The hacking of the National Security Agency (NSA) security tools by the Shadow Brokers raises some serious questions about what information the NSA should be releasing, according to eweek.com.
The balance between the NSA’s need to protect its hacking capabilities and the need to protect U.S. computers has to be addressed in light of the recent breach, several security observors have noted. The NSA did not notify the software vendors of the recent Shadow Brokers hacking.
The Shadow Brokers announced on Twitter on Aug. 13 they would auction off cyber-espionage tools taken from the Equation Group, which is widely considered part of the U.S. National Security Agency [...]
A hacking group by the name of Shadow Brokers is claiming that it has National Security Agency hacking tools for sale.
In an Internet posting, the group said that they have a ‘full sponsor state tool set’ of cyberweapons, which the group claim belongs to the Equation Group, which is believed to be an NSA affiliate, according to a news report from RT. In a bid to back up their statement they posted what appears to be sample attack code.
Shadow Brokers are offering to sell the complete set of tools to the highest bidder. They are seeking to raise 1,000,000 bitcoins, worth around $568 million USD.
While there are bound to be some who may doubt the group [...]
General Michael Hayden, the former director of the Central Intelligence Agency and the National Security Agency (NSA), told The Wall Street Journal the Cybersecurity Information Sharing Act (CISA) is a good first step, but it’s too little too late. The government will not be ready to address companies’ cybersecurity needs.
CISA is designed to improve cybersecurity in the U.S. through enhanced sharing of information about cybersecurity threats, according to Wikipedia. The law allows the sharing of Internet traffic information between the government and technology and manufacturing companies. Opponents say it will move responsibility from private business to the [...]
The U.S. Department of Homeland Security (DHS) has been offering a free service to test companies’ abilities to withstand cyber attacks, according to KrebsOnSecurity. The little-known program involves penetration testing of companies’ infrastructure and has drawn both support and criticism from private security experts.
Under the program, private firms, primarily energy companies and banks, commission the DHS to conduct penetration tests with the goal of strengthening firms’ network and computer defenses against real attackers. The testing is provided by the National Cybersecurity Assessment and Technical Services (NCATS).
The program came to light after a risk manager [...]