Tag Archive for: Flight

Russian Tied to $82M Hacking Scheme in U.S. Deemed Flight Risk, Denied Bail

/in


Vladislav Klyushin, a Russian tied to an $82 million hacking scheme in the U.S., was deemed a flight risk and denied bail Wednesday.

Prosecutor Seth Kosto said Klyushin, 41, is a flight risk, as Russia has no extradition agreement with the U.S. and Klyushin never consented to extradition, along with other reasons.

Klyushin allegedly took part in a scheme, along with five other Russians, to steal information on computer networks to use for insider trading, illegally netting $82 million from 2018 to 2020, federal authorities said. He works for an information company with connections to the upper levels of the Russian government and is also a millionaire.

U.S. District Court Magistrate Judge Marianne Bowler in Boston sided with the prosecution, saying Klyushin “presents a substantial risk of flight.”

Bowler also appeared suspicious of several letters from Klyushin’s wife and friends supporting him. She said there was no way to contact the writers and that the letters all began similarly. “Therefore I do not give heavy weight to them,” she said.

Maksim Nemtsev, Klyushin’s attorney, had requested his client’s release with conditions, such as a $2.5 million bond and home detention in a one-bedroom unit located in Boston’s seaport district with electronic monitoring.

According to court documents, Nemtsev had said that Klyushin “intends to challenge the government’s case in a lawful, professional and principled manner.”

The Associated Press left Nemtsev an email asking for comment after the hearing.

Vladislav Klyushin, Insider Trading, Hearing, Bail Denied
U.S. District Court Magistrate Judge Marianne Bowler in Boston sided with the prosecution, saying Vladislav Klyushin “presents a substantial risk of flight.” A picture taken on Oct. 17, 2016, shows an employee typing on a computer keyboard at the headquarters of Internet security giant Kaspersky in Moscow.
Kirill Kudryavtsev/AFP via Getty Images

Klyushin, who appeared at Wednesday’s hearing via video, pleaded not guilty to conspiring to obtain unauthorized access to computers, and to commit wire fraud and securities fraud; aiding and abetting wire fraud; aiding and abetting unauthorized access to computers; and aiding and abetting securities fraud. If convicted of all charges he faces a maximum of…

Source…

Electronic Warfare System On Air Force F-16 Gets Software Update In Flight

/in


However, the system can only do that if the threat in question is one that it knows how to categorize based on the information in its internal database. Beyond the issue of dealing with previously unknown signal types, that library of information could also have a hard time identifying known signals that are being sent out a novel way or are simply muddled together with other emissions. That’s why this new remote updating capability, which the Air Force says began as “a bar-napkin idea,” is so important. “This proof-of-concept test demonstrated the ability for a pilot to properly correlate a previously unknown electronic threat in near real-time,” according to the Air Force.

“We believe this is the first time a fighter aircraft has received a software update and gained new capability all while in flight,” Air Force Lieutenant Colonel Zachary Probst, the commander of the 84th Test and Evaluation Squadron, said in a statement about the test. “This is a big deal. There’s a tactical need to be able to rapidly update software, especially mission data files because that’s what ties into our ability to identify, find, and defend ourselves against enemy threat systems.”

It’s hard to overstate how significant this new capability could be. Potential adversaries, including possible near-peer opponents, such as China and Russia, are constantly developing new air defense systems and associated sensors, as well as electronic warfare and cyber warfare capabilities. Some of those systems are then made available for export, though often with somewhat reduced functionality. 

Altogether, it is not hard to imagine a scenario in which U.S. combat aircraft would fly into combat and be faced with previously unseen or otherwise little understood air defense and electronic warfare threats that existing countermeasures systems are not immediately capable of responding to. That’s where Cognitive EW comes in. 

One envisioned near-term capability that is part of this broader concept is the ability for a wide variety of platforms, including aircraft, as well as various assets down below, to feed data about new threats into a larger electronic warfare ecosystem. Analysts and engineers can pick…

Source…

PODCAST: Ken Munro Talks Ethical Hacking, Cybersecurity Research and Electronic Flight Bags

/in


Ken Munro is the founder of Pen Test Partners.

On this episode of the Connected Aircraft Podcast, Ken Munro, founder of U.K.-based ethical hacking consulting and security services firm Pen Test Partners joins to discuss some of the latest research he’s been doing around connected electronic flight bags (EFB) and aircraft systems.

Munro is a well-known public speaker who has performed live demonstrations of vulnerabilities that have been exposed on Internet of Things (IoT) devices and systems. He is a security entrepreneur and industry maverick that has worked in infosec for over 15 years. He is a regular speaker at events held by industry bodies and associations and has spoken at the ISSA Dragon’s Den, (ISC)2 Chapter events and CREST (Council of Registered Ethical Security Testers) events, where he sits on the board, helping to establish standards in both member organizations and among individual penetration testers.

We discuss some of the potential consequences of the manipulation of data used by pilots by a malicious hacker, as outlined in his recent blog post, and just how important the testing and assessment of EFB security is.

Have suggestions or topics we should focus on in the next episode? Email the host, Woodrow Bellamy at [email protected], or drop him a line on Twitter @WbellamyIIIAC.

Listen to this episode below, or check it out on iTunes or Google Play If you like the show, subscribe on your favorite podcast app to get new episodes as soon as they’re released.

Source…

SANS Cloud Security Curriculum Takes Flight

/in


BETHESDA, Md., Dec. 7, 2020 /PRNewswire/ — SANS Institute is pleased to introduce its new Cloud Security Curriculum. The curriculum has been launched with 11 curated courses written and taught by world-renowned cloud security experts. These courses combine hands-on technical know-how with cloud security-specific knowledge.

SANS has taken flight into the cloud security space with a holistic approach to address public cloud, multicloud, and hybrid cloud scenarios for the enterprise and developing organizations alike. Whether new to the cloud security space or experienced, on a technical or managerial cloud security path, SANS has a course to suit anyone’s needs along their journey to becoming a Cloud Ace.

The future of cloud demands in-depth security knowledge for each big cloud service provider (CSP). Stated best by Margaret Ray, Federal Reserve Board of Dallas, a recent SANS Cloud Security student, “I likely will be assessing environments that use multiple CSPs and services for one system, so this training is better for me than being certified in only AWS or only Azure.” Focused on the “how” of security, these courses utilize virtual machines to provide deeply technical labs that are re-deployable again and again after training. Developed through a consensus process involving industry leading engineers, architects, administrators, developers, security managers, and information security professionals, the SANS Cloud Security Curriculum has the right training for the novice through expert.

SANS Cloud Security focuses the deep resources of SANS on the growing threats to the cloud by providing training, certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications. We provide intensive, immersion training designed to help security professionals master the practical steps necessary for defending systems and applications in the cloud against the most dangerous threats. The courses are full of important and immediately useful techniques that students can put to use as soon as they return to work.

Learn more sans.org/cloud-security | Download our Career Progression Flight Plan |…

Source…