Collaborate Disseminate
Machine learning tools are aiding U.S. security agencies to catch operations relying on so-called “living off the land” techniques.
The post AI is helping US spies catch stealthy Chinese hacking ops, NSA official says appeared first on CyberScoop.
Continue reading AI is helping US spies catch stealthy Chinese hacking ops, NSA official says
The National Security Agency’s Cybersecurity Collaboration Center is trying to improve threat-sharing with private sector partners.
The post ‘No guns, no guards, no gates.’ NSA opens up to outsiders in fight for cybersecurity appeared first on CyberScoop.
The NSA cybersecurity director’s memes suggest the Pentagon may have finally figured out how to use internet culture to its advantage.
The post Spy agency embraces meme culture and the internet is here for it appeared first on CyberScoop.
Continue reading Spy agency embraces meme culture and the internet is here for it
Rob Joyce, head of the NSA Cybersecurity Directorate, said “what we know is often not sensitive, it is how we know it.”
The post NSA cyber chief says Ukraine war is compelling more intelligence sharing with industry appeared first on CyberScoop.
Chinese hackers have become increasingly brazen and are investing more time to stealing intellectual property and breaking into sensitive networks, according to National Security Agency cyber chief Rob Joyce.
The post Chinese state-sponsored hackers have become more brazen, prompting an NSA advisory appeared first on CyberScoop.
Continue reading Chinese state-sponsored hackers have become more brazen, prompting an NSA advisory
They cited progress with structures like the Joint Cyber Defense Collaborative.
The post Top cyber feds working toward fresh models of an old mantra: cyber collaboration appeared first on CyberScoop.
Continue reading Top cyber feds working toward fresh models of an old mantra: cyber collaboration
Suspected spies using similar tools and tactics to a Chinese government-connected hacking group compromised nine organizations in the defense, education, energy and health care industries across the globe beginning in September, according to new research. The hackers were “indiscriminate” in targeting that included parts of the U.S. Defense Department, according to Palo Alto Networks, which published its findings on Sunday with an assist from the National Security Agency’s Cybersecurity Collaboration Center. That center primarily works with defense contractors to collect and share threat information. At least one of the victims was a U.S. organization, Palo Alto Networks said, but didn’t name the nine compromised entities. The company “believes that the actor’s primary goal involved gaining persistent access to the network and the gathering and exfiltration of sensitive documents from the compromised organization.” The research comes on the heels of a Sept. 16 warning from the Department of Homeland Security’s Cybersecurity […]
The post Hackers with Chinese links breach defense, energy targets, including one in US appeared first on CyberScoop.
Continue reading Hackers with Chinese links breach defense, energy targets, including one in US
Nearly every country on the planet now has a program to exploit digital vulnerabilities, a top National Security Agency cyber official said Wednesday, and while most are focused on espionage, more are beginning to experiment with more aggressive techniques. Rob Joyce, director of cybersecurity at the NSA, said there’s a lot of focus on China, Iran, North Korea and Russia, but those countries, which he described as the “big four,” are not the only nations weaponizing technology. “Almost every nation in the world now has a cyber exploitation program. The vast majority of those are used for espionage and intelligence purposes,” Joyce said at the Aspen Cyber Summit. “There is interest in dabbling in offensive cyber and outcomes.” Even some smaller nations have proven to be advanced, Joyce said. It’s just that they’re usually more confined in how they pursue their national interests, by things like the amount of money […]
The post ‘Almost every nation’ now has cyber vulnerability exploitation program, NSA official says appeared first on CyberScoop.
Cautioning that foreign government-backed hackers are actively exploiting vulnerabilities in virtual private network devices, the National Security Agency and the Department of Homeland Security’s cyber wing on Tuesday published guidelines for securing VPNs. While the advice is broad, the NSA and DHS’ Cybersecurity and Infrastructure Security Agency specifically said it would help protect the Defense Department, national security systems and defense contractors against such advanced persistent threat groups, a term that typically refers to state-sponsored hacking groups. The NSA has specifically warned in the past about Chinese hackers exploiting VPN vulnerabilities, as has CISA, but the history of advanced groups seizing on VPN vulnerabilities is far broader and lengthier. “VPN servers are entry points into protected networks, making them attractive targets,” Rob Joyce, director of cybersecurity at the NSA, said on Twitter. “APT actors have and will exploit VPNs.” In one case, the FBI warned in May about hackers leveraging […]
The post NSA, CISA share guidelines for securing VPNs as hacking groups keep busy appeared first on CyberScoop.
Continue reading NSA, CISA share guidelines for securing VPNs as hacking groups keep busy
When Russia’s Foreign Intelligence Service staged a sweeping espionage campaign targeting hundreds of U.S. companies and federal government agencies last year, it was a private sector cybersecurity firm that first uncovered the operation, not the U.S. government. Lawmakers have asked in recent weeks why the U.S. intelligence community appears to have gaps in its visibility into foreign hacking, and whether the National Security Agency needs new surveillance authorities. But the NSA’s cybersecurity director, Rob Joyce, suggested that that may not be the best solution. “Inside the U.S. you would expect us to have the best tools and capabilities, but instead what we’re finding — in General Nakasone’s words — is we don’t even see the dots, let alone connect the dots,” Joyce said at CyberTalks, a summit presented by CyberScoop. The NSA Cybersecurity Directorate, which Joyce leads, is responsible for preventing and eradicating threats from foreign hackers targeting U.S. entities. […]
The post NSA cyber director explains why US missed suspected Russian espionage operation appeared first on CyberScoop.
Continue reading NSA cyber director explains why US missed suspected Russian espionage operation