Threat Intelligence Blog

weeklytrends

Welcome to the Cyveillance Weekly Trends Report

Since threat intelligence is constantly evolving, we publish this weekly report to keep our customers updated on the latest threats across a variety of industries. You can read an abridged version below. Follow us on Twitter and subscribe to our blog to make sure you don’t miss any of the latest security articles from Cyveillance experts.

Top Incidents

Insurance/Healthcare

  • In yet another sign that medical device cybersecurity is becoming a growing concern, a new group has been formed to tackle the issue – the latest in a series of initiatives in this arena. The Health Information Trust Alliance, best known for its Common Security Framework, has launched a working group in an effort “to improve the overall security of and trust in health information technology, including systems and medical devices.” The goal of the program “is to avoid, report and mitigate vulnerabilities related to health IT and medical devices.”

Government

  • Due to a “technical malfunction” found in the computer systems of the Department of Defense, some federal retirees had their personal information sent to the wrong people. The compromised information included Social Security Numbers and tax statements.
  • Systems that control the elevators, lights, ventilation, and fire alarms in federal buildings are vulnerable to cyberattacks that could compromise security or result in serious harm to government workers. In a report released within hours of high-profile social media hacks at U.S. Central Command, the Government Accountability Office said homeland security officials have little understanding of the risks presented by Internet-based control systems and don’t have a clear strategy for dealing with an attack if one were to occur.

Legal and Regulations

  • On January 12, President Obama delivered a speech at the Federal Trade Commission during which he set forth several proposals, including the Personal Data Notification and Protection Act.  The Act would institute a federal data breach reporting framework by requiring businesses that hold consumer data to issue alerts to those consumers within thirty days of a data breach.

Law Enforcement

  • ‘Silk Road Reloaded,’ a new anonymous online drug market, draws upon a host of new anonymizing features, including I2P connectivity and the use of cryptocurrencies other than Bitcoin. By embracing I2P, the administrators of the new Silk Road iteration now welcome a service that, as opposed to Tor, is friendly to peer-to-peer connections and uses a design that is optimized for hidden services.

Technology

  • Popular messaging services like Snapchat and WhatsApp are in the cross hairs in Britain. That was the message delivered by Prime Minister David Cameron, who said he would pursue banning encrypted messaging services if Britain’s intelligence services were not given access to the communications.

 

Cyveillance clients get access to the entire Weekly Trends Report, covering all of the above topics and much more. Contact us to find out how we can help your organization.

We also provide educational webcasts on threat intelligence and other information security topics on a regular basis through our Cyber Intelligence channel on BrightTALK.com.  Register now for our upcoming webinar series on 2015 trends in mobile, information, and physical security. Sign up today for one, two, or all three! February 24, 25, and 26.

Additional Posts

Welcome to 2015: Encryption is Not an Option! An Interview with Ivan Ristic

If last year felt like a wild ride in terms of security, you were not alone. Good news though: by ...

ICYMI: Our Most Popular Blog Posts of 2014

  2014 was another remarkable year in information security. In case you’ve missed any ...