36% of organisations have no cyber-attack response plan in place

An alarming 36 percent of businesses have yet to develop a cyber-attack response plan, according to a new report by F5 networks..

F5 Networks conducted research at the InfoSec conference in London this week and discovered that some of the top concerns for IT security pros are network attacks (19 percent), malware (18 percent), application data breaches (17 percent), and DDoS attacks (16 percent). The results of the survey were collected from 274 adults at the conference from 7 June through 8 June. Continue reading

It’s Way Too Easy to Hack the Hospital

If you recall this post from 2011, you knew this day was coming.

The culture of “Patch & Pray” will be the downfall so long as America chooses to be reactive over proactive.

 

Firewalls and medical devices are extremely vulnerable, and everyone’s pointing fingers

In the fall of 2013, Billy Rios flew from his home in California to Rochester, Minn., for an assignment at the Mayo Clinic, the largest integrated nonprofit medical group practice in the world. Rios is a “white hat” hacker, which means customers hire him to break into their own computers. His roster of clients has included the Pentagon, major defense contractors, Microsoft, Google, and some others he can’t talk about.

But when he showed up, he was surprised to find himself in a conference room full of familiar faces. The Mayo Clinic had assembled an all-star team of about a dozen computer jocks, investigators from some of the biggest cybersecurity firms in the country, as well as the kind of hackers who draw crowds at conferences such as Black Hat and Def Con. The researchers split into teams, and hospital officials presented them with about 40 different medical devices. Do your worst, the researchers were instructed. Hack whatever you can. Continue reading

Inside TAO: Documents Reveal Top NSA Hacking Unit

For more on SCADAs, please see the following previous posts:

Exclusive: Cyberattack leaves natural gas pipelines vulnerable to sabotage

UPDATE 3: U.S. probes cyber attack on water system

Security backdoor found in China-made US military chip

 

The NSA’s TAO hacking unit is considered to be the intelligence agency’s top secret weapon. It maintains its own covert network, infiltrates computers around the world and even intercepts shipping deliveries to plant back doors in electronics ordered by those it is targeting.

In January 2010, numerous homeowners in San Antonio, Texas, stood baffled in front of their closed garage doors. They wanted to drive to work or head off to do their grocery shopping, but their garage door openers had gone dead, leaving them stranded. No matter how many times they pressed the buttons, the doors didn’t budge. The problem primarily affected residents in the western part of the city, around Military Drive and the interstate highway known as Loop 410. Continue reading

Auditor warns Canada lagging on cyber security

Canada “has been slow” to set up firewalls to protect against cyber threats to critical infrastructure, leaving the nation vulnerable to crippling attacks, the auditor general warned Tuesday.

In a report, Auditor General Michael Ferguson said the government has made only “limited progress” over the past decade to safeguard electrical grids, telecommunications infrastructure, banking systems, manufacturing and transportation, as well as its own computers. Continue reading