and limitations to functionality. It requires more resources and seems to slow innovation and increase cost. In a military environment, these hurdles can seriously affect mission success.

New Ransomware Attack Targets Europe, U.S. Bracing

June 27, 2017
By Sandra Jontz

Governments, banks, transportation systems and critical infrastructure entities reeled Tuesday from yet another wide-sweeping disruptive cyber attack—one that echoed the WannaCry breach in May but is potentially far more crippling.

Cyber experts began bracing for the effects of a massive attack that hit Ukraine first, and then rippled throughout other European nations before going global.

U.S. Air Force to Hackers: Take Your Best Shot

May 3, 2017
 
Alex Rice, chief technology officer and co-founder of HackerOne Incorporated (l), speaks with Peter Kim, Air Force chief information security officer (c), and Chris Lynch, director, Defense Digital Service, about the upcoming Hack the Air Force event.

Vetted computer security specialists from across the United States and select partner nations are invited to hack some of the U.S. Air Force’s key public websites. The initiative is part of the Cyber Secure campaign the service’s chief information officer is sponsoring to further operationalize the domain and leverage talent from inside and outside of the Defense Department. HackerOne Incorporated, a security consulting firm, is managing the contest.

Contact Us

 

© AFCEA International, 4114 Legato Rd Ste 1000, Fairfax, Virginia, 22033. All rights reserved.
SIGNAL ® and The CyberEdge ® are registered in the U.S. Patent and Trademark Office.

English French German Italian Portuguese Russian Spanish