US News, Articles and Updates

US DHS, FBI name Russia in DragonFly 2.0 attacks on critical infrastructure

"This type of attack (ie cyber-attacks by Russia on Western critical infrastructure) isn't anything new, and the real story here is that the US is choosing to acknowledge it (and in extreme detail),"

US military cyber-commanders call for going on the attack

Several senior US military commanders called for the nation's cyber-forces to go on the attack during a March 13 Senate Armed Services Subcommittee on Cyber-security hearing.

Going Soft: Nation-state attackers seek weaknesses in the system

Arguably, the most important battleground is not a geographic location; it's the internet. And here, just as in real-world battles, the enemies of the United States are hoping to find areas of vulnerability to exploit.

Playing Defence - Nuclear Posture Review allows nuclear response to cyber

Calls from around the United States pour into the White House Situation Room reporting power plants shutting down across the Northeast and Midwest, causing massive black outs affecting tens of millions of people.

Equifax breach worse than thought, consumers affected now total 147.9M

Equifax has once again bumped up the estimated number of US consumers affected by its massive breach - now saying that data on 147.9 million was somehow exposed.

US post snail mail alerts to help secure Informed Delivery service

Having recently introduced a new "Informed Delivery" service that could allow snoops to read scanned images of another person's or business' mail, the US Postal Service is reportedly now sending out snail mail notifications.

US Senator says Facebook should clean up bots or face fines

Concerning the US FBI's investigation into Russian influence on the 2016 US election, Senator Amy Klobuchar said social media companies should be fined if they can't get rid of bots on their platforms.

Cyber a top priority, Russia will flex muscle in 2018 midterms

Russia has continued its assault on the underpinnings of US democracy, sowing discord among the electorate in some instances by marshaling bots to mount disinformation campaigns.

US intel pays £72,000 to Russian for NSA tools hacked by Shadow Brokers

The US intelligence community reportedly negotiated in secret to retrieve classified documents stolen from the National Security Agency (NSA) by the Shadow Brokers and passed along to Russian intelligence.

Latvian man pleads guilty to role in malvertising-based scareware scheme

A Latvian national who at one point was the fifth most wanted cyber-criminal in the US pleaded guilty this week in a US federal court to supporting a scareware scheme targeting users of the Minneapolis Star Tribune's website.

Olympic torch lights the way for cyber-criminals

The potential for cyber-attacks being launched during the 2018 Winter Olympics in Pyeongchang against those attending the games, is so strong that US CERT has issued cyber-security guidelines for those visiting.

DHS Manfra: Russians successfully penetrate some US state election systems

Russian hackers successfully penetrated voter registration rolls in a number of US states, US Department of Homeland Security (DHS) cyber-security chief Jeanette Manfra said Wednesday.

US Congressional Committee threaten DHS with subpoena over Kaspersky docs

US Republican senator Lamar Smith threatened to subpoena the US Department of Homeland Security for documents related to the US federal government's purge of products made by the Russian software firm.

US Defence Dept stops 36M malicious emails daily, 600 Gbps DDoS attacks

Attackers continue to consider email an attractive attack vector and this highlights the stresses that security pros face daily trying to sort through threats.

Aetna agrees to US$ 17 million (£12 million) to settle data breach

Aetna will pay a US$ 17.1 million (£12.3 million) as part of a settlement for a July 2017 data breach that may have compromised the personal health information of thousands of HIV patients.

Kaspersky filed an injunction challenging US DHS ban

Kaspersky filed an injunction Wednesday challenging the US government's ban of the software company's products, arguing that the US Department of Homeland Security didn't give it an opportunity to contest the purported evidence.

Proposed Pentagon plan sees nuclear response to some cyber-attacks

A massive and crippling cyber-attack upon the United States' infrastructure could elicit a nuclear response under a newly drafted strategy that has been presented to President Trump.

US DETER Act aimed at punishing Russia and other nation-states

In the US, a bipartisan bill that takes aim at protecting the US elections from nation-state attacks would compel the Trump administration to levy harsh punishment on Russia for further interfering in US elections.

Pawn Storm readied attacks against US political and Olympic targets

The cyber-espionage gang Pawn Storm, also known as Fancy Bear and affiliated with Russian intelligence, targeted US senators in a cyber-espionage reminiscent of the one launched against French President Emmanuel Macron.

Facebook bug bounty programme paid out £638K in 2017

Facebook's 2017 Bug Bounty programme paid out US$ 880,000 (£638,000) to more than 100 researchers and will update its Thanks page in 2018 to reflect dollar amount and submission validity, among other items.

Proposed law would levy penalties on breached credit reporting agencies

A newly proposed legislation introduced by two Democratic US senators aims to impose stiff, mandatory penalties on credit reporting agencies (CRAs) that fail to protect consumers' sensitive information from data breaches.

US FTC fines VTech toy firm over data breach

The Federal Trade Commission (FTC) fined toy firm VTech US$ 650,000 (£482,000) as part of a settlement for violating a US children's privacy laws.

Update 2: UK & US blame North Korea for WannaCry - 'directly responsible'

North Korea was behind the WannaCry ransomware that blazed a destructive path around the world last spring, wreaking havoc on companies of all stripes say both UK and US officials.

US increases defences, sees Russia as enemy

The US National Security Strategy document released by the Trump administration on Monday calls for the reinforcement of cyber defences to protect government systems and critical infrastructure.

Kaspersky Lab appeals US Department of Homeland Security Debarment

Kaspersky Lab is seeking an appeal in the US federal court against the US Department of Homeland Security's (DHS) decision on Binding Operational Directive 17-01 banning the use of the company's products in US federal agencies.

Contestants launch nearly 39,000 attacks in Radware Hacker's Challenge

The first-ever US-based Radware Hacker's Challenge took place in NYC last week, daring pentesters, bug bounty hunters, and other security pros to launch attacks on a simulated network and website in a race against the clock.

US FCC to repeal net neutrality, could increase cyber-security threats

The commission decided today to repeal the regulations put in place under the Obama administration, prompting criticism that the move would not only choke freedom but would compromise security and privacy.

IT valuation of PII data shows huge variations

US security professionals value their personally identifiable information more than twice as much as their UK counterparts, according to a new report.

#OpIsrael attacks feared in response to US moving embassy to Jerusalem

Anti-Israeli factions of the Anonymous collective opposed to US Foreign policy declared that they would be launching attacks against all websites deemed to be Israeli- or US-government affiliated in their latest #OpIsrael campaign.

Researchers expose Russian cyber bank robbers who stole over $10M

A Russian cyber-criminal group has stolen at least US$ 10 million (£8.5 million) from financial institutions and other organisations in the US, U.K., and Russia, by targeting card processing systems and interbank transfer systems.