dhs

DHS: Securing the Internet of Things has Become a Matter of Homeland Security

The Department of Homeland Security (DHS) on Tuesday issued what it called a set of “Strategic Principles for Securing the Internet of Things (IoT), Version 1.0.” These principles highlight approaches and suggested practices to fortify the security of the IoT...
dhs

DHS Designates Election Infrastructure as a Critical Infrastructure Subsector

The Department of Homeland Security (DHS) announced Friday that the nation’s election infrastructure will be designated as a subsector of the existing Government Facilities critical infrastructure sector. According to Secretary of Homeland Security Jeh Johnson, this determination was reached so...
security

Internet Security Protocol Bodies ISOC, OTA Merge

The Online Trust Alliance (OTA) and the Internet Society (ISOC) on Wednesday announced that the two global non-profit organizations have combined resources, expanding the reach and impact of the Internet Society to a broader group of stakeholders and industry...
ai

Privacy Group Sues NYPD For Info on Facial-Recognition Technology

The Center for Privacy & Technology at Georgetown University law school sued the New York Police Department on Tuesday to demand access to documents associated with its use of facial-recognition technology. According to the privacy group, the NYPD had initially...
grid

Democratic Senators Urge Trump Administration to Protect U.S. Energy Infrastructure From Cyberattacks

A group of Democratic Senators on Thursday wrote President Donald Trump and the Department of Energy (DOE), reiterating the need for Trump to direct the latter to “conduct a thorough analysis of Russian capabilities with respect to cyberattacks on...
breach

Massachusetts’s AG to Sue Equifax Over ‘Brazen Failure to Protect Consumer Data’

Massachusetts's attorney general on Tuesday said the state intends to sue credit reporting firm Equifax Inc. over its failure to protect sensitive and personal information of up to nearly three million Massachusetts residents. “In all of our years investigating data...
grid

US Regulator Proposes New Security Management Controls for Grid Cyber Systems

The Federal Energy Regulatory Commission (FERC) on Thursday proposed new cyber security management controls to further enhance the reliability and resilience of the nation’s bulk electric system. These include mandatory controls to address the risks posed by malware from transient...
uber breach

Legislators Accuse Uber of Intentionally Concealing 2016 Data Breach From FTC

Reps. Jan Schakowsky (D-Ill.) and Ben Ray Luján (D-N.M.), both of whom are members of the House Subcommittee on Digital Commerce and Consumer Protection, on Monday sent a letter to the Chairman and Ranking Member of the Senate Subcommittee...

AT&T to Acquire Threat Detection Firm AlienVault

AT&T announced Tuesday its plans to acquire AlienVault, a privately held company, to enable it expand its enterprise-grade security solutions to small and medium-sized businesses. AlienVault is based in San Mateo, Calif. The agreement will combine AlienVault’s expertise in threat intelligence...

Multiple PHP Vulnerabilities Could Allow Attackers Control Affected Systems

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on multiple Hypertext Preprocessor (PHP) vulnerabilities. An attacker could exploit one of these vulnerabilities to take control of an affected system. PHP is a programming language originally designed...

Legislation