Archive for December, 2011

Remarks by Secretary Janet Napolitano

Good morning. I’m pleased to join Commissioner Bersin, Deputy Commissioner Aguilar, Assistant Commissioner Winkowski, and the men and women of U.S. Customs and Border Protection.

Fukushima: soteigai or zatzusei

Monday the independent panel appointed to investigate the Fukushima nuclear accident released a 507 page interim report.  Most of the document focuses on specific operational decisions and tactical choices. Several specific failures are highlighted: i…

Cyber Threat To Power Grid Puts Utility Investors At Risk

The electric-utility industry's concerns about cyber security have escalated sufficiently for several investor-owned utilities to include cyber-attacks as a material risk factor in recent filings with the U.S. Securities and Exchange Commission.

Embedded Attacks And Emerging Targets To Dominate 2012 Security Landscape

[McAfee's] 2012 Threat Predictions Report said that attacks on industrial systems and embedded hardware will continue as utility companies increasingly use network-connected systems to control infrastructure.

NIST Protects BIOS With New Security Guidelines

The organization that sets federal technology standards has provided new security guidelines for protecting the system that starts up PCs.

DHS Announces “If You See Something, Say Something™” Campaign Partnership with the National Hockey League

WASHINGTON, D.C. – WASHINGTON, D.C. – The Department of Homeland Security (DHS) today announced a new partnership between DHS’ “If You See Something, Say SomethingTM” public awareness campaign and the National Hockey League (NHL) – highlighting the Dep…

Accountability in the Information Age

Yesterday, our friends and fellow bloggers at Wired magazine’s Threat Level recapped the debate between New Yorker writer and prolific author Malcolm Gladwell and NYU academic and social media evangelist Clay Shirky regarding the role of social m…

ICS-CERT has released an updated Advisory "ICSA-11-362-01 – ScadaTEC ScadaPhone and ModBusTagServer Buffer Overflow" (PDF)

This Advisory details a buffer overflow vulnerability in the ScadaTec ScadaPhone and ModBusTagServer products.

ICS-CERT has released an updated Advisory "ICSA-11-298-01A – (UPDATE) Sielco Systemi Winlog Buffer Overflow" (PDF)

This updated Advisory provides new information for obtaining the Sielco Systemi Winlog update.

ICS-CERT has released an Advisory "ICSA-11-361-01 – Siemens Automation License Manager Multiple Vulnerabilities" (PDF)

This Advisory details multiple vulnerabilities in the Siemens Automation License Manager product.