29 Jun 11. In response to NATO Secretary General Anders Fogh Rasmussen’s call for European allies to adopt a smarter approach to maximizing scarce defense resources in an age of austerity, the Atlantic Council and IBM will cooperate to develop strategies and practical road maps for NATO’s modernization to confront future challenges. This initiative will focus on providing thought leadership and innovative policy-relevant solutions for NATO’s continued reform and role in cyber defense and security. Frederick Kempe, President and CEO of the Atlantic Council said: “Aligning with IBM allows the Council to continue our cutting edge work on transatlantic security challenges, focusing on NATO reform and cyber security. We are especially pleased to work in concert with IBM, a global leader in leveraging technology to increase value, flexibility, and productivity, across the private and public sector.”
Working with recognized experts and former senior officials from both Europe and the United States, the Atlantic Council and IBM will produce a set of policy-oriented briefs focused on NATO reform and cyber security throughout 2011. The publications and their findings will be showcased at public and private events for the defense policy and NATO communities on both sides of the Atlantic in comings months. The events will coincide with reform and policy development milestones established by the November 2010 NATO summit in Lisbon, Portugal. To kick off this effort, the Atlantic Council is partnering with Security and Defence Agenda for a major conference on NATO reform in Brussels on June 29. The Atlantic Council and IBM initiative is managed by the Council’s Program on International Security.
Jun 11. Returns from mass email-based attacks declined by more than 50 percent from US$1.1bn in June 2010 to $500m in June 2011. Mass spam volumes plummeted from 300bn daily spam messages to just 40 billion between June 2010 and June 2011. There is an increase in spearphishing and personalized scams and malicious attacks. Spearphishing attacks have increased threefold, while scams and malicious attacks have increased fourfold. The overall cost of targeted attacks to organizations worldwide is $1.29bn annually. Like almost all types of cybercrime exploits, the success of targeted attacks relies on technical holes and the all-too-human tendency to misplace trust. Targeted attacks are the most elusive threat to protect against and have the potential to deliver the most potent negative impact. Very low in volume, they focus on a specific individual or group under cover of anonymity provided by specialized botnet distribution channels. Typically, they rely on malware or APTs (Advanced Persistent Threats) to harvest desired data over a period of time. An example of a targeted attack is the infamous Stuxnet worm, which had the potential to severely disrupt industrial computing systems and could traverse non-networked systems, thus placing at risk even systems unconnected to networks or the Internet. Spearphishing attacks, though more costly to mount and lower in volume than mass spam attacks, also pose serious consequences for today’s enterprises. Many spearphishing attacks ultimately lead to financial theft, making them both highly dangerous to victims and highly valuable to cybercriminals. Spearphishing campaigns, which are a highly customized evolution of the traditional mass attack technique of phishing, can net 10 times the profit of a mass attack. (Source: Len Zuga/HELP NET SECURITY)
30 Jun 11. Utility and energy industry IT analysts will now be able to stay ahead of cyber security threats through intelligence-driven defense with Lockheed Martin’s Palisade™. This new cyber security solution is tailored to the complex threat environment facing the energy industry. Palisade provides advanced threat detection and forensic tools that give utility cyber security analysts the actionable intelligence they need to defend and maintain the networks th