Follow CSI on Twitter

LATEST FBI CERT VULNERABILITIES

The latest vulnerabilities and updates (the hack and patch) from the FBI’s Computer Emergency Readiness Team:

Zeus Trojan Campaign Warning

more

Apple Releases Safari 4.0.5

more

Microsoft Releases March Security Bulletin

more

NATIONAL CYBER ALERT SYSTEM BULLETINS

The latest cybersecurity alert bulletins from the FBI:

SB10-074: Vulnerability Summary for the Week of March 8, 2010

more

SB10-067: Vulnerability Summary for the Week of March 1, 2010

more

SB10-060: Vulnerability Summary for the Week of February 22, 2010

more

CYBER SECURITY ALERTS

US-CERT Cyber Security Alerts:

TECHNICAL

TA10-068A: Microsoft Updates for Multiple Vulnerabilities

more

TA10-055A: Malicious Activity Associated with "Aurora" Internet Explorer Exploit

more

TA10-040A: Microsoft Updates for Multiple Vulnerabilities

more

NEW THREATS

US-CERT Recently Published Vulnerability Notes:

VU#280613: Apache mod_isapi module library unload results in orphaned callback pointers

more

VU#744549: Microsoft Internet Explorer iepeers.dll use-after-free vulnerability

more

VU#154421: Energizer DUO USB battery charger software allows unauthorized remote system access

more

BLOG

Debunking the Growing Use of Misleading Claims and False Truisms in Cybersecurity: Wind River and Google Android Examples (Release)

more

Cyber Secure Institute Calls Wired Magazine’s “2009 Smart List” Idea “Forget Medical Privacy” Profoundly Stupid (Release)

more

Cyber Secure Institute Releases Preliminary Analysis of the National Institute of Standards and Technology’s Newly Announced Recommended Security Controls for Federal Information Systems and Organizations

more

CSI WHITEPAPERS

2/17/10
Cybersecurity: The Challenge of Political and Corporate Will

by Hon. C. Thomas McMillen

2nd in the series, Provoking Cybersecurity Change.

more

2/1/10
Cyberwar and Cyberterrorism

by Gen. Eugene Habiger

Today, the Cyber Secure Institute published a whitepaper, entitled “Cyberwar and Cyberterrorism: The Need for a New U.S. Strategic Approach,” written by Gen. Eugene Habiger USAF (ret.), who formerly served as Commander in Chief of United States Strategic Command. He also served as the Department of Energy's “Security Czar.”

General Habiger’s whitepaper draws a number of important conclusions, including these five points:

1. America is routinely the victim of nation-state driven cyber intrusions that can be seen as low-grade cyber-border conflicts.

2. Some of these attacks have crossed a critical line: they have compromised critical systems supporting our troops engaged in combat.

3. Our failure to proactively address these threats risks a digital Pearl Harbor or 9-11.

4. Deterrence by retribution and preemption, our nation’s core national security strategies, are of limited value against cyberwar and cyberterror threats—“these rotary-phone-era strategies are not well suited for today’s digital world.”

5. A new approach based upon deterrence by denial is needed, which will require nothing short of a total paradigm shift from both government and the private sector.

more


PRIVACY

CONTENT TO COME