Tag Archive for: plan

Computer security plan going nowhere | Business

/in


It’s a key part of President Joe Biden’s plans to fight major ransomware attacks and digital espionage campaigns – creating a board of experts that would investigate major incidents to see what went wrong and try to prevent the problems from happening again, much as a transportation safety board does with plane crashes.

But eight months after Biden signed an executive order creating the Cyber Safety Review Board, it still hasn’t been set up.

That means critical tasks haven’t been completed, including an investigation of the massive SolarWinds espionage campaign first discovered more than a year ago. Russian hackers stole data from several federal agencies and private companies.

Some supporters of the new board say the delay could hurt national security and comes amid growing concerns of a potential conflict with Russia about Ukraine that could involve nation-state cyberattacks.

“We will never get ahead of these threats if it takes us nearly a year to simply organize a group to investigate major breaches like SolarWinds,” said Sen. Mark Warner, a Virginia Democrat who leads the Senate Intelligence Committee. “Such a delay is detrimental to our national security and I urge the administration to expedite its process.”

Biden’s order, signed in May, gives the board 90 days to investigate the SolarWinds hack once it’s established. But there’s no timeline for creating the board itself, a job designated to Department of Homeland Security Secretary Alejandro Mayorkas.

In response to questions from the Associated Press, DHS said in a statement it was far along in setting it up and anticipated a “near-term announcement,” but did not address why the process has taken so long.

Source…

The Solarium Commission’s most ambitious proposal lacks a game plan

/in


With help from Eric Geller

The Cyberspace Solarium Commission has been trying to update a Cold War-era law to prepare for the mother-of-all cyber emergencies. But industry says there aren’t many details about what this would look like.

As the Biden administration ramps up its crackdown on cybercriminal use of cryptocurrencies, the industry has a familiar refrain: We’re not the only problem.

Missouri Gov. Mike Parson’s recent threat against a journalist for discovering a data security vulnerability is part of a decades-long trend of prosecuting security researchers for such discoveries.

HAPPY MONDAY, and welcome back to Weekly Cybersecurity! I’m your host, Sam Sabin, and it seems I’m the one person on the planet who watched the premiere of Succession and didn’t tweet about it? Don’t worry, my inbox is still open for all hot, and even lukewarm, takes.

Have tips, secrets or cat photos to share with MC? Send what you’ve got to [email protected]. Stay up to date by following @POLITICOPro and @MorningCybersec. (Full team contact info below.) Let’s get to it:

WHAT’S THE HOLD UP — Despite Congress’ heightened focus on cybersecurity in the annual defense budget and infrastructure packages, the Cyberspace Solarium Commission’s most ambitious policy ideas are still struggling to gain political momentum in Congress.

The most distinctive example: a proposal to include cybersecurity firms under the 1950 Defense Protection Act, which would allow the government to tap private cyber firms for help in emergencies such as a debilitating attack on a critical infrastructure firm or, most likely, a pandemic-sized cyberattack on the supply chain. As Eric reports for Pros this morning, cybersecurity firms and their customers have been…

Source…

From Ring to Alexa, which Amazon security plan is right for you?

/in


Ring Alarm Pro Sensors 4xSource: Ring

Amazon makes an incredible range of smart home devices, from the best smart security systems to the best smart speakers, but did you know that many of these can better help protect your home? Amazon security plans include Alexa Guard Plus, Ring Protect Pro, and Virtual Security Guard, but which one is the right plan for you? We break them all down and help you pick the right one for your home.

Alexa Guard Plus

Echo Dot 2

Source: Jeramy Johnson / Android Central

Alexa Guard Plus is the least expensive of all Amazon’s security plans, and it uses the collective smarts of your connected devices to achieve a better sense of security. Amazon maintains a list of compatible devices, which includes your Echo speakers, Ring devices, and even some surprises like Alexa-powered Christmas trees and smart outlets.

VPN Deals: Lifetime license for $16, monthly plans at $1 & more

Amazon warns that Alexa Guard Plus isn’t intended to replace a proper home security system but can be used to help you feel safer in your home.

The basic Alexa Guard tier is available for all Amazon accounts for free. Alexa Guard Plus is an upgraded service that will cost you $4.99 per month or $49 per year. Amazon sometimes offers a free one-month trial for first-time subscribers, and opting to pay for the entire year upfront essentially gives you two free months of the service.

Ring Protect Plus subscribers can get Alexa Guard Plus by linking their Ring and Amazon accounts. Afterward, open the Alexa app, tap Settings, then Guard, and follow the on-screen instructions to enable Alexa Guard Plus.

You can subscribe by saying “Alexa, try Guard Plus” to any of your Echo devices. Here’s what you get when you subscribe.

A 24/7 Emergency Helpline

Any Alexa-powered speakers connected to your Amazon account can be used to call emergency dispatch personnel by just saying, “Alexa, call for help.” It’s similar to calling 911 on your phone, but with the massive added advantage of not having to find your phone first.

Emergency sound alerts

Alexa-powered devices with microphones, such as an Echo Dot or Echo Show, can be activated while you’re away from home to listen for sounds of activity. The free Alexa Guard tier can detect the…

Source…

Swiss plan cyber defence command centre

/in


Defence Minister Viola Amherd and army chief Thomas Süssli in Bern on Wednesday Keystone / Anthony Anex

The government is beefing up its defences against cyberattacks, focusing on a command centre comprising 575 members of the armed forces who will be trained over the coming years.

This content was published on September 1, 2021 – 18:02

Keystone-SDA/ts

“Not a day goes by without a cyberattack,” Defence Minister Viola Amherd told the media in Bern on Wednesday. IT systems must therefore be better protected – also by the armed forces, she said.

However, army chief Thomas Süssli put things into perspective, saying “it’s not possible to put a soldier behind every user”. The issue now goes to parliament.

Until now the focus of cyber defence has been on the protection of military communication channels and facilities. The new rapid reaction force should be able to provide subsidiary support to operators of critical infrastructures and private companies in the defence against attacks. Infrastructures considered critical by the government include electricity companies, the Federal Railways and telecom companies.

The defence ministry said the plan was to have the specialist staff in position from January 1, 2022, with the number of soldiers increasing from 206 today to 575. However, Süssli said it would “still take some time” until the troops are fully ready.

Mission-oriented

The second piece of the cyber defence puzzle is a new special command. Today’s broadly diversified Command Support Base is to be transformed into a mission-oriented, military cyber command by the beginning of 2024.

In future, this command will provide key military capabilities in the areas of situational awareness, cyber defence, IT, communication, command support, code breaking and electronic warfare.

In May 2019 Switzerland became a member of the NATO’s Cooperative Cyber Defence Centre of Excellence (CCDCOE) in Tallinn, Estonia. This has given Swiss authorities access to the centre’s knowledge and information as well as research and training activities.

Source…