News

  • All
  • CCS News
  • Press Highlights

Will the Trump Administration Protect Hard-Won Progress with China on Cybersecurity? Featuring Robert Silvers

March 22, 2017

Lawfare-CCS

As Presidents Trump and Xi prepare for their first meeting next month at Mar-a-Lago, most early attention has centered on tension points involving Taiwan policy, the South China Sea, North Korea and trade. But another U.S.-China issue hangs in the balance: cybersecurity.

Tandon Team Develops Software to Combat Child Exploitation

March 20, 2017

WSN-CCS

A team of engineers at NYU Tandon, in partnership with Griffeye — a digital intelligence technology company — is developing a new software that will help law enforcement combat the increasingly prevalent issue of child exploitation.

Zachary Goldman on the US indictment of Russians allegedly behind Yahoo hack

March 17, 2017

NYU-Law-CCS

NYU Center for Cybersecurity co-founder Zachary K. Goldman discusses the significance and consequences of the recent indictment of the Russians behind the Yahoo hacks. “This indictment is part of a broader sustained effort on the part of the US government to deter Russia from committing cyberattacks by prosecuting Russian cybercriminals, imposing sanctions, and taking other measures like expelling Russian diplomats and spies,” Goldman argues.

3D Printing Has an Urgent Need for Cybersecurity

March 17, 2017

… According to a new paper, “Manufacturing and Security Challenges in 3D Printing”, written by researchers at New York University’s Tandon School of Engineering … 3D printing carries cybersecurity vulnerabilities that can lead to potentially dangerous, undetectable defects as well as opening the door for counterfeit products. Nikhil Gupta, an associate professor of mechanical and aerospace engineering at NYU Tandon, and one of the co-authors of the paper, told Design News that the cybersecurity risks that come with AM are far more significant that common threats we hear about today.

Researchers Race To Develop Software To Prevent Car Hacking (audio – featuring Prof. Justin Cappos at 1:19)

March 17, 2017

Modern cars have between 50 and 100 electronic control units, or computers, to run everything from the overhead dome light to the automatic transmission. Many of the computers are networked together but made by different vendors, which makes them easier to hack. Now, researchers backed by the Department of Homeland Security are looking for ways to protect cars from hacking.

New Forensic Tool Could Add Filter to Child Porn Scans

March 16, 2017

The staggering amount of data involved in searching for child pornography is a serious hurdle in hunting down pedophile rings. … A new set of filters improving the ability to comb through terabytes of data and hundreds of thousands of hours of video is now under development by computer scientists at New York University. The machine-learning techniques focus on picking out nudity—and identifying the physical features of children, said Nasir Memon, the NYU [Tandon] professor of computer science and engineering leading the work.

New Forensics Tools Will Speed the Identification and Rescue of Children Pictured in Child Sexual Exploitation Material

March 16, 2017

Researchers at the New York University Tandon School of Engineering and the digital intelligence tech company Griffeye have begun building a sophisticated suite of tools to be provided pro bono to law enforcement officials seeking to identify children in child sexual exploitation material (sometimes referred to as child pornography) and rescuing victims. … Professor of Computer Science and Engineering Nasir Memon leads the software development along with Griffeye Director Johann Hofmann.

NYU Tandon Paper on Cyber Risks of 3D Printing is Springer’s Most-Read Engineering Research of 2016

March 15, 2017

The publishing company Springer has more than 245 engineering journals in its portfolio … when editors took stock of the works that had been the most cited, downloaded, and shared in 2016, it was an article from JOM, The Journal of the Minerals, Metals & Materials Society that stood out at number one in the category of Engineering. That article, “Manufacturing and Security Challenges in 3D Printing,” was written by a team of [NYU] Tandon researchers [including] Nikhil Gupta, noted materials expert and an associate professor of mechanical engineering; lead author Steven Eric Zeltmann, a graduate student in mechanical engineering; and Ramesh Karri, professor of electrical and computer engineering.

Law Enforcement Agencies to Receive Free Access to NYU Developed Solution Combating Child Exploitation

March 14, 2017

Researchers at the New York University Tandon School of Engineering and the digital intelligence tech company Griffeye have begun building a sophisticated suite of tools to be provided pro bono to law enforcement officials seeking to identify children in child sexual exploitation material (sometimes referred to as child pornography) and rescuing victims….Professor of Computer Science and Engineering Nasir Memon leads the software development along with Griffeye Director Johann Hofmann.

Podcast: What to expect from Trump on cybersecurity

March 13, 2017

CS-Monitor-CCS

Distinguished Senior Fellow Lisa O. Monaco is featured on the Cybersecurity Podcast from Passcode, commenting on the future of cybersecurity in the new Presidential administration.

The 42 Words You Can Never Say in Emails to the D.C. Government

March 10, 2017

WP_Featured

The District’s email system, it turns out, has a lot more verboten words than that: 42. A test email from The Post with one of the offending terms to a dc.gov email address brought a bounceback notice. … Justin Cappos, an assistant professor of systems and security at New York University [Tandon School of Engineering], said the District’s approach to spam “isn’t surprising.” The only problem: Bounceback messages might help spammers.

Fox 5 Report: WikiLeaks Revelation of CIA Documents and Personal Device Vulnerabilities, Featuring Professor Justin Cappos (at 3.14)

March 9, 2017

Fox-5-CCS

Justin Cappos speaks with Ernie Anastos, news anchor for Fox 5 News about CIA documents revealed by WikiLeaks, and vulnerabilities of consumer devices. “It’s concerning to me that there is this big warehouse of information on weaknesses that were not disclosed to the vendors of these products, that is now available to hackers and people anywhere,” said Cappos.

WikiLeaks to Help Shield Tech Firms From CIA’s Hacking Tools, Featuring Professor Justin Cappos (video)

March 9, 2017

This could be the largest breach of U.S. intelligence in recent history: thousands of documents posted by WikiLeaks that it claims were stolen from the CIA revealing the agency’s playbook for hacking.

WikiLeaks Says it Will Work with Tech Firms to Defeat CIA Hacking

March 9, 2017

LAT

WikiLeaks will work with technology companies to help defend them against the CIA’s hacking tools, WikiLeaks founder Julian Assange said. … Justin Cappos, a computer security professor in New York University’s Tandon School of Engineering, said any group that had this information first — whether it was WikiLeaks or a government agency — should have worked to disclose it to tech companies before making it public. “Now we’re in a position where a bunch of companies are scrambling to put in fixes because now their users are at risk,” he said.

CCS Announces Call for New Class of NYU Cyber Scholar and The Inaugural Latham & Watkins Award in Technology and Law

March 8, 2017

The NYU Center for Cybersecurity, a collaboration among NYU School of Law, the NYU Tandon School of Engineering, and other NYU schools, is soliciting applications for two interdisciplinary scholarship programs for students passionate about cybersecurity.

Students will aparticipate in weekly cohort meetings with students focusing on cybersecurity from other NYU schools and engage in a substantial research project or construction of a technical tool. The programs are designed so that lawyers may better understand the technological aspects of information security, and the privacy and civil liberties concerns that surround the field. Law students selected for the programs will be obligated to enroll in technical cybersecurity courses at NYU Tandon School of Engineering that are consistent with their academic program. The programs are designed so that lawyers, social scientists, engineers, and business executives may better understand the technological aspects of information security, and the privacy and civil liberties concerns that surround the field.

Students will enter the programs in Fall 2017 and will earn a partial scholarship for each year that they are a part of the program (students will be admitted for one year, potentially renewable for one additional year).

The NYU Cyber Scholarship had its inaugural cohort last year. Students who are selected for this prestigious scholarship program will join a cohort of peers from across the University, including the Tandon School of Engineering, the Steinhardt School of Culture, Education, and Human Development, the Courant Institute of Mathematical Sciences, and other schools as they develop an interdisciplinary understanding of cybersecurity issues that integrates technical and non-technical disciplines. The Cyber Scholars program is designed to train a new generation of cybersecurity professionals who will enter either the public or private sectors.

The Latham & Watkins Award in Technology and Law is a new program that will welcome its inaugural student scholar this year. This scholarship seeks to train a new generation of technology lawyers who are not only equipped to analyze the most complex technology law and policy issues, but also students who have mastered the technical understandings of the discipline. The student selected for this award must demonstrate a passion for technology and cybersecurity law and an interest in the interdisciplinary aspects of the subject.

Application Requirements: Applicants must submit a resume, transcript, and cover letter to CCS@nyu.edu by 5:30 p.m. on Monday, March 27, 2017 with “Cybersecurity Scholarship Application” in the subject line. Eligible students must be in their first or second year of law school or in their first year of a masters or PhD program that is a minimum of two years in duration. Law students who apply will be automatically considered for both scholarships.

If you have questions, please contact CCS@nyu.edu.

Fox 5 Report: WikiLeaks Publishes 1000s of CIA Cyber-Espionage Documents, Featuring Professor Justin Cappos (video)

March 7, 2017

Fox-5-CCS

WikiLeaks has published thousands of documents that it says come from the CIA’s Center for Cyber Intelligence, a dramatic release that appears to give an eye-opening look at the intimate details of the agency’s cyberespionage effort.

Zachary K. Goldman discusses United States v. Jay Michaud and cyber vulnerabilities

March 6, 2017

Gizmodo-CCS

In Gizmodo, Zachary K. Goldman comments on the latest developments in United States v. Jay Michaud. “This doesn’t mean that the FBI’s investigation was unjust or unjustified…It’s the exact opposite. The FBI is placing paramount importance on preserving the ability to use this technique in the future.”

Donald Trump’s allegations: how wiretap warrants work

March 6, 2017

FT-CCS

NYU Center for Cybersecurity Distinguished Fellow Raj De comments on the process behind a FISA warrant, which has been drawn into the spotlight after Donald Trump’s charge that his presidential campaign was illegally wiretapped.

Renters and Sellers Beware of Scammers

March 3, 2017

If you are trying to sell your home, don’t be surprised if someone comes knocking at your door and asks if it’s for rent… That’s because scammers are stealing house for sale listings and putting them up on Craigslist as rentals. (Article based on research by Professor Damon McCoy)

Vice President Mike Pence used an AOL email account as governor – and was hacked

March 3, 2017

Vice President Mike Pence used a private email account that was later compromised while serving as governor of Indiana, his office confirmed on Thursday…”The fact that these emails are stored in a private AOL account is crazy to me,” Justin Cappos, a computer security professor at New York University’s Tandon School of Engineering, told Indy Star. “This account was used to handle these messages that are so sensitive they can’t be turned over in a records request.”

“The Cybersecurity Dilemma” by Ben Buchanan

March 2, 2017

The Center for Cybersecurity was pleased to host Ben Buchanan, the author of “The Cybersecurity Dilemma: Hacking, Trust, and Fear Between Nations” on March 2 for an in-depth discussion of his new book. “The Cybersecurity Dilemma” illuminates some of the strategic dynamics shaping the international relations of cybersecurity.  He focuses on how cyber capabilities among Russia, China, the United States, and others can stabilize or destabilize a precarious global order.We thank Ben for coming and previewing his book’s compelling argument.

Mike Pence Used His AOL Email For Official Business as Indiana’s Governor—And It Got Hacked

March 2, 2017

Vice President Mike Pence routinely used a private email address to conduct political affairs as governor of Indiana, according to the Indianapolis Star….“It’s one thing to have an AOL account and use it to send birthday cards to grandkids,’ said Justin Cappos, a computer security professor at New York University’s Tandon School of Engineering. ‘But it’s another thing to use it to send and receive messages that are sensitive and could negatively impact people if that information is public.”

The World’s Biggest Cyber Security Games Expand to Europe

March 1, 2017

Tandon

The world’s largest student-run set of cyber security games, founded 14 years ago by the New York University Tandon School of Engineering, will expand this year to Europe, where it will be hosted by Grenoble INP – Esisar. Based in Valence, France, Esisar is one of six engineering schools of the Grenoble Institute of Technology (Grenoble INP, located in Grenoble).

The latest hot start-ups to emerge from Israel’s cybersecurity war machine

February 28, 2017

CNBC-CCS

Senior Fellow Judi Germano discusses one of the most active and successful markets for cybersecurity startups: Israel.

Innovative Events and Training Reshape Cybersecurity Education

February 24, 2017

When Nasir Memon, a computer science and engineering professor at New York University, was first starting his cybersecurity program, he wanted to offer more hands-on experiences for his students. “I always thought cybersecurity was not a topic you talk about, but where you learn by doing things,” says Memon. So he organized a cybersecurity awareness event that involved a team competition — with the goal of solving security problems.

Pod Save the World with Lisa Monaco

February 22, 2017

Pod-CCS

Distinguished Senior Fellow Lisa Monaco, President Obama’s former Homeland Security and Chief Counterterrorism Advisor, talks with Tommy Vietor about terrorism, encryption, cybersecurity, the Boston bombings, Trump’s dysfunctional national security team and more.

NYU’s New Joint Degree in STEM and Law

February 21, 2017

Despite NYU’s reputation for its decentralized school structure, the university is quickly mastering the art of inter-school collaboration. The Tandon School of Engineering and NYU Law announced that they are working together on a new master’s program in Cybersecurity Risk and Strategy, focussing on an interdisciplinary education that prepares students to address cybersecurity challenges.

What Can We Do About Donald Trump’s Unsecured Smartphone?

February 21, 2017

Gizmodo-CCS

Zachary K. Goldman discusses the ongoing cybersecurity implications of Donald Trump use of an unsecured smartphone, and why this challenge is so difficult to ameliorate.

Trump Team Sounding Out Tech Firms Ahead of Delayed Cyber Order

February 18, 2017

Bloomberg-politics-CCS

Distinguished Senior Fellow Lisa O. Monaco comments on Trump’s cybersecurity strategy and the potential for continuation from the Obama administration.

Springer’s Most-Read Engineering Paper of 2016? Research on 3D Printing’s Security Flaws

February 17, 2017

Technical.ly_Featured

A research paper on the security vulnerabilities of 3D printing rose to be the most-read engineering paper of 2016 at Springer Publishing, one of the country’s major publishing houses, NYU Tandon announced last week. … The paper, Manufacturing and Security Challenges in 3D Printing, was written by Tandon researchers Nikhil Gupta, Steven Eric Zeltmann, Ramesh Karri, and others.

Obama officials: There’s hope for cybersecurity under Trump

February 17, 2017

CS-Monitor-CCS

“Although Mr. Trump hasn’t offered policy specifics, some former Obama administration officials said a draft executive order on cybersecurity, which has circulated in Washington, could offer welcome improvements on the technology front. In fact, according to former White House Homeland Security Adviser Lisa Monaco, much of what the Trump administration has floated appears to borrow directly from the Obama playbook on cybersecurity.”

Automotive cyber security: Keeping hackers out of cars

February 17, 2017

… “Attacks will get easier and more profitable unless we take steps now to make to make it harder,” Justin Cappos tells me as he explains a new cyber security program called Uptane, designed to identify and kill vehicle software bugs before the bad guys can exploit them. Cappos is an assistant professor of systems and security at New York University’s Tandon School of Engineering.

Distinguished Fellow Randal Milch to speak on Designing the Future of Cybersecurity

February 16, 2017

On March 17, 2017, Center for Cybersecurity Distinguished Fellow Randal S. Milch will be speaking “Cybersecurity: The Leadership Imperative,” held by The Conference Board. He will discuss the best approaches in governance and risk mitigation to position companies to confront challenges and act on opportunities on cybersecurity.

For more information and to register for this event, click here.

 

New Threats Require New Responses: NYU Announces an MS in Cybersecurity Risk and Strategy Program for Executives

February 14, 2017

Tandon

New York University is announcing the establishment of an MS in Cybersecurity Risk and Strategy Program for executives (MS CRS). Offered jointly by NYU School of Law and NYU Tandon School of Engineering, the one-year program will not simply confer a new degree, but a new category of degree — one built around the interdisciplinary training and perspective needed to address a new category of threat.

A New Master’s Degree for a New Kind of Professional

February 14, 2017

Tandon

…NYU Tandon School of Engineering and the NYU School of Law have teamed up to offer a new master’s degree program built around the interdisciplinary training and perspective needed to address the new threats facing increasingly tech-reliant companies.

NYU’s law and engineering schools announce new MS in Cybersecurity Risk and Strategy Program for executives

February 14, 2017

NYU School of Law and NYU Tandon School of Engineering have announced the establishment of a Master of Science in Cybersecurity Risk and Strategy Program for executives (MS CRS). Offered jointly by the two schools, the one-year program will not simply confer a new degree, but a new category of degree—one built around the interdisciplinary training and perspective needed to address a new category of threat. Read more.

A Visit From Microsoft CEO Satya Nadella

February 10, 2017

Tandon

… Before addressing the students, Nadella met with Tandon’s dean, Katepalli Sreenivasan; Stern’s dean, Peter Blair Henry; Mrs. Tandon; and a select group of professors (Justin Cappos, Rumi Chunara, Luke DuBois, Siddharth Garg, and Vittoria Flamini from the [Tandon] School of Engineering…

Wanted: White hat hackers to break new automotive software updater code

February 9, 2017

TechRepublic_Featured

… “Although widespread attacks are still difficult and expensive, they lie within the capabilities of nation-state cyber warriors, and it is time to begin securing the infrastructure, particularly as automotive electronics increase,” states Professor Justin Cappos of NYU’s Tandon School of Engineering.

NYU Tandon Paper on Cyber Risks of 3D Printing is Springer’s Most-Read Engineering Research of 2016

February 7, 2017

Tandon

That article, “Manufacturing and Security Challenges in 3D Printing,” was written by a team of Tandon researchers…Ramesh Karri, professor of electrical and computer engineering; Michail Maniatakos, professor of electrical and computer engineering at NYU Abu Dhabi…

Proportional response to cyber attacks by foreign governments remains an unclear challenge

February 6, 2017

PRI-CCS

Zachary K. Goldman discusses why it’s challenging to decide what an appropriate response would look like to a sophisticated cyber attack by a foreign government, and the future of cyber strategy.

FBI Official: Feds Can’t Compete With Top Tech Companies for Cybersecurity Analysts

February 2, 2017

NYLJ-CCS

The United States has a shortage of cybersecurity analysts qualified to prevent cyberattacks that is contributing to the vulnerability of the nation’s computer networks, an FBI official said Wednesday…Professor Nasir Memon of the New York University Tandon School of Engineering said a good cybersecurity analyst needs to know not just the technology, but also human behavior.

Zachary K. Goldman to speak on Regulation Rollback? Realities and Implications of Unraveling Regulations

January 31, 2017

RANE-CCS

On February 16, Zachary K. Goldman will speak on the future of regulation governing cybersecurity in the private sector under the new Presidential administration. See more details and register at https://app.ranenetwork.com/events/.

A Future Car May Be Protected From Hacking By Software Developed in San Antonio (audio)

January 26, 2017

Someone looking to hack into your car probably isn’t trying to steal from your bank account…but the results could be far more damaging. … ‘If you can exploit an update system, it is like the golden entryway,’ says NYU Professor of Engineering Justin Cappos. Mott, Cappos and their research teams, which includes NYU’s Tandon School of Engineering, the University of Michigan and SwRI, are asking white hat –or ethical — hackers to tear their anti-hacking protection apart and find vulnerabilities.

Randal Milch to Join NYTECH Panel on Data Security

January 23, 2017

“Data Security: Protecting Your Customers and Your Company In Dangerous Times”

Date: Tuesday, January 24th

Time: 6:00 PM

Location: 1375 Broadway, 23rd Floor

 

 

Automotive ECU Updates: Keeping the Hackers Out

January 23, 2017

We’ve already seen software hacks in vehicles, as Junko Yoshida reported in Auto Security Demands All-Over Answer. Recognizing the problem, a group of researchers, students, and developers from New York University, the University of Michigan, and the Southwest Research Institute have developed a software architecture designed to combat intrusions during ECU firmware updates.

Legal Code: In new seminar, law and engineering students solve cybersecurity challenges requiring both legal and technical know-how

January 23, 2017

NYU-Law-CCS

In response to this changing security landscape, the Law School, in collaboration with NYU Tandon School of Engineering and other NYU schools and departments, launched a pioneered interdisciplinary research institute, the NYU Center for Cybersecurity (CCS). One of the first institutes of its kind at an academic institution, CCS allows NYU Law scholars to conduct cybersecurity research with computer scientists.

Of Presidents, Policies, and Tech

January 20, 2017

a16z-CCS

How to think about tech policy and top-of-mind issues for the tech industry, given a new president? From what agencies matter for different tech domains — e.g., autonomous cars, drones, fintech, healthcare — to recent staffing moves, the a16z Policy and Regulatory Affairs team shares their views in this episode of the podcast.

Automotive Software Developers Call on Hackers to Find its Flaws

January 20, 2017

A consortium of US researchers has announced the development of a universal, free, and open-source framework to protect wireless software updates in vehicles. The team issued a challenge to security experts everywhere to try to find vulnerabilities before it is adopted by the automotive industry.

White hackers to seek errors in open-source cybersecurity framework for cars

January 19, 2017

Researchers from NYU Tandon, the University of Michigan Transport Research Institute (UMTRI), and the Southwest Research Institute (SwRI) have launched a challenge to all white hackers and security experts: find vulnerabilities before implementation of Uptane, the most recent open source cybersecurity framework for the automotive industry.

NYU Tandon Prof Unveils Homeland Security-Funded Framework for Software Security in Cars

January 19, 2017

Technical.ly_Featured

…Cappos, along with collaborators from the University of Michigan Transportation Research Institute and the Southwest Research Institute, created a software security update framework for automobiles called Uptane, unveiled last week to reporters at an event at NYU Tandon.

Uptane Will Protect Your Connected Car From Hackers

January 19, 2017

Forbes-CCS

New York University’s Tandon School of Engineering, the Southwest Research Institute, and the University of Michigan Transport Research Institute are working on a more modern, secure method for sending updates to vehicles. They call it Uptane, and they say that it “counters a comprehensive array of security attacks’ and that can even cope with being partially compromised.

FacebookLive Demo of Uptane with Prof. Justin Cappos

January 18, 2017

New technology is making cars more connected than ever – and more hack-able. NYU Tandon Professor Justin Cappos does a live demo of the framework his team has developed to help prevent such security attacks.

White hat hackers called to poke holes in open source connected car security platform

January 18, 2017

SC_Magazine_Logo_Featured

The New York University Tandon School of Engineering, University of Michigan Transportation Research Institute and the Southwest Research Institute developed a cybersecurity framework called Uptane, for the automotive industry to protect wireless software updates in connected vehicles.

Are software updates key to stopping criminal car hacks?

January 18, 2017

Unlike many cybersecurity experts, Justin Cappos doesn’t lay awake at night worrying about data breaches. Instead, as today’s automobiles roll off assembly lines with dozens of embedded computers on board, the New York University computer science professor worries that malicious hackers may become more adept at remotely hijacking cars as they speed down the road….

Call Issued to White Hat Hackers: Find the Flaws in New Automotive Software Updater

January 18, 2017

Tandon

A consortium of researchers today announced the development of a universal, free, and open-source framework to protect wireless software updates in vehicles. The team issued a challenge to security experts everywhere to try to find vulnerabilities before it is adopted by the automotive industry.

Open source cybersecurity framework for the automotive industry

January 18, 2017

A consortium of researchers announced the development of a universal, free, and open source framework to protect wireless software updates in vehicles. The team issued a challenge to security experts everywhere to try to find vulnerabilities before it is adopted by the automotive industry.

WhatsApp’s privacy woes show how messaging app tries to balance security and ease of use

January 13, 2017

LATimes_Featured

WhatsApp has become popular worldwide thanks to its powerful encryption technology. But making this type of secure messaging approachable and user-friendly can pose some [privacy] problems.… Justin Cappos, a professor in New York University’s [NYU Tandon School of Engineering] computer science and engineering department, said the issue boils down to a user interface problem…

How Did the Russian Hacks Happen? (audio)

January 9, 2017

Bob Mitchell from WWL AM 870/FM 105.3 talks to Justin Cappos, Assistant Professor in the Computer Science and Engineering Department at NYU, about the Russian hacks (Interview at 1:40).

Business Briefs: SAP India Embraces ‘1BLives’ Initiative

January 6, 2017

Following a successful international cooperation that attracted more than 15,000 students, faculty, professionals and supporters to the world’s largest student-run cybersecurity games, the New York University Tandon School of Engineering and IIT Kanpur have signed a seven-year agreement to deepen their exchange in information security research and academic…

Inside Cyber Security Awareness Week

January 6, 2017

Shortly after Election Day, before the interference of Russian hackers became front-page news, a group of thirty-one high-school students gathered at N.Y.U.’s Tandon School of Engineering, in Brooklyn, for Cyber Security Awareness Week. Their mission: to solve a murder mystery involving a fictional Presidential race by analyzing digital “evidence” of security breaches.

How Scared Should I Be of the Internet of Things?

January 4, 2017

…The proliferation of smart appliances may have drawbacks…According to Justin Cappos, computer scientist at New York University’s Tandon School of Engineering, potentially hackable IOT devices are an untamed frontier.

The 2017 Outlook for U.S.-Russian ties

January 2, 2017

tbs-efm-CCS

Zachary K. Goldman comments on the future of bilateral U.S.-Russian relations in the aftermath of sanctions levied as a result of cyberattacks in the U.S.

Trump praises Putin over US sanctions – a move that puts him at odds with GOP

December 30, 2016

Guardian-CCS

Zachary K. Goldman comments on the sanctions levied as a result of the US intelligence consensus that Russia ordered cyber-attacks on Democratic party targets as a way to influence the 2016 election in his favor.

Obama administration is close to announcing measures to punish Russia for election interference

December 27, 2016

WP_Featured

Zachary K. Goldman comments on the upcoming series of measures to punish Russia for its interference in the 2016 presidential election, including economic sanctions and diplomatic censure, according to U.S. officials.

The World’s Best Security Engineers are Working on Flappy Bird

December 27, 2016

… At a hacking competition at New York University [Tandon School of Engineering] this year, one could find a lot of students who would agree with that sentiment. One of the annual competitive formats during NYU’s Cyber Security Awareness Week is known as “Capture the Flag,” or CTF, and it attracts the kinds of students who could help fill the computer security talent gap.

NYU students win award for solution to safeguard electronic voting machines

December 15, 2016

When electronic voting machines came into use in the early 1990s, they made voting cheaper, easier, and more accessible to the electorate, but few programmers gave thought to the issue of cybersecurity…New York University students Kevin Kirby, Anthony Masi, and Fernando Maymi took home first place in the challenge with their system, Votebook, which is secure, scalable, and consistent with current voter behavior and expectations of privacy.

Is This Blockchain Voting System By NYU Devs the Solution to Russia Election Meddling?

December 12, 2016

Hacked-CCS

New York University students Kevin Kirby, Anthony Masi, and Fernando Maymi [Masi and Maymi are cybersecurity graduate students at NYU Tandon School of Engineering] won first place in the contest with Votebook, a “secure, scalable and consistent with current voter behavior and expectations of privacy.”

NYU Cybersecurity Students Devise a New Way to Safeguard Electronic Voting Systems

December 9, 2016

Tandon

In September 2016 the internationally recognized computer protection firm Kaspersky Lab, in partnership with The Economist, mounted a challenge inviting teams from universities around the world to design a system for digital voting that addressed such issues as ensuring privacy and validating contested results.

New York University students Kevin Kirby, Anthony Masi, and Fernando Maymi took home first place in the challenge with their system, Votebook, which is secure, scalable, and consistent with current voter behavior and expectations of privacy.

ASPIRE scholars win first place in 2016 Cyber Security Case Study Competition

December 8, 2016

The Center for Cybersecurity is thrilled to announce that our scholars Kevin Kirby, Anthony Masi, and Fernando Maymi won the first place prize in the 2016 Lab Cyber Security Case Study competition, hosted by The Economist. Their winning proposal, Votebook, is a model for blockchain-supported elections that is secure, scalable, and consistent with current voter behavior and expectations of privacy. View their video proposal here, and their full paper here.

Can Blockchain Technology Secure Digital Voting Systems?

December 8, 2016

Yahoo-Finance-CCS

The Economist‘s Cybersecurity Case Study Competition awarded the grand prize to New York University, second place was awarded to University of Maryland, College Park and Newcastle University received third place. … “I want to wish congratulations to New York University for their victory in the 2016 Cybersecurity Case Study Competition,” said U.S. Congressman Jerrold Nadler (D-NY).

Leading University Research Centers in the U.S. and India Announce Cybersecurity Collaboration

December 6, 2016

Tandon

Following a highly successful international cooperation that attracted more than 15,000 students, faculty, professionals, and supporters to the world’s largest student-run cybersecurity games, the New York University Tandon School of Engineering and the Indian Institute of Technology, Kanpur have signed a seven-year agreement to deepen their exchange in information security research and academics.

IBM Watson Steps Into Real-World Cybersecurity

December 6, 2016

Infoworld-CCS

IBM has launched the Watson for Cyber Security beta program to encourage companies to include Watson in their current security environments. The problem with unstructured data is knowing when one piece of information is more valuable than another and which sources of information are more reliable. But the beauty of Watson is that ‘crucial nuggets of knowledge filter up,’ in a form security professionals can use, Nasir Memon, professor of computer science and engineering at NYU Tandon School of Engineering, said in a recent InfoWorld video interview about cognitive computing and Watson for Cybersecurity.

Online Banking Privacy Hack: Use 2 Browsers to Increase Your Security

December 1, 2016

Mic-CCS

Online shopping and banking is efficient and convenient, but it just takes one security breach for tons of personal information to get in the wrong hands. … Using a second browser dedicated exclusively to online shopping and banking can offer some added security from specific types of attacks, according to Justin Cappos, a computer security professor at NYU’s Tandon School of Engineering. ‘Having the separate browser still doesn’t protect you from things like key loggers or malware that’s on your device,’ Cappos said.

Fox 5 Report On Hacking Smart Devices, Featuring Professor Justin Cappos (video)

December 1, 2016

Justin Cappos warns about the security risks inherent in smart devices such as mobile phones and connected appliances. “You have to ask yourself, is the risk worth the benefit,” he said.

WNYU Radio Interview with Professor Nasir Memon (audio)

November 15, 2016

Is your credit card ripe for the picking? Some say it is, after crooks finish hijacking a record breaking $4 billion in credit card fraud by the end of 2016. WNYU’s Devin Knight spoke with computer engineering and network security professor Nasir Memon [of NYU Tandon School of Engineering] about ways to protect your info.

How IBM’s Watson Will Change Cybersecurity

November 15, 2016

Infoworld-CCS

IBM captured our imaginations when it unveiled Watson, the artificial intelligence computer capable of playing—and winning—the “Jeopardy” game show. … “Generally we learn by examples,” says Nasir Memon, professor of computer science and engineering at NYU Tandon School of Engineering. “We get an algorithm and examples, and we learn when we are able to look at a problem and recognize it as similar to other incidents.”

World’s Largest Student Cyber Security Contest Names Winners

November 14, 2016

Tandon

Students from high schools through doctoral programs throughout North America, the Middle East, North Africa, and India competed in the final rounds of the world’s largest student-run security games, the 13th annual New York University Cyber Security Awareness Week (NYU CSAW), held November 12-14, 2016. For the first time in the history of NYU CSAW, the final round of contests expanded beyond NYU Tandon School of Engineering in Downtown Brooklyn to regional hubs at NYU Abu Dhabi – for finalists from North Africa and the Middle East – and the Indian Institute of Technology, Kanpur (IIT Kanpur).

Wanted: Smart Public Policy for Internet of Things Security

November 10, 2016

IEEE-Spectrum-CCS

Increasingly, the Internet of Things has become a weapon in hackers’ schemes…Now, experts in the U.S. are asking regulators to step in. Calls for public policy to improve device security have reached a fever pitch following a series of high-profile denial-of-service attacks leveraged in part by unsuspecting DVRs, routers, and webcams. In October, hackers flooded the Internet service company Dyn with traffic by assembling millions of IoT devices into a virtual botnet using a malicious program called Mirai.

Fox 5 Report About Email Security, Featuring Justin Cappos (Video)

November 3, 2016

fox5

Assistant Professor Justin Cappos of NYU Tandon speaks to reporters about email security.

See video from our “Women Leaders in Cybersecurity” conference

October 28, 2016

ICWICYBR17.2a-Women-Leaders-in-Cybersecurity-Website-Graphic_RELEASE

Footage from our day-long discussion of closing the gender gap in cybersecurity is now available. See more details about the event here.

6 Threats To Your Identity, From Cyber To The Existential

October 27, 2016

Forbes-CCS

Earlier this year I received a letter from the United States Office of Personnel Management, informing me that a “malicious cyber intrusion had been carried out against the U.S. Government.”…my Social Security number and other pieces of personal information were taken in the hack affecting 4.2 million government employees.

A massive cyberattack blocked your favorite websites; FBI and Homeland Security are investigating

October 21, 2016

LAT

The Department of Homeland Security and the FBI are investigating a massive cyberattack that stopped or slowed access to Twitter, Spotify, Amazon and other sites.…Hacking an email server or stealing user account information from a network is more targeted than a DDoS attack, which aims to cause widespread disruption, said Justin Cappos, a professor in the computer science and engineering department at NYU.

Yik Yak Users Not So Anonymous After All

October 20, 2016

Campus Technology

…Now users of mobile app Yik Yak face the ignominy of being truly discoverable. At least that’s what a research team at New York University’s Tandon School of Engineering suggests in a new paper… Keith Ross, a professor of computer science at Tandon and the dean of engineering and computer science at New York U’s Shanghai campus, worked with students and colleagues in New York and at East China Normal University on the experiment, which used a ‘fairly simple machine learning algorithm’ to localize yaks to within 300 feet. In one of the team’s experiments, the localization effort could pinpoint which college dorm was the source of the yak.

Ensuring Chip Integrity: Siddharth Garg on Securing the Electronic Supply Chain

October 20, 2016

IEEE

In today’s electronics industry, chips are designed by globally dispersed teams, outsourced for fabrication, packaging, and testing, and distributed via complex supply chains. In such a scenario, how can chip integrity be guaranteed against threats such as intellectual property (IP) theft, malicious modification, and counterfeiting? Siddharth Garg, assistant professor of electrical and computer engineering at New York University and one of Popular Science’s “Brilliant 10 of 2016,” discusses both foundry- and chip-level threats and defenses.

Hold that Yak: NYU Researchers Discover Clues for Identifying Yik Yak Users on College Campuses

October 19, 2016

Tandon

Experiments by researchers at the NYU Tandon School of Engineering and NYU Shanghai have successfully cracked the veil of anonymity in Yik Yak, an ostensibly anonymous social media application.

Does My Eye Deceive Me? Not With These Digital Forensics Tools

October 17, 2016

Tandon

The Internet is awash with images and videos that may hold national security and intelligence value, but the task of teasing out real images from  altered ones is formidable. Even off-the-shelf editing tools can trick digital forensics experts. Nasir Memon, professor of computer science and engineering at the New York University Tandon School of Engineering, has joined with two teams of faculty from universities around the world to design the ultimate digital forensics tools — technologies so advanced they’ll be able to catch the subtlest manipulations of still images and video, discerning not only whether media has been tampered with, but precisely how.

MasterCard Exec, Others Urge Flexible Cybersecurity Regime

October 14, 2016

Law 360

During a panel at a Women Leaders in Cybersecurity symposium hosted by New York University‘s Center of Cybersecurity, executives from MasterCard Inc. and Goldman Sachs Group Inc., as well as former government officials who are now in the private sector, explored the complex regulatory landscape that faces business when it comes to cybersecurity.

Winning High School Cyber Sleuths to Compete in Forensics Challenge at NYU Tandon, NYU Abu Dhabi

October 14, 2016

Tandon

More than 20 teams of high school students in the United States and the United Arab Emirates have won coveted slots to compete in the world’s largest set of student-led cybersecurity contests, the New York University Tandon School of Engineering’s annual Cyber Security Awareness Week (CSAW) games. For the first time, the final round of the High School Forensics Challenge (HSF) will be held simultaneously at NYU Tandon in Downtown Brooklyn and NYU Abu Dhabi.

Meet the IITians Who Have Made Their Way Into World’s Largest Hardware Hacking Competition Finals

October 13, 2016

unnamed

For the first time, IIT students from India are among seven teams to have sailed through to the finals of the oldest and largest hardware hacking competition in the world. They have won finalist slots in the ninth annual Embedded Security Challenge (ESC), a competition deemed to be one of the most difficult events at the New York University Tandon School of Engineering‘s ongoing annual Cyber Security Awareness Week [CSAW] Games for students… ‘The Embedded Security Challenge at CSAW is not just about academic bragging rights,” said the event founder and ?NYU Tandon Professor of Electrical and Computer Engineering Ramesh Karri.

Professor Memon Takes Part in Forum on Underrepresented Groups in Cybersecurity

October 13, 2016

Tandon

On October 4, the International Consortium of Minority Cybersecurity Professionals (ICMCP), in partnership with IBM, hosted an all-day forum on women and minorities in the field of cybersecurity, and included on the list of speakers was Professor of Computer Science and Engineering Nasir Memon, a seminal member of NYU’s multidisciplinary Center for Cybersecurity.

World’s Top Student Teams Take on Microchip Security at NYU and IIT Kanpur Cyber Security Awareness Week Games

October 12, 2016

Tandon

Elite teams from seven universities won finalist slots in the ninth annual Embedded Security Challenge (ESC). The oldest and largest hardware hacking competition in the world, ESC is also the most difficult event at New York University Tandon School of Engineering’s annual Cyber Security Awareness Week (CSAW) games for students.

Cybersecurity Team Makes NYU Tandon a Crucible for Microchip Security

October 11, 2016

Tandon

At NYU Tandon, the country’s first university research team for hardware security is probing the growing threat to the world’s microchips and devising ways to protect them.

N.S.A. Suspect Is a Hoarder. But a Leaker? Investigators Aren’t Sure.

October 6, 2016

NY_Times_Logo_Featured

On a half-dozen occasions in the last three years, top-secret information has leaked from the National Security Agency and appeared on the web. Government analysts concluded with alarm that the documents, including intercepted communications from Europe and Japan and the computer code for the N.S.A.’s hacking tools, had not come from the huge collection taken by Edward J. Snowden.

World’s Best Student Hackers Advance to Final Rounds of NYU Cyber Security Awareness Week Games

October 5, 2016

Tandon

Top Teams From India, the Middle East, North Africa, the United States, and Canada Win Slots to Compete at NYU Tandon, NYU Abu Dhabi, and the Indian Institute of Technology, Kanpur

Diversity, one key to solving cybersecurity job gap

October 5, 2016

SC_Magazine_Logo_Featured

The benefits of having a diverse cyber workforce were pounded home on October 4 by CISOs, government officials and academics during the IBM/International Consortium of Minority Cybersecurity Professionals (ICMCP) Town Hall.

10 Questions: Raj De’s career has taken him from 9/11 Commission to White House to NSA

October 1, 2016

ABA Journal small

Nearly 20 years ago, a young Harvard Law School student named Raj De sat in his mentor’s office and explained why he’d decided to bypass BigLaw for the Department of Justice.

The older lawyer understood completely. “You should always go where the action is,” he counseled.

De took this advice—and then some. Leadership roles at the DOJ? Check. 9/11 Commission? He was a part of it, serving as counsel and contributing to its historic final report. U.S. Senate? Check that off, too: De was counsel to the committee charged with drafting and implementing intelligence reform legislation.

Yahoo whodunnit: Mystery surrounds hackers behind massive breach

September 29, 2016

CNET_Logo_Featured

A week after Yahoo said it was subjected to the worst data breach in history, details about who nabbed info on 500 million email accounts remain sketchy.

11 Signs Your Computer Is at Risk of Being Hacked

September 27, 2016

Good_Housekeeping_Logo_Featured

You lock your house. You keep your wallet out of plain view. You’re responsible with credit cards. You should treat your computer with the same caution, but even the most accountable people can make mistakes that make them susceptible to cybercriminals.

The lesson about email safety we can learn from Hillary Clinton and Colin Powell

September 20, 2016

Vox_Logo_Featured

This election year may well be the year of the email controversy.

From Colin Powell’s emails to Hillary Clinton’s private server to the Democratic National Committee’s email leak to Donald Trump openly encouraging Russian hackers, it’s easy to see that even those with likely the tightest security measures in place are still victim to break-ins.

The Man Who Defends Hardware from Hackers: Siddharth Garg is One of the 10 Most Brilliant People of 2016

September 14, 2016

It might sound like the premise of a bad supervillain flick, but it’s all too feasible: Hackers can tweak a microchip so when a certain trigger occurs, it throws open the gates for attackers to commandeer—or destroy—the device in which that chip is embedded. All it takes is one saboteur at the factory, and you’ve got the kind of scenario no one (particularly the Department of Defense) wants to consider. What’s worse: After chip companies send their designs to manufacture, it’s almost impossible to tell if the final product has been tampered with.