News

In the news
July 28, 2016  |  GCN

Developed by NIST’s National Cybersecurity Center of Excellence (NCCoE), in collaboration with the responder community, the draft discusses all the standards-based technical options and trade-offs that public safety organizations will need to build out a range of mobile security services for their users.

In the news
July 21, 2016  |  Inside Cybersecurity

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence on Thursday established a new “community of interest” for data integrity, part of a Data Integrity Project aimed at assuring data is not altered or destroyed by malware, ransomware, insider activity, and other risks.

In the news
July 19, 2016  |  Compliance Week

IT security commentators believe that most organizations probably already have experienced some form of a data breach. For instance, a recent U.S. Government interagency report indicates that, on average, there have been 4,000 daily ransomware attacks since early 2016 (a 300 percent increase over the 1,000 daily attacks reported in 2015). The ongoing challenge is to overcome the different and emerging sources of security breaches and to install the right defenses to address areas of vulnerability.

Blog
July 17, 2016  |  Don Tobin

Criminal enterprises involved in distributing ransomware are making a large profit, with some studies showing profits in the hundreds of millions worldwide. In the Bitdefender study, more than 50 percent of the United States targets paid the ransom, while 40 percent said they would pay if they were hit. However, an effective data recovery strategy and business continuity plan would eliminate the need to pay the ransoms. Developing a process to detect and recover from a data integrity attack is too significant and costly a challenge for a single company to address in isolation. Therefore, the NCCoE has begun collaborating with technology partners and business leaders to develop a comprehensive, cross-industry solution.

In the news
July 14, 2016  |  Diagnostic Imaging

Hospitals that integrate EHRs have started to look at external standards, such as those presented by the National Cybersecurity Center of Excellence (NCCoE) that attempt to create "best practice" guidelines for EHR security. Coupled with the MDM policies of the institution, they can create an environment that is functional, yet secure.

In the news
June 30, 2016  |  IEEE IT Professional Magazine

The National Cybersecurity Center of Excellence (NCCoE) at the US National Institute of Standards and Technology (NIST) is another organization that relies on collaboration, but focuses on building reference designs or example solutions that others can use to improve an organization’s cybersecurity. As the US’s only national lab focused solely on cybersecurity, the NCCoE works with the private sector, academia, and other government organizations to identify pressing cybersecurity problems. 

In the news
June 01, 2016  |  Inside Cybersecurity

The National Institute of Standards and Technology is requesting proposals for cybersecurity-related products and technical expertise that would help organizations recover from incidents that alter or destroy data.

The effort is being pursued through NIST's National Cybersecurity Center of Excellence and seeks to develop an “example solution” under the Data Integrity Building Block.

In the news
May 31, 2016  |  FedScoop

The National Institute of Standards and Technology is looking for products and expertise to help organizations reliably recover corrupted or destroyed data.

The search is being conducted by NIST’s Data Integrity project, which is part of the National Cybersecurity Center of Excellence. The project is working to develop ways organizations can prevent or recover from data loss or alteration resulting from malware or human error.

In the news
May 28, 2016  |  EnergyCentral

Leverage government-industry partnerships such as NIST's National Cybersecurity Center of Excellence (NCCoE) to help jump start your IAM and situational awareness implementations. NCCoE has a plethora of cybersecurity implementation examples that can help all size energy organizations leverage proven third-party products to address cybersecurity framework, NERC CIP, and other standards and best practices. 

In the news
May 22, 2016  |  Lexology

Congress has enacted a recent wave of legislation to address ongoing cybersecurity threats; the Executive Branch, on May 12, 2016, adopted new cybersecurity regulations; and other Federal initiatives are underway and will bring additional promised change requiring enhanced cybersecurity protections.