@DXWorldExpo Authors: Liz McMillan, Elizabeth White, Zakia Bouachraoui, Pat Romanski, Maria C. Horton

Blog Feed Post

Feds Look to Partner With States on Cybersecurity, What keeps federal CIOs up at night and more


usps-logoHere are the top cyber news and stories of the day.

  • USAID releases open data tools to increase government openness – “The U.S. Agency for International Development announced April 29 the launch of a plethora of new datasets and tools to increase transparency.” “At the conference, USAID announced the launch of usaid.gov/developer — its application program interface for the Greenbook dataset, the results from two baseline, household, Feed the Future surveys, and three USAID projects affecting food-insecure countries.” These datasets and tools will open up big data for developers to create added value. Via FedScoop, more here.
  • Feds Look to Partner With States on Cybersecurity – “Andy Ozment, senior director for cybersecurity at the White House, embraced states as key partners in efforts to secure the nation’s assets.” The recent cyber executive order has the DHS sharing key cyber intelligence with state and local agencies to bolster cyber defenses. As well, they have orders to expedite clearances for personnel. Via Pew States, more here.
  • USPS has data-related issues, say auditors – An USPS OIG audit revealed numerous data issues in the agency from 2009-2012. The USPS is lacking in a cohesive data strategy, has vast numbers of inconsistent data, and has been warehousing that said data. As well, their data sharing and access programs are troublesome, as well as data security as a whole. Via FierceGovernmentIT, more here.
  • What keeps federal CIOs up at night? – “Federal chief information officers are seeking more authority over department budgets, worrying about the continued overspending on operations and maintenance, and questioning their ability to maintain a high-quality workforce in a time of pay freezes and budget cuts, according to a survey released May 2.” Our CIOs are struggling under constraints that are out of their control. They can’t always control spending, nor hiring, and need more control if they are to be held responsible for mission attainment and security of networks. Via FCW, more here.
  • U.S. Department of Labor website infected with malware – “ A subdomain of a U.S. Department of Labor website appeared offline on Wednesday after an apparent hack that looks similar to a known China-based hacking campaign nicknamed DeepPanda.” Hackers sent users who visited the infected page to other infected sites which attempted to exploit a vulnerability in older versions of IE. Security vendors AlienVault and Invincea claim it has been fixed. Via IT World, more here.
  • Army recognized for innovation – “The U.S. Army has been named one of the world’s most innovative research organizations by Thomson Reuters, joining companies such as Apple, DuPont and General Electric on the 2012 Top100 Global Innovators list.” This is a huge win for the Army, because they have often been minimized as copycats. The Army won this award for over 300 patents in just three years. Via FedScoop, more here.
  • Mobile AV Apps Fail To Detect Disguised Malware – Northwestern University and NC State researchers created their own malware obfuscation/transformation tool which takes common malware and transforms it to test the mettle of signature based antivirus programs. Their antivirus programs failed 45% of the time. This is additional evidence against signature based detection (instead of behavior based detection). Via Dark Reading, more here.
  • Hacker Breached U.S. Army Database Containing Sensitive Information on Dams – “A hacker compromised a U.S. Army database that holds sensitive information about vulnerabilities in U.S. dams, according to a news report.” This database is managed by the Army Corps of Engineers, and can be accessed by employees. It can also be queried by those without access, but no information can be downloaded. The public facing portal is likely the vector for the attack. Via Wired, more here.
  • Feds pick lowest-price contracts over best value – ‘”The push the past 20 years has been to find that best value,” Kang said, “but we’re seeing a shift in recent years to push procurements in another directions where the government is trying to simply get the lowest price for a certain technology.”‘ This move from quality/value to cost is both a sign of the constrained budgets and issues with federal contracting. This will have to be watched as our government continues to purchase inadequate software, hardware and people. Via FedScoop, more here.

Read the original blog entry...

More Stories By Bob Gourley

Bob Gourley writes on enterprise IT. He is a founder of Crucial Point and publisher of CTOvision.com

DXWorldEXPO Digital Transformation Stories
@CloudEXPO and @ExpoDX, two of the most influential technology events in the world, have hosted hundreds of sponsors and exhibitors since our launch 10 years ago. @CloudEXPO and @ExpoDX New York and Silicon Valley provide a full year of face-to-face marketing opportunities for your company. Each sponsorship and exhibit package comes with pre and post-show marketing programs. By sponsoring and exhibiting in New York and Silicon Valley, you reach a full complement of decision makers and buyers in ...
The Internet of Things is clearly many things: data collection and analytics, wearables, Smart Grids and Smart Cities, the Industrial Internet, and more. Cool platforms like Arduino, Raspberry Pi, Intel's Galileo and Edison, and a diverse world of sensors are making the IoT a great toy box for developers in all these areas. In this Power Panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists discussed what things are the most important, which will have the most profound e...
"Cloud computing is certainly changing how people consume storage, how they use it, and what they use it for. It's also making people rethink how they architect their environment," stated Brad Winett, Senior Technologist for DDN Storage, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
While the focus and objectives of IoT initiatives are many and diverse, they all share a few common attributes, and one of those is the network. Commonly, that network includes the Internet, over which there isn't any real control for performance and availability. Or is there? The current state of the art for Big Data analytics, as applied to network telemetry, offers new opportunities for improving and assuring operational integrity. In his session at @ThingsExpo, Jim Frey, Vice President of S...
Rodrigo Coutinho is part of OutSystems' founders' team and currently the Head of Product Design. He provides a cross-functional role where he supports Product Management in defining the positioning and direction of the Agile Platform, while at the same time promoting model-based development and new techniques to deliver applications in the cloud.
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settl...
"We were founded in 2003 and the way we were founded was about good backup and good disaster recovery for our clients, and for the last 20 years we've been pretty consistent with that," noted Marc Malafronte, Territory Manager at StorageCraft, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
There are many examples of disruption in consumer space – Uber disrupting the cab industry, Airbnb disrupting the hospitality industry and so on; but have you wondered who is disrupting support and operations? AISERA helps make businesses and customers successful by offering consumer-like user experience for support and operations. We have built the world’s first AI-driven IT / HR / Cloud / Customer Support and Operations solution.
LogRocket helps product teams develop better experiences for users by recording videos of user sessions with logs and network data. It identifies UX problems and reveals the root cause of every bug. LogRocket presents impactful errors on a website, and how to reproduce it. With LogRocket, users can replay problems.
Data Theorem is a leading provider of modern application security. Its core mission is to analyze and secure any modern application anytime, anywhere. The Data Theorem Analyzer Engine continuously scans APIs and mobile applications in search of security flaws and data privacy gaps. Data Theorem products help organizations build safer applications that maximize data security and brand protection. The company has detected more than 300 million application eavesdropping incidents and currently secu...