Friday, April 17, 2015

New CompTIA Linux+ Exam now available


The new version of CompTIA Linux+ Powered by LPI Linux includes changes in core Linux technologies and processes used by Linux administrators, as well as the addition of systems to several major Linux distributions. Linux is an important technology in tech and it's growing in importance. The exam validates baseline skills in the Linux OS. These skills are central to those aspiring to sys admin roles, but also important to those in a wide assortment of IT careers. Find more details here.

Thursday, April 16, 2015

CyberWatch: National Cyber League (NCL) Webinar

NATIONAL CYBER LEAGUE
Curriculum in the Classroom


Join Casey O'Brien, NCL Commissioner, on April 24th at 11a.m. EDT as he showcases the various resources available for faculty to include NCL in the CLASSROOM.



The NCL was founded to provide an on-going, virtual training ground for collegiate students to

DEVELOP
PRACTICE
and
VALIDATE

cybersecurity skills using next-generation high-fidelity simulation environments!

Join this FREE one-hour webinar to learn how to integrate this into YOUR classroom.

CLICK HERE

Share this webinar registration information with your colleagues, click here.

Questions? Contact info@nationalcyberwatch.org.

BBC: High price of '.sucks' to be investigated


13 April 2015 BBC


Vox Populi says its prices for ".sucks" website names are "well within the rules"

The authority that decides which letters a web address is allowed to finish with says it is concerned at the high charges for the new ".sucks" name.

The Internet Corporation for Assigned Names and Number (Icann) has asked the US and Canadian trade authorities to investigate Vox Populi, which secured the rights to sell the name.

The company denies any wrongdoing.

Many companies and celebrities have bought their name with controversial suffixes such as ".porn" or ".xxx".

Predatory selling

The last part of a web address that follows the final dot, such as ".com", ".org", and ".net", is referred to as a generic top level domain (gTLD).

Icann relaxed the rules governing gTLDs in 2012, and the latest to go up for sale is ".sucks".

Many companies and celebrities buy their brand or name with various gTLDs, to avoid any confusion with their official website addresses or to stop others buying them and posting negative content.

Taylorswift.xxx has been reserved but not used, to prevent others from buying it

For example, singer Taylor Swift bought up taylorswift.xxx to prevent anyone else from using it.

Specialist online website Domain Incite reports that actor "Kevin Spacey, Microsoft, Google and Apple have already bought up '.sucks' sites in a bid to protect their reputations".

This practice is known as "defensive registering".

Icann granted Vox Populi permission to sell the ".sucks" names but is now concerned at the price levels the Canadian company has set.

Kevin Murphy, from Domain Incite, told the BBC two key elements of the way Vox Populi was handling the sale were causing concern.

"They are charging a $2,000 'sunrise' premium to those wishing to register '.sucks' addresses early, before the addresses go on sale to the general public [next month]," he said.

"Also they are using a list of words or names that have been defensively registered in the past, for which they are charging the top amount."

Mr Murphy said the company was working from a list of keywords that had been part of web addresses bought up early on in similar new domain web address sales and using that to decide which ".sucks" addresses to charge more for.

The base fee for any ".sucks" web address is $199 a year

New gTLDs such as ".rocks" or ".forsale" typically sell for between $5 (£3.42) and $20 a year.

Beyond jurisdiction

But Murphy said: "They [Vox Populi] are charging a much bigger amount that you'd expect.

"They were considering a fee of $25,000 at one point when we spoke to them.

"I think they are charging as much as they can get away with.

"It [Vox Populi] justified the $2,000 premium price tag [for certain '.sucks' addresses] as being 'a reasonable part of a company's PR budget'.

"It appears they are basing prices on what firms can afford not on the product services they are providing."

In a strongly worded letter to Icann, the authority's own advisory body, the Intellectual Property Constituency (IPC), demanded a "halt" to Vox Populi's "illicit", "predatory" and "coercive" selling scheme.

But even though Icann approved the ".sucks" domain name sale and issued the licence to sell the related website addresses, it appears not to have jurisdiction over how they are sold.

There is no evidence that Vox Populi has done anything wrong, and the company told Domain Incite its pricing and policies were "well within the rules".

Icann has referred Vox Populi to the two bodies it believes may have the regulatory authority to investigate the company's practices: the Federal Trade Commission in the United States and the Canadian Office of Consumer Affairs, as the company is registered in Canada.

But unless the company has broken the law, it is not clear what powers Icann has over Vox Populi's handing of the sale of ".sucks".

BBC: US in-flight internet could be hacked, watchdog warns


15 April 2015 BBC


Wireless systems used by passengers on planes in the US could be hacked to access flight controls, a federal watchdog agency has warned.
A report by the US Government Accountability Office (GAO) said it is one of several emerging security threats not being dealt with properly.
It comes as air traffic control is modernised to use satellite technology.

The US Department of Transportation said it was "committed to strengthening capabilities against evolving threats".

GAO investigators spoke to cyber security experts who said onboard firewalls intended to protect avionics from hackers could be breached if flight control and entertainment systems use the same wiring and routers.

One expert told investigators "a virus or malware" planted on websites visited by passengers could provide an opportunity for a malicious attack.

Michael Huerta from the Federal Aviation Administration (FAA), which oversees airspace, agreed with the GAO's findings and said it had begun working with government security experts to make the changes needed.

"This threat will continue to evolve and it is something that needs to be at the forefront of our thinking," he told a Senate oversight panel.

Congressman Peter DeFazio said: "FAA must focus on aircraft certification standards that would prevent a terrorist with a laptop in the cabin or on the ground from taking control of an airplane through the passenger wi-fi system."

The Department of Transportation said the FAA was "committed to strengthening our capabilities to defend against new and evolving threats with a high degree of urgency".

Learn how to become an (ISC)2 Global Academic Program Member


(ISC)2® Global Academic Program Summit
April 29, 2015 | 10:00 a.m. – 12:00 p.m. (EST)


Learn how to become an (ISC)2 Global Academic Program Member

Enhance the foundation of your institution's cybersecurity curricula and provide your students with a career pathway to success through the (ISC)2 Global Academic Program, a key (ISC)2 initiative that is part of the organization's commitment to address the growing gap in availability of qualified cybersecurity professionals. The (ISC)2 Global Information Security Workforce Study identified year-over-year growth in this availability gap dating back to 2004. As governments around the world seek to improve university curricula as part of their national cybersecurity strategies, (ISC)2 is making its educational resources, updated regularly by members and industry luminaries, available to academia to help meet the global demand for more skilled cybersecurity professionals.

Understanding the benefits of collaborating with (ISC)2:
  • Training Seminar courses and textbooks based on the HCISPPSM, SSCP®, CISSP®, and other industry-relevant certifications. View the full suite of (ISC)2 credentials available here.
  • Print and electronic media (e.g., textbooks, white papers, knowledge briefs, journal articles) 
  • Certification practice tests (online and iOS formats) 
  • Content licensing opportunities 
  • Global student chapter outreach 
  • Conference session tracks 
  • Access to industry SMEs 
  • Discounted faculty/student rates for certification exams 

Add to Calendar

Once you are approved by the host, you will receive a confirmation email with instructions for joining the session.

To view in other time zones or languages, please click here.

For more information on becoming a Global Academic Program member, visit www.isc2.org/academic or email academic@isc2.org.