Blog

Blog
October 13, 2016  |  Kori Fisk

Cyberattacks are on the rise, and a staggering 41% of them target the energy sector. In order to protect the nation’s critical infrastructure, the sector must contend with a diverse set of unique challenges, from aging and disparate networks to a lack of awareness of threats and vulnerabilities. The National Cybersecurity Center of Excellence (NCCoE), in collaboration with energy sector stakeholders and cybersecurity technology vendors, has developed example solutions that utilities can use to help bolster their security postures. The NCCoE, a part of the National Institute of Standards and Technology (NIST), will host a workshop on October 18, 2016 at the North American Electric Reliability Corporation’s (NERC) Grid Security Conference (GridSecCon) in Quebec City, Canada. GridSecCon brings together cybersecurity and physical security experts from industry and government to share emerging security trends, policy advancements, and lessons learned related to the electric utility sector.

Blog
October 06, 2016  |  Joshua Franklin

On September 13, 2016, the National Cybersecurity Center of Excellence (NCCoE) hosted a workshop to review the recently released Mobile Threat Catalogue (MTC) with industry partners and identify missing areas of interest, new countermeasures, and potential mitigations. More than 50 mobile security industry members participated, including hardware manufacturers, operating system developers, malware detection companies, and mobile network operators. There was definitely expertise to go around!

Blog
July 17, 2016  |  Don Tobin

Criminal enterprises involved in distributing ransomware are making a large profit, with some studies showing profits in the hundreds of millions worldwide. In the Bitdefender study, more than 50 percent of the United States targets paid the ransom, while 40 percent said they would pay if they were hit. However, an effective data recovery strategy and business continuity plan would eliminate the need to pay the ransoms. Developing a process to detect and recover from a data integrity attack is too significant and costly a challenge for a single company to address in isolation. Therefore, the NCCoE has begun collaborating with technology partners and business leaders to develop a comprehensive, cross-industry solution.

Blog
May 04, 2016  |  Sarah Kinling

Last week, the National Cybersecurity Center of Excellence (NCCoE) presented at the 2016 Retail Cyber Intelligence Summit in Chicago. Hosted by the Retail Cyber Intelligence Sharing Center (R-CISC), a nonprofit resource for retailers that collects and shares threat intelligence in a safe and secure way, this two-day event brought together nearly 200 information security leaders representing many prominent retail and consumer services organizations.

Blog
April 21, 2016  |  Sarah Weeks and Mary Yang

As part of our outreach efforts, this week the National Cybersecurity Center of Excellence (NCCoE) attended the Electronic Transaction Association’s annual conference, TRANSACT 16, to engage the retail and commercial payment ecosystem as we scope out new projects at the NCCoE focused on the consumer-facing and retail sector.

Blog
April 11, 2016  |  Don Tobin

On April 5, 2016, in coordination with the National Institute of Standards and Technology (NIST) Cybersecurity Framework Workshop 2016, the National Cybersecurity Center of Excellence (NCCoE) hosted a pre-workshop with members of the maritime and oil & natural gas industries to begin identifying and prioritizing cybersecurity challenges facing the industry. This NCCoE-facilitated open session was the first in a series of discussions with this industry sector to help define cybersecurity challenges to address jointly with industry and technology providers in NCCoE labs.

Blog
March 28, 2016  |  Sarah Kinling and Mary Yang

The National Cybersecurity Center of Excellence (NCCoE) hosted a successful workshop, Protecting Consumer Data: Securing Payment and Transaction Information, on March 22 at the University of Alabama Birmingham. The day of conversation brought together more than 60 professionals from across the retail and payment ecosystem, including security technology vendors. The online webcast attracted more than 100 attendees.

Blog
March 10, 2016  |  Sarah Kinling

With attacks on America’s largest retailers continually in headlines, adaptable secure solutions are required. A 2014 Deloitte report on retail cybersecurity revealed that 100% of retailer survey respondents listed “theft of customer data” as their primary concern, followed by breach-related costs, and financial fraud. The retail industry is hungry for solutions that can not only be implemented today to solve current problems, but can also help mitigate future security issues. While challenges persist, innovative advances in cybersecurity technologies present new opportunities to increase security while maintaining business operations. To continue it’s work in addressing the most immediate and critical cybersecurity challenges, the National Cybersecurity Center of Excellence (NCCoE) is hosting a collaborative workshop, Protecting Consumer Data: Securing Payment and Transaction Information, at the University of Alabama Birmingham on March 22.

Blog
February 08, 2016  |  Sarah Kinling

On February 8, 2016, the National Institute of Standards and Technology (NIST) hosted a ribbon cutting and building dedication ceremony for the National Cybersecurity Center of Excellence’s (NCCoE) new facility in Rockville, Md. Representing the public-private collaboration at the center, Commerce Secretary Penny Pritzker, Senator Barbara Mikulski, Senator Ben Cardin, Rep. John Delaney, Rep. John Sarbanes, Maryland Lt. Governor Boyd Rutherford, Montgomery County Executive Ike Leggett, and Under Secretary of Commerce for Standards and Technology and NIST Director Willie May participated in the ribbon cutting.

Blog
March 26, 2015

On the Department of Commerce’s blog, NCCoE director Donna Dodson, who also serves as associate director and chief cyber security advisor of the Information Technology Laboratory at the National Institute of Standards and Technology, shares her history and experiences at NIST.