Security News
A bipartisan trio of US lawmakers has proposed a law that pledges as much as $22 million of public funding to help victims of tech-enabled domestic abuse. If somehow approved all the way through Congress, the proposed law would earmark $2 million in grants for clinics and other partnerships that provide support to sexual and domestic violence victims who are experiencing technology-powered abuse.
The US Department of Justice unsealed a 16-count indictment today accusing five Russians, an American citizen, and a lawful permanent US resident of smuggling export-controlled electronics and military ammunition out of the United States for the Russian government. Alexey Brayman, the lawful permanent US resident; and Vadim Yermolenko, the US citizen, were both apprehended in the United States.
Tech news you may have missed: Nov. 10 - 17 This week's trending news features a primer on Industrial IoT, new and upcoming features for Windows users and the latest cybersecurity threats. We've got some places to start in this week's trending news roundup.
A novel attack method has been disclosed against a crucial piece of technology called time-triggered ethernet that's used in safety-critical infrastructure, potentially causing the failure of systems powering spacecraft and aircraft. Dubbed PCspooF by a group of academics and researchers from the University of Michigan, the University of Pennsylvania, and the NASA Johnson Space Center, the technique is designed to break TTE's security guarantees and induce TTE devices to lose synchronization for up to a second, a behavior that can even lead to uncontrolled maneuvers in spaceflight missions and threaten crew safety.
A new eBook illuminates how one solution can not only help increase security operations efficiency but also provide economic safeguards for security teams that are already strapped for cash. If you're evaluating your security strategy and budget for the coming year, here are five reasons why consolidating your security technology stack can help you ensure your organization is safe - no matter what comes our way in 2023.
The International Committee of the Red Cross wants to devise a digital equivalent of its emblems, to signify that certain digital resources are protected and must not be targeted during cyberwarfare. "For more than 150 years, protective emblems like the red cross have been used to convey a simple message: In times of armed conflict, those who wear the red cross or facilities and objects marked with [it] must be protected from harm," the organization wrote last week, adding "The obligation of all warring parties to respect and protect medical and humanitarian actors applies online as well."
In another week of intense world news, you may have missed these tech stories. Making your Apple devices play nice with OneDrive, a new Excel function and a new way attackers communicate during their campaigns lead the best technology stories TechRepublic had to offer this week.
Sloppy data security at education tech giant Chegg exposed students and workers' personal information not once but four times in various ways over four years, according to the FTC. In response, the American consumer watchdog today ordered the company to better protect data, including encrypting sensitive information, providing multi-factor authentication to users and employees, limiting the amount of personal information it collects and retains, and training staff on security practices. Per an FTC order [PDF], the tech firm also has to notify "Each individual whose unencrypted Social Security number, financial account information, date of birth, user account credentials, or medical information was exposed" within the next 60 days.
Employer demand for cybersecurity professionals continues to strain talent availability, according to new data from CyberSeek. For the 12-month period ending in September 2022, employers listed 769,736 openings for cybersecurity positions or jobs requiring cybersecurity skills.
Chinese president Xi Jinping has opened the 20th Congress of the Chinese Communist Party with a call for the nation he leads to win the race for development of "Core technologies" and to become self-reliant in strategic tech. In his Sunday speech he spoke of innovation being focused on national strategic requirements - therefore led by the State - and linked the development and implementation of information technology to national security.