Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually

Sur le même sujet

• 

  31 juillet 2020 | International, C4ISR, Sécurité

  Pentagon needs access to defense companies’ networks to hunt cyberthreats, says commission

  Mark Pomerleau WASHINGTON — The Pentagon must be able to hunt cyberthreats on the private networks of defense companies in order to strengthen national cybersecurity, according to one of the leaders of the Cyber Solarium Commission. Rep. Mike Gallagher, R-Wis., who co-chairs the commission, said in testimony before the House Armed Services Subcommittee on Intelligence and Emerging Threats and Capabilities that there must be greater visibility of these networks, in which much sensitive and classified information is kept. “I think one of our biggest findings in the report was that while we are getting a better awareness of our own systems, we still — down to the level of some of our DoD contractors, subcontractors, all the small companies that work with the big defense primes — don't have the level of visibility on the threat picture and the security of their networks that we need,” he said July 30. “I just would argue that we need to figure that piece out because we just can't be in the process of reacting to cyber intrusions after the fact. We have to identify those threats at a quicker timeline at which our adversaries can break out on networks.” The Cyber Solarium Commission is a bipartisan organization created in the 2019 to develop a multipronged U.S. cyber strategy. The commission's report, released in March, recommended Congress require the defense industrial base participate in threat intelligence sharing programs and threat hunting on their networks. “Improving the detection and mitigation of adversary cyber threats to the DIB [defense industrial base] is imperative to ensuring that key military systems and functions are resilient and can be employed during times of crisis and conflict,” the report stated. China has been accused of pilfering reams of data from the networks of defense companies, including plans for the F-35 fighter jet and sensitive data on U.S. Navy programs that, while not classified by themselves, can collectively provide vast strategic insight into Navy plans and operations, officials claim. The commission's report recommended that a threat-hunting program include Department of Defense threat assessment programs on DIB networks; incentives for companies to feed data collected from threat hunting to the DoD and the National Security Agency's cybersecurity directorate; and coordination of DoD efforts with the Department of Homeland Security and the FBI. Congress is calling for the creation of a threat-sharing model in this year's defense authorization bill. The Senate's version includes a provision to direct the defense secretary to establish a threat intelligence program “to share threat intelligence with, and obtain threat intelligence from, the defense industrial base.” https://www.c4isrnet.com/cyber/2020/07/30/pentagon-needs-access-to-defense-companies-networks-to-hunt-cyberthreats-says-commission/

• 

  5 février 2020 | International, Naval, C4ISR

  BAE Systems Wins Two Awards to Support the U.S. Navy with Enhanced Radio Communications and C5ISR Capabilities

  February 3, 2020 - The U.S. Navy's Naval Air Warfare Center Aircraft Division (NAWCAD) has awarded BAE Systems, Inc. a prime position on a $212 million contract to integrate and sustain its critical communication systems. The company will design, acquire, integrate, and test radio systems for newly constructed Guided Missile Destroyers (DDG) and other U.S. Navy and U.S. Coast Guard ships. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20200203005039/en/ Additionally, the company was awarded a separate $104.7 million contract by NAWCAD to provide engineering and technical services to support production, lifetime-support, and in-service engineering for the radio communications C5ISR (command, control, communications, computers, combat systems, intelligence, surveillance and reconnaissance) systems aboard U.S. Navy surface combatants and at associated shore sites. The work will be focused primarily on the CG 47 Class and DDG 51 Class AEGIS ships. “Maintaining reliable lines of communication and situational awareness for those at the forefront of national security is a mission-critical priority for BAE Systems and our customers,” said Mark Keeler, vice president and general manager of BAE Systems' Integrated Defense Solutions business. “We're proud to continue supporting the integration of combat systems and solutions for the U.S. Navy as they defend against advanced air, surface, and subsurface threats.” BAE Systems has been a trusted partner to the U.S. Navy for over 45 years, with decades of experience working to develop next-generation solutions for critical shipboard systems. The company's electronics experts have experience providing custom, tailor-made solutions to help close communications capability gaps for the U.S. military, including existing work with U.S. Navy C5ISR capability modernization. BAE Systems delivers a broad range of services and solutions enabling militaries and governments to successfully carry out their respective missions. The company provides large-scale systems engineering, integration, and sustainment services across air, land, sea, space, and cyber domains. BAE Systems takes pride in its support of national security and those who serve. NAVAIR Public Release 2020-79. Distribution Statement A – “Approved for public release; distribution is unlimited” View source version on businesswire.com: https://www.businesswire.com/news/home/20200203005039/en/

• 

  17 décembre 2018 | International, Naval

  Australia, Naval Group conclude sub negotiations

  By: Nigel Pittaway MELBOURNE, Australia – Australian Defence Minister Christopher Pyne confirmed that the Australian government has finally concluded negotiations for the formal signing of a strategic partnering agreement for 12 large conventionally-powered attack submarines from Naval Group. Australia is acquiring the vessels under its $50 billion (U.S. $36.12 billion) Project Sea 1000 (Future Submarine) to replace its existing fleet of six Collins Submarines from the early 2030s. The subs will be the ‘Attack' class with the lead vessel named HMAS Attack. They will be fabricated in Australia to a design previously known as the Shortfin Barracuda 1A. Recent local media reports have suggested that negotiations between the parties had stalled, placing the government's timeline for the Collins replacement in jeopardy, but Pyne said on Thursday the program was still on track. “There's been a lot of ill-informed mythmaking around the negotiations but I'm very happy to say today the negotiations are complete,” Pyne said during sod-turning event at the site of the Future Submarine Construction Yard at Osborne in South Australia. “The strategic planning agreement will be signed in February next year and we can continue to get on with the submarine project, which has been under the design and mobilization contract for the last two years.” Declining to provide details of the intricacies of the agreement due to their commercial nature, Pyne said the negotiations were officially concluded at an Australian Government National Security Committee meeting in Melbourne on Dec. 10. “Suffice to say the Australian government's interests, the Australian taxpayer's interests, have been taken care of,” he said. “Naval Group Australia will deliver 12 regionally-superior submarines on time and on budget.” Australia's Chief of Navy, Vice Adm. Mark Noonan, also denied reports of an emerging capability gap between the retirement of the first Collins submarines and the Attack boats entering service, which some analysts have suggested might require a ‘Plan B' to be formulated. “I don't believe that's the case,” he told reporters. “We've got a very solid plan to ensure that there is no gap in our nation's submarine capability, and there is a very advanced plan that will see a number of our current Collins class submarines going through a life of type extension program, which will ensure that capability gap doesn't exist.” https://www.defensenews.com/global/asia-pacific/2018/12/14/australia-naval-group-conclude-sub-negotiations/