Entries by 'Anne Connell'

A New Approach for Critical Information Systems Protection

CERT 2 Comments »

By Anne Connell
Design Team Lead
CERT Cyber Security Solutions Directorate

This blog post was co-authored by Barbora Batokova and Todd Waits.

Anne ConnellThe source of a recent Target security breach that allowed intruders to gain access to more than 40 million credit and debit cards of customers between Nov. 27 and Dec. 14, 2013, has been traced to a heating, ventilation, and air conditioning (HVAC) service sub-contractor in Sharpsburg, Pa., just outside of Pittsburgh, according to a Feb. 5 post on a Wall Street Journal blog. The post stated that the intruders were able to gain access to Target’s system after stealing login credentials from one of Target’s HVAC subcontractors, who had been given remote access. This breach demonstrates how any vulnerability in a critical information system can be exploited to disrupt or harm the normal operation of any commercial or industrial sector. In this blog post, we will present a tool we have developed that increases a security incident responder’s ability to assess risk and identify the appropriate incident response plan for critical information systems.

Read more...

A New Approach to Cyber Incident Response

Critical Infrastructure Protection , Vulnerability Analysis No Comments »

By Anne Connell
Design Team Lead
CERT Cyber Security Solutions Directorate 

This blog post was co-authored by Tim Palko. 

Anne ConnellAccording to a report issued by the Government Accountability Office (GAO) in February 2013, the number of cybersecurity incidents reported that could impact “federal and military operations; critical infrastructure; and the confidentiality, integrity, and availability of sensitive government, private sector, and personal information” has increased by 782 percent—from 5,503 in 2006 to 48,562 in 2012. In that report, GAO also stated that while there has been incremental progress in coordinating the federal response to cyber incidents, “challenges remain in sharing information among federal agencies and key private sector entities, including critical infrastructure owners.” Progress in this area was hindered by “difficulties in sharing and accessing classified information and the lack of a centralized information-sharing system,” the report stated. This blog post describes a tool that members of the CERT Cyber Security Solutions (CS2) Directorate are developing to provide the various agencies and organizations that respond to cyber incidents a platform by which to share information and forge collaborations.  

Read more...