Last year, the US Department of Defense released cyberspace strategy emphasized the "forward defense Defense forward" concept. This is being viewed as the US military will implement a network offensive and defensive operations in other countries rather than the United States. Earlier, the US president also gives the military a free unimpeded deployment of advanced network of weapons. As the initiator of cyber warfare, the United States is by actively preparing for the network, accelerating the global war dragged into a network there will be no winner.
Over the years, American politicians have been advocating that may be at risk "Network Pearl Harbor" attack, but the world's first use of cyber weapons to attack his country facilities of action is initiated by the United States. As the initiator of cyber warfare, cyber warfare the United States is not only the most powerful country, but also to launch cyber warfare than any other country.
In 2004, the United States launched cyber attacks, resulting in paralysis of the Libyan national top-level domain. In 2010, the United States and Israel jointly produced "Stuxnet" virus attack Iran's nuclear facilities, resulting in 1,000 centrifuges Iran scrapped, resulting in Iran's nuclear program almost "stagnant." 2016, former US Secretary of Defense Carter for the first time acknowledged that the United States use the Internet means to attack Syria ISIS organization, this is the first time the US public network attacks as a means of warfare. In early March 2019, the Venezuelan national large-scale power outages, 23 states, 18 states are affected, directly leading to paralysis of transport, health, communications and infrastructure. Venezuelan President Maduro accused the US of planning a "cyber attack" on the country's power system, the purpose is achieved by a nationwide blackout, create chaos, forcing the government to step down. Some analysts believe that, not in direct and indirect military intervention in the case of Venezuela launch cyber attacks may be the best option for the United States.
US preparing plans in cyberspace never stop. The end of 2016, the United States to further enhance the strategic position and operational value of cyberwarfare, the original subordinate to US Strategic Command Network Warfare Command upgraded to an independent headquarters, constitute the President - Secretary of Defense - Combat Command commander three network battle command mechanism. Currently, the US has 133 network warfare units. 10 years between 2006-2016, large-scale "Cyber Storm" the US military has held exercises or network space warfare exercise a total of seven times, including three offensive and defensive operations network specifically for China. August 2018, US President Trump signed an order to overthrow the "Presidential Policy Directive No. 20" before President Obama signed in 2012 (PPD-20), to make the military more freedom to deploy advanced network of weapons, rather than by State Department and the intelligence community to block.
For these practices the United States, researchers at Columbia University, network security experts Jason Healy Jason Healey very worried that the United States has slid into a permanent network warfare, in which there will be no real winner.
In fact, this concern is not unreasonable. United States continue to strengthen its cyber warfare capabilities, to make the world a bad demonstration, if other countries or the United States of rival organizations to emulate the United States to strengthen cyber warfare capacity building and the use of means, the United States can never be "spared", it is actually very likely to bear the brunt The goal. Can not be achieved by another attack network security, will only make cyberspace on a path of no return against the upgrade.
"People's Daily" (June 14, 2019 06 version)
Source: People's Daily
Details: http://www.dbsec.cn/zx/20190615-4.html
More info
Network Information Office published "Personal Information outbound security assessment approach (draft)"
Network Information Office published the "Personal Information outbound security assessment approach (draft)", comments submission deadline July 13. "Assessment approach" provides:
Article personal information before departure, the network operator shall apply for personal information outbound network security assessment letter to the provincial department. Provide personal information to different receivers should be reported separately safety assessment, repeatedly to the same recipient or many times in a row without having to provide personal information to evaluate. It should be re-evaluated when the exit purpose, type and offshore saving time changes every 2 years or personal information. Article VIII of the network operator shall establish a personal information and exit records kept for at least five years, including the record date and time :( a) to provide personal information to overseas. (B) the identity of the recipient, including, but not limited to, the recipient's name, address and contact information. (C) the type and quantity of the sensitivity of the personal information provided to the outside. Other content provisions (iv) National Network and Information Department. Article X of the provincial network of personal information Departure Record Information Department should organize regular checks of operators and other personal information abroad, the focus on examination of the fulfillment of contractual obligations, whether there is a violation of state regulations or prejudice the legitimate interests and other personal information on the subject.
Source: solidot.org
Details: http://www.dbsec.cn/zx/20190615-2.html
AVG Anti-Virus program accidentally delete a specific version of Firefox user login credentials
There are using AVG anti-virus software, Firefox browser users recently complained that saved their browser login credentials are cleared. In short, while those running Mozilla Firefox and AVG Anti-Virus users can no longer automatically fill in passwords and other login details. However, not all versions of Firefox will be affected. According to complaints received by the user, AVG Anti-Virus only damage Firefox 67.0.2.
Source: cnBeta.COM
Details: http://www.dbsec.cn/zx/20190615-1.html
SEC Compliance Office of the Ombudsman warned about the NAS configuration errors, database and cloud storage server
Security risk alert issued by the US Securities and Exchange Commission warned the company, especially a broker-dealer and investment company, will be in network storage solutions danger (such as NAS devices, databases and cloud storage account) in the customer information storage.
Source: zdnet Details: http://www.dbsec.cn/zx/20190615-5.html
(Information from the network, Anwar gold collected more)