Sections Skip to content Skip to site index Feature As the midterms approach, America’s electronic voting systems are more vulnerable than ever. Why isn’t anyone trying to fix them? Credit Credit Photo illustration by Javier Jaén. Source photograph: Getty Images Supported by ByKim Zetter Sept. 26, 2018 It was mid-July 2016 when Neil Jenkins learned that someone had hacked the Illinois Board of Elections. Jenkins was a director in the Office of Cybersecurity and Communications at the Department of Homeland Security, the domestic agency with a congressional mandate to protect “critical infrastructure.” Although election systems were not yet formally designated as such — that wouldn’t happen until January 2017 — it was increasingly clear that the presidential election was becoming a national-security issue. Just a month before, Americans had been confronted with the blockbuster revelation that Russian … [Read more...] about The Crisis of Election Security
Crisis action hack
Barack Obama's cybersecurity czar, Michael Daniel, acknowledges this much: The Trump administration is doing a lot for cybersecurity. But it's not in spite of the former president's administration, Daniel said in an interview Thursday. It's because of what Obama's team accomplished, he said."Every administration has built on the successes and lessons from previous administrations," said Daniel, who was the White House cybersecurity coordinator during Obama's last four years in office. He now serves as the head of the Cyber Threat Alliance, a collective of security experts and researchers dedicated to protecting the world from hacks, vulnerabilities and online exploits. The White House did not respond to a request for comment. Daniel's assessment comes two days after Vice President Mike Pence blasted the Obama administration for, in his words, failing on cybersecurity issues. At the Department of Homeland Security's National Cybersecurity Summit in New York, Pence said that the … [Read more...] about Trump did not ‘inherit a cyber crisis,’ Obama’s cybersecurity czar says
As the threat of cyberattacks on the United States launched by foreign adversaries grows, the federal government has been slow to respond. But changes announced Tuesday at the Department of Homeland Security, along with a new bipartisan bill aimed at shoring up DHS cybersecurity initiatives, could give newfound purpose to defenses against critical infrastructure hacking. At a cybersecurity summit Tuesday, Homeland Security secretary Kirstjen Nielsen announced the creation of the National Risk Management Center, which will focus on evaluating threats and defending US critical infrastructure against hacking. The center will focus on the energy, finance, and telecommunications sectors to start, and DHS will conduct a number of 90-day “sprints” throughout 2018 in an attempt to rapidly build out the center’s processes and capabilities. "We are reorganizing ourselves for a new fight," Nielsen said on Tuesday, who described the new center as a “focal point” for … [Read more...] about A New DHS Cybersecurity Center Will Combat Infrastructure Hacks
It's been a year since the gigantic WannaCry ransomware cyber attack caused chaos across the world, hitting more than 230,000 computers in total.The hard drive encrypting malware spread so fast because the group behind it had combined normal malware with EternalBlue, a leaked NSA hacking tool which allowed WannaCry to use worm-like capabilities to self-propagate on vulnerable Windows systems.While there was some initial speculation that WannaCry was spread in an email spam campaign, the ransomware didn't in fact require any user interaction at all. Combining EternalBlue and another leaked exploit in the form of DoublePulsar, the worm looked for vulnerable public facing SMB ports it could establish a connection to.Once these were located, the leaked SMB exploits were harnessed to not only deploy WannaCry on that particular system, but to spread to all other vulnerable machines on the connected network. In essence, even just one open, vulnerable SMB port could lead to a whole network … [Read more...] about WannaCry ransomware crisis, one year on: Are we ready for the next global cyber attack?
This is part of our Road Trip 2017 summer series "The Smartest Stuff," about how innovators are thinking up new ways to make you — and the world around you — smarter. Snowflakes flutter around my face, taking me back to my childhood in Ohio where I'd tilt back my head to gaze at the swirl of tiny crystals spiraling toward my blinking eyelashes. When I stick out my palm to catch a snowflake, I'm a little disappointed that I don't feel a tiny, cold pinprick on my skin. Instead of playing in the suburban driveway of my family's Columbus two-story home, I'm inside the storybook woodland of Baobab Studios' latest virtual-reality animated short, "Legend of Crow." Golden sunrays filter through the trees, casting long shadows. The motion-tracking controllers I'm holding turn my arms into translucent blue branches that can conjure up snow with a flick of my wrist. I sweep my hands to blanket the cushy grass with white drifts. In literal reality, I know I'm standing … [Read more...] about Bunnies bouncing in your brain? That’s Baobab’s VR hacking your head