Cybersecurity task force addresses medical device safety

In an effort to harmonize the work being done in hospitals and by device manufacturers to address medical device vulnerabilities, Vizient has formed the Medical Device Cybersecurity Task Force. The mission of the task force is to provide leadership and facilitate collaboration to minimize the risk and cost of medical device cybersecurity by fostering standard […]

How to Protect Industrial Control Systems from State-Sponsored Hackers

On March 15, a significant alert was issued by the US-CERT regarding Russian state-sponsored threat activity against critical infrastructure sectors, including energy, aviation, and critical manufacturing. The attacks were not random; these were deliberate, multistage, focused attacks designed to gain a foothold within high-impact assets that can be used for any number of nefarious actions. According to […]

70% of Energy Firms Worry About Physical Damage from Cyberattacks

Operational outages and shutdowns and physical injury to employees due to cyberattacks are among the main worries of more than 95% energy and oil & gas firms, a new survey shows. Some 70% worry that cyberattacks could yield catastrophic results, such as explosions, according to the Dimensional Research study conducted on behalf of Tripwire. The report […]

‘SirenJack’ Vulnerability Lets Hackers Hijack Emergency Warning System

The sound of an emergency alert siren can be a nightmare soundtrack to the millions who live in areas subject to hurricanes, tornados, earthquakes, or other natural disasters. A recently disclosed vulnerability in the emergency warning system used by San Francisco and other municipalities could allow a threat actor to take control of the system, […]

Can this ‘national DDoS radar’ plan help fight off attacks on Dutch critical systems?

A team of cybersecurity researchers has come up with a proposal to help the Netherlands ward off the threat of distributed denial-of-service (DDoS) attacks. Their concept is to create a “national DDoS radar system” that could, in extreme cases, see Dutch networks disconnected from the outside world. The Netherlands was earlier this year hit by a […]

Four Gas Pipeline Firms Hit in Attack on Their EDI Service Provider

Several cybersecurity experts this week cautioned against underestimating the seriousness of a cyberattack on an EDI service provider that disrupted data communication services at four major US interstate gas pipeline companies in the last few days. The attack does not appear to have interrupted gas pipeline operations or cause any damage to operational systems at any […]

Critical remote code execution vulnerabilities impact Natus medical devices

A set of critical vulnerabilities have been uncovered in Natus NeuroWorks software which may place medical devices connecting to the software at risk. Earlier this week, researchers from Cisco Talos said in a blog post that the vulnerabilities could not only cause services to crash but may also allow attackers to remotely execute code on medical devices. […]

Everything we know so far about the shooting at YouTube’s headquarters

Yesterday, a shooter walked into YouTube’s headquarters in California and began firing at employees, leaving three people injured with gunshot wounds. A picture of the tragedy, and the suspect behind it, is now emerging. Here are the facts that have come to light so far. Read more about the YouTube headquarter shooting on the Verge.

How critical infrastructure operators rate their security controls

Indegy revealed that nearly 60 percent of executives at critical infrastructure operators polled in a recent survey said they lack appropriate controls to protect their environments from security threats. As expected, nearly half of all respondents indicated their organizations plan to increase spending for industrial control system (ICS) security measures in the next 12-24 months. “We have […]

Should There Be A Cybersecurity Public Option? NYC Secure Will Be the Test Case

New York City Mayor Bill De Blasio has announced the municipal government is designing a free public-option security analytics application for their residents: NYC Secure. The app’s design will alert users to digital threats, particularly on mobile devices. The plan is to fully deploy the app this summer, although an exact timeline has not been […]