Cyber Security/Protection

NATO in the Cloud

Interoperability with evolving cloud-computing technologies is presenting a challenge for NATO as it tries to set alliance-wide standards. France, Germany and the U.S. have already initiated their own programs but a researcher points out that “showing results quickly is important for NATO to give a common direction.” [node:read-more:link]

Russia sanctioned over SolarWinds and Crimea

The U.S. has imposed new sanctions on Russia and formally blamed its SVR intelligence agency for last year’s massive SolarWinds breach of government and corporate systems. Designed to choke off lending to the Kremlin, the sanctions against 32 entities and individuals coincided with diplomatic expulsions in Washington. Also, in collaboration with allies, the U.S. has sanctioned eight individuals and entities associated with Russia’s occupation of Crimea. [node:read-more:link]

Canadian Supply Chain Security Landscape

Confronting the numerous risks and complexities that emerge when attempting to secure Supply Chains is a more daunting task when mandatory standards have not been established. Enough information exists to build a regulatory framework for Canada; what we need is a commitment to do something about it. [node:read-more:link]

New challenges for NATO

An independent analysis of NATO says that while the alliance can expect to benefit from a new U.S. presidency, it must adapt a more comprehensive and resilient agenda to remain relevant globally. The analysis underscores the growing need to tackle “corrosive” cyber operations, disinformation campaigns and supply chain disruptions, among other things. In addition, “NATO’s core tasks of collective defense, crisis management and cooperative security must be expanded to include countering challenges that contribute to global instability.” [node:read-more:link]

CSE head-hunting aggressively

The Communications Security Establishment is looking for approximately 150 new full-time staff and 300 students next year, partly due to personnel shifting to the Canadian Centre for Cyber Security which protects federal cyber assets and provides advice to industries, businesses and citizens on how to deal with online threats. An average day can bring more than 100 million malicious infiltration attempts. [node:read-more:link]

Limited 5G tests for U.S. military

Finalizing a Request for Prototype Proposals for testing military uses of 5G at two select U.S bases, the Department of Defense is soliciting input from industry. The notice follows a November announcement that testing at four bases could begin next year. Feedback could guide DoD decision on what level of testing and trials the government would permit. [node:read-more:link]

Addressing the 5G conundrum

A report by NATO’s Cooperative Cyber Defence Centre of Excellence highlights the security risks of importing Huawei 5G telecom systems but acknowledges that national governments are unlikely to issue the “blanket bans” sought by the U.S. The report says an appropriate response is for more government supervision of what companies such as Huawei are offering. [node:read-more:link]

Cyber vulnerabilities directive

The U.S. Cybersecurity and Infrastructure Security Agencyhas issued a draft operational directive that would require all civilian agencies to receive and resolve vulnerabilities identified by public security researchers who often find themselves in a legal grey area when reporting cyber vulnerabilities to government. The concept essentially is a penalty-free “if you see something, say something” approach. [node:read-more:link]

PROTECTion for U.S. power grid

Draft legislation which would fund measures to secure the U.S. electrical grid have been endorsed by a Senate committee. The Protecting Resources on the Electric Grid with Cybersecurity Technology (PROTECT) Act would underwrite small utilities’ improvements to their protection against cyberattacks as well as provide technical help in detecting, responding to and recovering from attacks. [node:read-more:link]

Call for tighter security

Warnings several years ago about gaps in Canada’s protection of ostensibly secure information are said to be gaining new traction as the case against a senior RCMP official moves through the legal process. It is leading to a call for a broad review of how intelligence agencies ensure their own staff do not lose or leak sensitive material. [node:read-more:link]

Cyberspace Solarium findings imminent

With adversaries resorting increasingly to cyberattacks against the U.S., trying to disrupt the economy, undermine the political process and steal trade, Congress has joined ranks with public- and private-sector experts to fight back. It stood up a 16-member Cyberspace Solarium Commission which now is expected to release its findings by year’s end. [node:read-more:link]

Synthetic ID fraud on the rise

With identify theft increasingly common on the Internet, Texas-based GIACT Systems, which bills itself as the “industry leader” in fraud prevention, says emerging “synthetic ID fraud” could pose an even more dangerous threat. It says fraudsters are combining fragments of real ID information with false data to create identifies of non-existent “synthetic” persons. [node:read-more:link]


Subscribe to RSS - Cyber Security/Protection