The Jeep hack, methods to hack ATMs, and even hacks to a casino's fish tank provide stark evidence of the risks associated with the Internet of Things (IoT)....

March 31, 2019•By David Svoboda

In Secure Development

In June 2018, Federal authorities announced a significant coordinated effort to disrupt business email compromise (BEC) schemes that are designed to intercept and hijack wire transfers from businesses and individuals....

April 7, 2019•By Anne Connell

In Reverse Engineering for Malware Analysis

This third installment in our blog series on implementing DevOps in highly regulated environments (HREs), which is based upon a recently published paper, discusses the second step in a DevOps …

April 8, 2019•By Jose A. Morales

In DevSecOps

The CERT National Insider Threat Center (NITC) continues to transition its insider threat research to the public through its publications of the Common Sense Guide to Mitigating Insider Threats (CSG)....

April 8, 2019•By Michael C. Theis, CERT Insider Threat Center

In Insider Threat

It can be hard for developers of cybersecurity training to create realistic simulations and training exercises when trainees are operating in closed (often classified) environments with no ability to connect …

April 14, 2019•By Joseph Mayes

In Cyber Workforce Development

Software products are often used for two decades or more. Several researchers have shown the cost of maintenance and sustainment ranges between 40- and 80 percent of the total lifecycle …

April 21, 2019•By Robert Ferguson

Addressing the Challenges of Maturing an Insider Threat (Risk) ProgramOn May 10, 2019, the Software Engineering Institute's National Insider Threat Center (NITC) will host....

April 21, 2019•By Randall F. Trzeciak

In Insider Threat

To maintain a strategic advantage over its adversaries, the Department of Defense (DoD) must field new technologies rapidly....

April 28, 2019•By Nickolas Guertin, Douglas Schmidt (Vanderbilt University)

In Software Architecture

DoD technologies have traditionally relied on cyber-physical/software-intensive systems that are now widely available to all nations and non-state actors....

May 5, 2019•By Nickolas Guertin, Douglas Schmidt (Vanderbilt University)

In Software Architecture

If you participate in the development of software, the chances are good that you have experienced the consequences of technical debt....

May 12, 2019•By Ipek Ozkaya, Robert Nord

In Technical Debt