Health & Safety

February 1, 2013

Cyber security — more important than ever before

It was long after the hour of darkness and everyone had left the building for the day. Ever so slowly, the door leading onto the main hall swung open, and, after glancing furtively up and down the corridor, a man dressed in janitor cleaning attire slid out. Hesitantly, he pushed his cart to an office where a door was cracked open, slightly ajar. The ‘custodian’ slipped inside, closed the door, snapped on a dim light and sat down at a waiting computer terminal which had been left on and was humming slightly.

He stealthily removed equipment from the bowels of his janitor cart, hooked it into the unit, loaded the password which unlocked the system and went to work.

A “cyber terrorist” doesn’t distinguish between a Department of Defense computer network system or one from the private sector. With the stroke of a key, the cyber terrorist can wreak havoc on a system not fully protected with a robust firewall suppression system. Even with the strongest firewall suppression system we still see signs of attackers getting through via Phishing attacks or installing viruses.

How does this correlate with operations security, or OPSEC? The key is information or the protection of information filed or stored within our computer networks. We’ve heard of and seen countless stories in newspapers and on the television concerning federal agencies and private companies losing or being denied their own information due to the spread of spyware, malware and other denial-of-service programs. On an average, 63,912 computers are affected daily.
The United States is the target of most denial of service attacks, accounting for 52 percent worldwide.

In today’s cyber world environment we must finally come to the realization that our computer is a weapon systems platform. The adversary’s goal is to neutralize or eliminate the threat coming from the weapon platform itself. Hence, when we discuss the cyber threat from an adversary’s point of view their goals are to deny the use of these systems, while simultaneously, trying to steal stored information. We cannot solely rely on our critical infrastructure to deny the cyber terrorist an avenue in penetrating our system defenses. We must all take an active role in assuming responsibility for sensitive information stored on desktops such as unit Critical Information (CI), For Official Use Only (FOUO) and Privacy Act (PA) data.

Doing the right things like properly protecting the personal identification number, or PIN, to your Common Access Card and passwords to other internal software programs are a good start. Not corrupting a computer with non-approved external media devices is another way of protecting sensitive information from getting into the hands of an adversary by eliminating the threat of infected spyware and malware embedded in the media.

Those who receive suspicious looking email that they do not recognize should simply not open them. Delete them from the inbox and the office recycle bin to ensure any potential attached viruses are neutralized.

One last important factor is to ensure that all information containing FOUO or PII information is protected from potential hacking through the use of encryption with PKI.

As we know from the news, cyber threats are pervasive. What is not as widely known is cyber threats most often target human behavior, using attacks such as social engineering, spear phishing, cyber bullying and the targeting of children. The mitigation measure for these risks is education.

We have made great strides in securing government systems to accomplish our mission. Don’t forget to protect your families by maintaining the same security principles at home through education and good practices such as the following:

  1. Secure computer accounts: Ask for protection beyond passwords. Many account providers now offer additional ways for people to verify who they are before they conduct business on that site.
  2. Make passwords long and strong: Combine capital and lowercase letters with numbers and symbols to create a more secure password.
  3. Unique account, unique password: Separate passwords for every account helps to thwart cybercriminals.
  4. Write it down and keep it safe: Everyone can forget a password. Those who keep a list should store it in a safe, secure place away from their computer.



All of this week's top headlines to your email every Friday.


 
 

 
Maranda Flynn

Combat Lifesaver Course trains Soldiers to save lives on, off battlefield

Maranda Flynn From left, Fort Huachuca Combat Lifesaver Course instructors Sgt. James Atcitty, U.S. Army Medical Department Activity, and Sgt. James Fender, 111th Military Intelligence Brigade, wrap a casualty in a heat protect...
 
 
J.D. Leipold

Army signs ‘Shifting Gears’ training partnership with GM, Raytheon

J.D. Leipold The Shifting Gears Automotive Technician Training Program proclamation is displayed after being signed by representatives from the Army, General Motors and Raytheon at a Pentagon ceremony, Tuesday. From left, the s...
 
 
David Vergun

Senior leaders explain Army’s drawdown plan

David Vergun No commander is happy when notified that a Soldier from his or her command has been identified for early separation. But commanders personally notify those Soldiers and ensure participation in the Soldier for Life ...
 

 

Online tool provides ‘voice’ for installation customers

When it comes to providing feedback on services provided by various organizations throughout the Department of Defense, the Interactive Customer Evaluation, or ICE, system allows customers to voice their feedback. ICE is a Web-based tool that collects feedback through online comment cards designed to improve customer service by allowing managers to monitor the satisfaction levels...
 
 
IMG_0131

Ship ‘docks’ temporarily at Fort Huachuca

The fully restored 36-foot replica of the USS Arizona battleship ‘docks’ at the Fort Huachuca Main Exchange last weekend as part of the 119th anniversary celebration of the Post Exchange System. Wanda and Perry Sartain, for...
 
 

Civilian of the Month

Civilian of the Month: Christine Ritzer Agency: Communications Security Logistics Activity, Information Security Division Position and duties: Analyze classified communications security data How long at current assignment: 2 years in November How long in government service: 8 years Residence: Sierra Vista, originally from New Jersey Family: Parents, Victor and Chong Alequin, brother Mike, and h...
 




0 Comments


Be the first to comment!


Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>


Directory powered by Business Directory Plugin