New Ransomware Doesn’t Just Encrypt Data. It Also Meddles With Critical Infrastructure

from ars technica Over the past five years, ransomware has emerged as a vexing menace that has shut down factories, hospitals, and local municipalities and school districts around the world. In recent months, researchers have caught ransomware doing something that’s potentially more sinister: intentionally tampering with industrial control systems that dams, electric grids, and gas refineries rely on to keep equipment running safely. A ransomware strain discovered last month and dubbed Ekans contains the usual routines for disabling data backups and mass-encrypting files on infected systems. But researchers at security firm Dragos found something else that has the potential to […]

Continue reading

Europe Is Developing Offensive Cyber Capabilities. The United States Should Pay Attention.

from Net Politics It is no surprise that the United States and its European allies are looking to integrate offensive cyber capabilities as part of their military operations. Last year, the Pentagon boasted about dropping “cyber bombs” on the self-declared Islamic State group. France and the United Kingdom have built similar capabilities, as have smaller European states, such as Denmark, Sweden, Greece and the Netherlands. Unfortunately, as NATO members rush to build their capabilities, they will quickly have to confront challenging trade-offs. Cyberweapons—or specifically the vulnerabilities they exploit—tend to be single use weapons: once a defender or vendor identifies a […]

Continue reading

Hacked vs. Hackers: Game On

from NYTs Paul Kocher, one of the country’s leading cryptographers, says he thinks the explanation for the world’s dismal state of digital security may lie in two charts. One shows the number of airplane deaths per miles flown, which decreased to one-thousandth of what it was in 1945 with the advent of the Federal Aviation Administration in 1958 and stricter security and maintenance protocols. The other, which details the number of new computer security threats, shows the opposite. There has been more than a 10,000-fold increase in the number of new digital threats over the last 12 years. The problem, […]

Continue reading