Category: Commentaries and Analyses

VEHICLE CYBERSECURITY: DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack

Posted on by Dissent

From a newly released GAO report: Modern vehicles contain multiple interfaces—connections between the vehicle and external networks—that leave vehicle systems, including safety-critical systems, such as braking and steering, vulnerable to cyberattacks. Researchers have shown that these interfaces—if not properly secured—can be exploited through direct, physical access to a vehicle, as well as remotely through short-range…

Read more

SWIFT warns customers of multiple cyber fraud cases, issues software security update

Posted on by Dissent

Jim Finkle reports: SWIFT, the global financial network that banks use to transfer billions of dollars every day, warned its customers on Monday that it was aware of “a number of recent cyber incidents” where attackers had sent fraudulent messages over its system. The disclosure came as law enforcement authorities in Bangladesh and elsewhere investigated the…

Read more

Presidential campaign apps expose personal data, report says

Posted on by Dissent

First it was their web sites failing to protect privacy, and now it’s their apps. Cory Bennett reports: Over half of presidential campaign-related smartphone apps on Android devices are exposing users’ sensitive data, according to new research. Presidential campaigns — and the groups that support them — are increasingly using smartphone apps to try to…

Read more

SWIFT Software Bug Exploited by Bangladesh Bank Hackers

Posted on by Dissent

Phil Muncaster reports: A bug in SWIFT banking software may have been exploited to allow hackers to make off with $81 million from Bangladesh’s central bank in February, according to reports. Investigators at British defense contractor BAE Systems told Reuters that the malware in question, evtdiag.exe, had been designed to change code in SWIFT’s Access…

Read more