Our technical report provides an overview of the relevant parts of an ML lifecycle--selecting the right problem, the right data, and the right math and summarizing the model output for …

December 1, 2019 • By Jonathan Spring

In CERT/CC Vulnerabilities

Ransomware poses a growing threat to both businesses and government agencies. Though no strategy can fully eliminate these risks, this post provides recommendations....

October 11, 2019 • By David Tobar , Jason Fricke

In Situational Awareness

It can be hard for developers of cybersecurity training to create realistic simulations and training exercises when trainees are operating in closed (often classified) environments with no ability to connect …

April 14, 2019 • By Joseph Mayes

In Cyber Workforce Development

In June 2018, Federal authorities announced a significant coordinated effort to disrupt business email compromise (BEC) schemes that are designed to intercept and hijack wire transfers from businesses and individuals....

April 7, 2019 • By Anne Connell

In Reverse Engineering for Malware Analysis

The Jeep hack, methods to hack ATMs, and even hacks to a casino's fish tank provide stark evidence of the risks associated with the Internet of Things (IoT)....

March 31, 2019 • By David Svoboda

In Secure Development

While the Internet has enabled modernization in parts of the developing world, it has also introduced new cybersecurity challenges....

March 24, 2019 • By Vijay S. Sarvepalli

The Internet of Things (IoT) is insecure. The Jeep hack received a lot of publicity, and there are various ways to hack ATMs, with incidents occurring with increasing regularity....

February 10, 2019 • By David Svoboda

In Secure Development

This second installment in the blog post series on implementing DevOps in highly regulated environments (HREs), which is excerpted from a recently published paper, discusses the first step in a …

February 7, 2019 • By Jose A. Morales

In DevSecOps

Addressing cybersecurity for a complex system, especially for a cyber-physical system of systems (CPSoS), requires a strategic approach during the entire lifecycle of the system....

February 3, 2019 • By Nataliya Shevchenko

In Enterprise Risk and Resilience Management

The CERT Cyber Workforce Development Directorate conducts training in cyber operations for the DoD and other government customers as part of its commitment to strengthen the nation's cybersecurity workforce....

January 20, 2019 • By April Galyardt

In Artificial Intelligence Engineering