article thumbnail

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Department of Justice.

article thumbnail

2003 Testimony to Congress Proves That We Still Have a Long Way to Go In Building Secure Software

Veracode Security

Senate committee investigating government cybersecurity. government how the world of cybersecurity really was from those down in the computer underground trenches. This time I testified as a cybersecurity professional using my real name. Back in the summer of 2003, the internet was plagued with worms such as Blaster and Sobig.

Software 118
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Russia Sends Cybersecurity CEO to Jail for 14 Years

Krebs on Security

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov , the former founder and CEO of one of Russia’s largest cybersecurity firms. Ilya Sachkov. Image: Group-IB.com.

article thumbnail

NY Charges First American Financial for Massive Data Leak

Krebs on Security

had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties.

Insurance 353
article thumbnail

On Software Liabilities

Schneier on Security

I have long been a fan of software liability as a policy mechanism for improving cybersecurity. In 2003, I wrote : Clearly this isn’t all or nothing. He draws from other fields—consumer products, building codes, automobile design—to show that courts can deal with the stuff in the middle.

Software 325
article thumbnail

25 Years Later: Reflecting on L0pht’s 1998 Congress Testimonial and the Evolution of Cybersecurity

Veracode Security

This event marked the beginning of a long journey towards increased cybersecurity awareness and implementation of measures to protect our digital world. Even my 2003 testimony to Congress still proved that we have a long way to go in building secure software. Let’s take a look at how far we’ve come and what still needs to be done.

article thumbnail

Measuring the Security of IoT Devices

Schneier on Security

Data Collected: 22 Vendors 1,294 Products 4,956 Firmware versions 3,333,411 Binaries analyzed Date range of data: 2003-03-24 to 2019-01-24 (varies by vendor, most up to 2018 releases). [.]. In August, CyberITL completed a large-scale survey of software security practices in the IoT environment, by looking at the compiled software.

IoT 227