Military Aims for Identity Security Trifecta:
The innovative system would provide identity verification, authentication and system access management.
The Pentagon is looking to buy an enterprise wide identity management system to provide a single authoritative source of user information, identity authentication and information technology access for millions of U.S. Defense Department computer network users. The Defense Information Systems Agency’s call for white papers on the development and deployment of a Defense Department Enterprise Identity Service is the first step in identifying two or three vendors to take part in a competitive prototyping contest under another transaction authority effort.
RUSSIAN AGENTS REPORTEDLY TAPPING ON UNDERSEA INTERNET CABLES THAT TAKE ENTIRE COUNTRIES OFFLINE
According to the report from cybersecurity news, the Russian Intelligence agents were sent to Ireland to inspect the undersea internet cables that establish a connection between Europe and North America. “This news is alarming because the Irish security services believe that these agents were sent by Russia’s foreign intelligence agency to find the weak points in the fiber-optic cables, map the precise location of the ocean-bed cables that connect Europe to America, to tap or even damage them in the future.” Reported The Sunday Times. It is necessary to point out that Ireland is the docking space for undersea communication cables between North America and Europe, and it is a major hub for tech companies like Facebook, Twitter, Google and Airbnb.
One major concern here is that Ireland doesn’t have a counter-intelligence capability, so, it is a soft target for attackers, the country acts as a major node for the global internet.
The article entitled “#OktaForum: Biometrics Are Authentication Preference, Privacy Concerns Remain” claims that although biometric technology is promising in creating a passwordless future, privacy concerns remain regarding how to store and access to biometric data. The Okta Passwordless Future Report, mentioned in the article (A survey of 4013 workers across the UK, France and the Netherlands) found that 70% of respondents believe biometrics would benefit the workplace, but 86% have some concerns about sharing biometrics with employers.
A Simple New Tool Lets You Open Email Attachments Without Fear.
The problem with opening up attachments from untrustworthy sources is that they can be malicious and hack your computer,” Lee says. “I wanted a way for people to make documents safe on their own, without having to send them to someone on the security team to neuter them. I wanted to make this easier for everybody to do.
T-mobile was compromised via phishing email which is caused of the data breach. In the article, T-mobile immediately performed investigation after this issue happen to determine what happen and what information was affected. As the result, they found that financial information and social security number was not affected but other information such as name, address, phone number, rate plan might be stolen. Therefore, company recommended customer to reset the account PINs.
Title: Dump your passwords, improve your security. Really
The article, written by Stephen Shankland, talks about a new emerging consumer digital identification and verification product that, if adopted, could significantly change the risk environment. This new product is called Fast Identity Online (FIDO), which changes the standard multi-factor authentication method for website access from text messages to hardware devices functioning as security keys and biometric scanning on top of the standard password. This developing technology is currently being backed by both Google and Microsoft and has already been made compatible with their respective websites and affiliates. This technology has also become functional on Facebook and Twitter as well.
Aussie Watchdog Sues Facebook Over Cambridge Analytica Breach
“Facebook’s default settings facilitated the disclosure of personal information, including sensitive information, at the expense of privacy,”The personal information of Facebook users in Australia was leaked to an app called This Is Your Digital Life, which then sold the data to the political consultancy Cambridge Analytica. Facebook claims the Australian company violated the social network’s terms of service. Under the policy, however, a lack of control and verification testing leads companies to disclose personal information using default Settings. Facebook needs to take responsibility. https://www.securityweek.com/aussie-watchdog-sues-facebook-over-cambridge-analytica-breach
Within the first six months of 2019, over 4.1 billion records were exposed in data breaches with a main target being digital identity. Cyber security experts are looking to prevent further incidents of unauthorized access by combining artificial intelligence and machine learning (AIML), which aims in protecting identification before, during, and after authorization. One of the best aspects of utilizing AI is its ability to configure itself, which will increase security and cut costs for the company. However, these same tools can also be used maliciously, so it’s crucial that security experts remain up to date on security vulnerabilities and technological developments.
Google’s Play Protect anti-malware tool is bottom of the league when compared to its main rivals, according to the latest findings from AV-Test.
The independent testing body found that the Google tool, which is built-in to newer Android devices, was able to detect only around a third of malware, allowing thousands through. AV-Test argued that users should install an alternative third-party AV tool to ensure robust threat protection.
Five reasons why COVID-19 will bolster the cyber-security industry
This article discusses the after effects of the novel corona virus on offline businesses which will lead to more businesses going online and thus bolstering the cyber security work force..
Carnival cruise line experience a breach that leaked PII. SSN, passport numbers, health info, and credit card info were accessed. Not all customers were affect and it also affected some employees. The nature of the breach comes from phishing emails sent to employees that gave hackers unauthorized access into employee accounts. From there attackers were able to access the information. https://www.infosecurity-magazine.com/news/carnival-cruise-lines-hacked/
https://www.infosecurity-magazine.com/news/rsac-the-five-most-dangerous-1/
This article covers the 5 most dangerous cyber attacks and how individuals and organizations can counteract them.
Military Aims for Identity Security Trifecta:
The innovative system would provide identity verification, authentication and system access management.
The Pentagon is looking to buy an enterprise wide identity management system to provide a single authoritative source of user information, identity authentication and information technology access for millions of U.S. Defense Department computer network users. The Defense Information Systems Agency’s call for white papers on the development and deployment of a Defense Department Enterprise Identity Service is the first step in identifying two or three vendors to take part in a competitive prototyping contest under another transaction authority effort.
https://www.afcea.org/content/military-aims-identity-security-trifecta
RUSSIAN AGENTS REPORTEDLY TAPPING ON UNDERSEA INTERNET CABLES THAT TAKE ENTIRE COUNTRIES OFFLINE
According to the report from cybersecurity news, the Russian Intelligence agents were sent to Ireland to inspect the undersea internet cables that establish a connection between Europe and North America. “This news is alarming because the Irish security services believe that these agents were sent by Russia’s foreign intelligence agency to find the weak points in the fiber-optic cables, map the precise location of the ocean-bed cables that connect Europe to America, to tap or even damage them in the future.” Reported The Sunday Times. It is necessary to point out that Ireland is the docking space for undersea communication cables between North America and Europe, and it is a major hub for tech companies like Facebook, Twitter, Google and Airbnb.
One major concern here is that Ireland doesn’t have a counter-intelligence capability, so, it is a soft target for attackers, the country acts as a major node for the global internet.
https://cybersecuritynews.com/undersea-internet-cables/
The article entitled “#OktaForum: Biometrics Are Authentication Preference, Privacy Concerns Remain” claims that although biometric technology is promising in creating a passwordless future, privacy concerns remain regarding how to store and access to biometric data. The Okta Passwordless Future Report, mentioned in the article (A survey of 4013 workers across the UK, France and the Netherlands) found that 70% of respondents believe biometrics would benefit the workplace, but 86% have some concerns about sharing biometrics with employers.
For the details, here is the article: https://www.infosecurity-magazine.com/news/oktaforum-biometrics-privacy-1-1-1-1/
A Simple New Tool Lets You Open Email Attachments Without Fear.
The problem with opening up attachments from untrustworthy sources is that they can be malicious and hack your computer,” Lee says. “I wanted a way for people to make documents safe on their own, without having to send them to someone on the security team to neuter them. I wanted to make this easier for everybody to do.
https://www.wired.com/story/dangerzone-open-email-attachments-safely/
T-mobile was compromised via phishing email which is caused of the data breach. In the article, T-mobile immediately performed investigation after this issue happen to determine what happen and what information was affected. As the result, they found that financial information and social security number was not affected but other information such as name, address, phone number, rate plan might be stolen. Therefore, company recommended customer to reset the account PINs.
https://www.infosecurity-magazine.com/news/tmobile-suffers-another-breach/
Title: Dump your passwords, improve your security. Really
The article, written by Stephen Shankland, talks about a new emerging consumer digital identification and verification product that, if adopted, could significantly change the risk environment. This new product is called Fast Identity Online (FIDO), which changes the standard multi-factor authentication method for website access from text messages to hardware devices functioning as security keys and biometric scanning on top of the standard password. This developing technology is currently being backed by both Google and Microsoft and has already been made compatible with their respective websites and affiliates. This technology has also become functional on Facebook and Twitter as well.
Source: https://www.cnet.com/news/dump-your-passwords-improve-your-security-really/
Aussie Watchdog Sues Facebook Over Cambridge Analytica Breach
“Facebook’s default settings facilitated the disclosure of personal information, including sensitive information, at the expense of privacy,”The personal information of Facebook users in Australia was leaked to an app called This Is Your Digital Life, which then sold the data to the political consultancy Cambridge Analytica. Facebook claims the Australian company violated the social network’s terms of service. Under the policy, however, a lack of control and verification testing leads companies to disclose personal information using default Settings. Facebook needs to take responsibility.
https://www.securityweek.com/aussie-watchdog-sues-facebook-over-cambridge-analytica-breach
Within the first six months of 2019, over 4.1 billion records were exposed in data breaches with a main target being digital identity. Cyber security experts are looking to prevent further incidents of unauthorized access by combining artificial intelligence and machine learning (AIML), which aims in protecting identification before, during, and after authorization. One of the best aspects of utilizing AI is its ability to configure itself, which will increase security and cut costs for the company. However, these same tools can also be used maliciously, so it’s crucial that security experts remain up to date on security vulnerabilities and technological developments.
https://www.securitymagazine.com/articles/91867-whats-driving-identity-access-management-in-2020
Google’s Play Protect anti-malware tool is bottom of the league when compared to its main rivals, according to the latest findings from AV-Test.
The independent testing body found that the Google tool, which is built-in to newer Android devices, was able to detect only around a third of malware, allowing thousands through. AV-Test argued that users should install an alternative third-party AV tool to ensure robust threat protection.
https://www.infosecurity-magazine.com/news/play-protect-ids-just-a-third-of/
Five reasons why COVID-19 will bolster the cyber-security industry
This article discusses the after effects of the novel corona virus on offline businesses which will lead to more businesses going online and thus bolstering the cyber security work force..
https://www.scmagazine.com/home/security-news/news-archive/coronavirus/five-reasons-why-covid-19-will-bolster-the-cyber-security-industry/
Carnival cruise line experience a breach that leaked PII. SSN, passport numbers, health info, and credit card info were accessed. Not all customers were affect and it also affected some employees. The nature of the breach comes from phishing emails sent to employees that gave hackers unauthorized access into employee accounts. From there attackers were able to access the information.
https://www.infosecurity-magazine.com/news/carnival-cruise-lines-hacked/