International Space Station Infected With USB Stick Malware Carried on Board by Russian Astronauts
3 Dec 2013
Russian security expert from Kaspersky revealed that Russian astronauts carried a removable device into space which infected systems on the space station. He has also told journalists that the infamous Stuxnet had infected an unnamed Russian nuclear plant, which remained cut off from the public internet, and that in terms of cyber-espionage all the data is potentially stolen globally.
The book argues that computer security has evolved from a technical discipline to a strategic concept. The world’s growing dependence on a powerful but vulnerable Internet – combined with the disruptive capabilities of cyber attackers – now threatens national and international security. Strategic challenges require strategic solutions. The author examines four nation-state approaches to cyber attack mitigation: Internet Protocol version 6 (IPv6), Sun Tzu’s Art of War, Cyber attack deterrence and Cyber arms control.
Hackers Can Now Target Pacemakers And Other Smart Products
2 Dec 2013
The ever-present availability of smart, connected products magnifies the threat of cyber-attacks. Just ask former vice president Dick Cheney knows this all too well. Turns out his fear of assassination via heart device was justified. According to a recent McKinsey & Company report, the number of connected machines has grown by 300 percent over the last five years. While the opportunities this offers is inspiring, it’s also risky.
The Government's ‘999' emergency service to help companies and government agencies who suffer a cyber attack has kicked-off, almost three months after its official launch. Five companies – BAE Systems Detica, Context Information Security, Mandiant, MWR InfoSecurity and Dell SecureWorks - have been cleared to help any of Britain's ‘critical national infrastructure' (CNI) organisations who suffer a state-sponsored or high-level criminal cyber attack.
The Voice of the Industry. Evolution of Cybersecurity threats in the industrial sectors
2 Dec 2013
17th of December of 2013, Madrid (Spain). This event analyses current threats and points out protection measures. Important experts in the subject will point out the main threats and vulnerabilities to industrial process automation as well as appropiate responses for managing risks. Representatives from the main CSIRTs in Spain as well as from cybersecurity labs will speak in a discussion panel where current threats and vulnerabilities will be analysed.
INTECO publishes a guide for protection of the operator of Critical Infrastructures
29 Nov 2013
The guide covers good practice standards to protect individual computers and access to services, such as limiting the privileges and services to the minimum necessary, the implementation of upgrade policies, the need to incorporate measures antimalware and backup procedures robust security, among others.
Attacks against information systems - good practice collection for CERTs
29 Nov 2013
ENISA publishes its Good Practice Collection for CERTs on the EU Directive on attacks against information systems. This report serves two major goals, which both aim at supporting CERTs/CSIRTs: Firstly to provide an analysis of the legal framework created by the Directive, coupled with a stock taking on relevant existing national activities and good practices; Secondly, the identification of key areas and, where appropriate, guidelines and recommendations derived from these good practices.
S4x14 is the event for those wanting to learn and discuss advanced ICS security topics. It draws the best technical talent and thought leaders in the ICS security community. It will take place in Florida (USA), from January 14 2014 to January 17 2014.
CloudCERT European project held its final conference with the presentation of the main results achieved
25 Nov 2013
The European project CloudCERT which is co-financied by the European Union (EU) and whose project consortium is co-ordinated by INTECO, held its Final Conference on November 22 at the Spanish Secretariat of State of Telecommunications and Information Society (SETSI) in Madrid (Spain).
The effectiveness in protecting strategic infrastructure requires communication, coordination and cooperation at national and international level. The rapid exchange of information between the different actors is a key factor to enhance protection.
Juan Díez, INTECO's Project Coordinator, emphasized the benefits of a platform like CloudCERT can offer in the field of strategic infrastructure protection.
On November 26th 2013, in Madrid (Spain), the international workshop belonging to the european project led by INTECO in colaboration with its partners and sponsored by the European Commission will begin. ScadaLab Project focuses on increasing critical infrastructure protection capacity in strategic sectors (transport, energy, ICT, chemical, financial, water, food, health, and space, research, nuclear, etc.) by developing a -laboratory which allow to test and search technologies that prevent, detect and mitigate cyber-attacks in EU member states.