Alan W. Dowd is a Senior Fellow with the American Security Council Foundation, where he writes on the full range of topics relating to national defense, foreign policy and international security. Dowd’s commentaries and essays have appeared in Policy Review, Parameters, Military Officer, The American Legion Magazine, The Journal of Diplomacy and International Relations, The Claremont Review of Books, World Politics Review, The Wall Street Journal Europe, The Jerusalem Post, The Financial Times Deutschland, The Washington Times, The Baltimore Sun, The Washington Examiner, The Detroit News, The Sacramento Bee, The Vancouver Sun, The National Post, The Landing Zone, Current, The World & I, The American Enterprise, Fraser Forum, American Outlook, The American and the online editions of Weekly Standard, National Review and American Interest. Beyond his work in opinion journalism, Dowd has served as an adjunct professor and university lecturer; congressional aide; and administrator, researcher and writer at leading think tanks, including the Hudson Institute, Sagamore Institute and Fraser Institute. An award-winning writer, Dowd has been interviewed by Fox News Channel, Cox News Service, The Washington Times, The National Post, the Australian Broadcasting Corporation and numerous radio programs across North America. In addition, his work has been quoted by and/or reprinted in The Guardian, CBS News, BBC News and the Council on Foreign Relations. Dowd holds degrees from Butler University and Indiana University. Follow him at twitter.com/alanwdowd.

ASCF News

Scott Tilley is a Senior Fellow at the American Security Council Foundation, where he writes the “Technical Power” column, focusing on the societal and national security implications of advanced technology in cybersecurity, space, and foreign relations.

He is an emeritus professor at the Florida Institute of Technology. Previously, he was with the University of California, Riverside, Carnegie Mellon University’s Software Engineering Institute, and IBM. His research and teaching were in the areas of computer science, software & systems engineering, educational technology, the design of communication, and business information systems.

He is president and founder of the Center for Technology & Society, president and co-founder of Big Data Florida, past president of INCOSE Space Coast, and a Space Coast Writers’ Guild Fellow.

He has authored over 150 academic papers and has published 28 books (technical and non-technical), most recently Systems Analysis & Design (Cengage, 2020), SPACE (Anthology Alliance, 2019), and Technical Justice (CTS Press, 2019). He wrote the “Technology Today” column for FLORIDA TODAY from 2010 to 2018.

He is a popular public speaker, having delivered numerous keynote presentations and “Tech Talks” for a general audience. Recent examples include the role of big data in the space program, a four-part series on machine learning, and a four-part series on fake news.

He holds a Ph.D. in computer science from the University of Victoria (1995).

Contact him at stilley@cts.today.

Garmin restores services following ransomware attack as blame is pointed at Evil Corp

Wednesday, July 29, 2020

Categories: ASCF News Emerging Threats Cyber Security

Comments: 0

Services at GPS and wearables company Garmin Ltd. are in the process of being restored following a ransomware attack last week, with the blame for the attack pointed at the hacking group Evil Corp.

The attack, confirmed by the company as a “cyberattack that encrypted some of our systems July 23,” is described as causing various services “including website functions, customer support, customer-facing applications and company communications” to be disabled. Garmin claims there’s no indication that any customer data, including payment information, was accessed, lost or stolen.

The company said affected systems are in the process of being restored, promising a return to normal operations over the next few days. Although its website and consumer-facing services appear to have been restored, The Register reported that its aviation services were still lagging.

The significance of Garmin’s services to the aviation sector are huge. “Pilots have expressed that since the event occurred, they’ve been unable to download updates to Garmin’s navigation database onto their Garmin navigational systems,” Curtis Simpson, chief information security officer at “internet of things” security firm Armis Inc. told SiliconANGLE. “The FAA requires that all pilots are running the latest version of the database.”

As a result, he said, “aviation customers that rely on their flight planning services would have also experienced delays as a result of needing to execute slower backup processes designed to manage flight plans in case of system/service failures. Though the risk to human life would have been limited as a result of the airline industry’s well-established disaster recovery plans and backup procedures to ensure that critical services could be maintained, this event would have further impacted an industry that has been very publicly affected by the current pandemic.”

At the time of the attack, it was reported that WastedLocker, a form of ransomware linked to Evil Corp, was used in the attack. BleepingComputer reported Friday that according to its sources at Garmin, this was the case and a $10 million ransomware was demanded. Further, the report claimed that the ransomware used a unique customer extension, .garminwasted, on encrypted files suggesting that the attack on Garmin was targeted.

The only possible good news for Garmin is that Evil Corp is not known to sell company details. “Unlike other actors that have started releasing compromised data online and/or selling such data to the highest bidder on the dark web, Evil Corp has not been taking such actions when affected companies fail to pay ransoms,” Simpson said. “Rather, their targeted approach has involved compromising employee accounts, systematically assessing security capabilities and exposures and then disabling such capabilities where possible, such as disabling malware protection, and exploiting vulnerabilities to deliver and widely propagate the ransomware attack through the environment.”

Photo and Link: https://siliconangle.com/2020/07/27/garmin-restores-services-following-ransomware-attack-blame-pointed-evil-corp/

Comments RSS feed for comments on this page

There are no comments yet. Be the first to add a comment by using the form below.

Search