Securonix

ICIT Brief: In 2017, The Insider Threat Epidemic Begins

Just as American and European critical infrastructure executives were beginning to wrap their minds around the devastation of the Office of Personnel Management breach, ransomware erupted onto the scene, followed by concentrated DDoS attacks such as the Mirai botnet attack on Dyn, which enabled a quantum leap for cyber criminals.  Now, all techno-forensic indicators suggest .. read more

ICIT Bulletin: Cerber and KeRanger

Cerber and KeRanger are two of the latest Ransomware debacles to catastrophically affect the ill prepared. Once again we are confronted with the reality of our Nation’s lack of cybersecurity hygiene and the need for a more security-centric  culture among technology users. This ICIT Bulletin entitled, “Cerber & KeRanger: The Latest Weaponized Encryption” consolidates an explanation .. read more

The ICIT Ransomware Report: 2016 Will Be the Year Ransomware Holds America Hostage

Institute note: during our non-public soft distribution, we discovered that an incorrect, pre-edited version of this document was distributed. We have since corrected this error.  Our Ransomware Report is available for download below. 2016 is the year ransomware will wreak havoc on America’s critical infrastructure community. The resurgence of these attacks is driven by a growing attack surface .. read more

ICIT Brief: Hacking Healthcare IT in 2016: Lessons the Healthcare Industry can Learn from the OPM Breach

Among all of America’s critical infrastructures, the healthcare sector is the most targeted and plagued by perpetual persistent attacks from numerous unknown malicious hackers. The goal of these threat actors is to exploit vulnerabilities in insecure and antiquated networks in order to exfiltrate patient data for financial or geopolitical gain. In order to protect patient .. read more

ICIT Senate Briefing: Hacking Hospitals

            On November 19, the Institute for Critical Infrastructure Technology conducted a briefing at the U.S. Senate entitled “Hacking Hospitals” to address the growing threats facing healthcare organizations. During this briefing, senior Senate staffers and attendees from agencies including the Departments of Veterans Affairs, State, Homeland Security, Health and Human .. read more

ICIT Hill Event: “Hacking Hospitals” Briefing @ Senate

“Hacking Hospitals”  The national surge in the number of internet enabled medical devices, electronic health record management systems, mHealth and health information sharing initiatives has increased the attack surface at healthcare organizations and contributed significantly to the increase in successful data breaches at hospitals and insurance companies over the last several years.  Given the current .. read more

ICIT Fellows convene to discuss NextGen cybersecurity with NASA Ames, Army Cyber Institute, Blackberry

At the closed door October 2015 Institute for Critical Infrastructure Technology Fellows Meeting, Fellows and government leaders convened to discuss the top threats facing critical infrastructure sectors and the technologies and strategies which can mitigate risk.  The top challenges identified include an expanding attack surface driven by IoT and increases in mobile devices, better organized .. read more

Legislative Brief “Moving Forward: How Victims Can Regain Control & Mitigate Threats in the Wake of the OPM Breach”

In June 2015, the Nation learned that the personnel records of 21.5 million United States citizens had been exfiltrated by an unknown adversary from the Office of Personnel Management, one of the largest known breaches in the history of the U.S. Government.  The immediate public outcry included congressional hearings attributing the breach to OPM administrators and .. read more

ICIT Brief: OPM Demonstrates that Antiquated Security Practices Harm National Security

The Institute for Critical Infrastructure Technology has published its official analysis of the Office of Personnel Management breach, Handing Over the Keys to the Castle: OPM Demonstrates that Antiquated Security Practices Harm National Security.  This research brief provides insights on several of the most important aspects of the breach, some of which are not being .. read more