Cybersecurity

Latest in Cybersecurity

Thoughts on the NotPetya Ransomware Attack

Nicholas Weaver Wed, Jun 28, 2017, 4:16 PM

The most recent ransomware attack, which spread across Europe, the United States, and Asia yesterday, represents a chilling evolution in the worm-as-weapon.

Read more about Thoughts on the NotPetya Ransomware Attack

Ending The Endless Crypto Debate: Three Things We Should Be Arguing About Instead of Encryption Backdoors

Kevin Bankston Wed, Jun 14, 2017, 1:00 PM

Recently I participated in a fascinating conference at Georgia Tech entitled “Surveillance, Privacy, and Data Across Borders: Trans-Atlantic Perspectives.” A range of experts grappled with the international aspects of an increasingly pressing question: how can we ensure that law enforcement is able to obtain enough information to do its job in the twenty-first century, while also ensuring that digital security and human rights are protected?

Read more about Ending The Endless Crypto Debate: Three Things We Should Be Arguing About Instead of Encryption Backdoors

Cybersecurity

A Cyber-Weapon Warhead Test

Nicholas Weaver Wed, Jun 14, 2017, 11:38 AM

The CrashOverride program represents the first-in-the-wild case of a generic automated attack: one that is designed to affect all systems of a given family, not just a particular installation. If someone were to couple this warhead to a self-propagating worm for delivery, it could constitute a global threat.

Read more about A Cyber-Weapon Warhead Test

Cybercrime Roundup

Cybercrime Roundup: Bitcoin, Cat Pictures, and Defining Loss under the CFAA

Sarah Tate Chambers Mon, Jun 5, 2017, 10:22 AM

The courts take up questions over authorization to access the third-party accounts of former employees, the CFAA's definition of "loss," and bitcoin.

Read more about Cybercrime Roundup: Bitcoin, Cat Pictures, and Defining Loss under the CFAA

Cybersecurity

China’s Cyberspace Administration Attempts to Calm Jittery Businesses

Chris Mirasola Thu, Jun 1, 2017, 12:20 PM

After months of international consternation, China’s cybersecurity law (CSL) went into effect today. For a deep dive on what foreign companies should expect from the law, see Samm Sacks’s excellent piece posted to Lawfare this morning.

Read more about China’s Cyberspace Administration Attempts to Calm Jittery Businesses

Cybersecurity

China’s Cybersecurity Law Takes Effect: What to Expect

Samm Sacks Thu, Jun 1, 2017, 10:56 AM

China's cybersecurity law is broad and ambiguous, but we actually know more about how it might operate in practice than it seems at first glance.

Read more about China’s Cybersecurity Law Takes Effect: What to Expect

Cybersecurity

North Korea, Iran, and the Challenges of Dealing With Cyber-Capable Nuclear States

Luke McNamara Thu, May 18, 2017, 5:04 PM

With the attention of the United States and its allies at present focused on North Korea's nuclear activity, North Korea potentially has greater latitude to act aggressively in the cyber realm, especially against the private sector.

Read more about North Korea, Iran, and the Challenges of Dealing With Cyber-Capable Nuclear States

Cybersecurity

The Shadow Brokers' "Dump of the Month" Club

Nicholas Weaver Tue, May 16, 2017, 1:41 PM

I thought the Windows tools were the most damaging the Shadow Brokers have to offer. Today, with the announcement of the Shadow Broker’s Data Dump of the Month club, I may need to eat some crow.