1, US Navy releases "Vision of Advantage in Cyberspace"
According to Blue Sea Star Think Tank on October 26, Chris Cleary, chief cyber advisor of the US Navy, issued the "Vision of Advantage in Cyberspace" for the first time officially proposed the 3S principle (i.e. security, survival, and strike), guiding the Navy to carry out various daily network confrontation activities and cyberspace activities in the event of crises and conflicts, seeking to build cyberspace advantages, and emphasizing that the 3S principle is the basis for maintaining sea control and allowing the Navy and Marine Corps to continue to fight in a network confrontation environment.
2, 2022 World Standard Day - National Data Security Standard Promotion Conference will be held on October 28
October 26, the Secretariat of the National Information Security Standards Committee will hold the "2022 World Standard Day - National Data Security Standards Promotion Conference". This publicity conference will invite experts from relevant fields to share the overview of national data security standardization, interpret 6 network platform services such as online shopping and instant messaging, and 4 national biometric identification data security standards such as face and voiceprints, and invite corporate representatives to share standard application practices. The meeting will be October 28, 2022.
3, registration for the 5th "Strong Net" Malfunction Defense International Elite Challenge is in progress
From October 17 to November 2, 2022, registration for the 5th "Strong Net" Malfunction Defense International Elite Challenge will be launched. This competition has innovatively opened up four major tracks. Based on the introduction of ADAS device testing in the fourth competition, the track is further refined into four items: "Internet track", "Internet of Vehicles", "Telecommunications Network track" and "Password Machine track", and encourages talent teams with technical expertise to play their strengths in this competition to compete.
4. Researchers disclosed that the security vulnerability in the SQLite database has existed for 22 years. According to foreign media reports on October 25, researchers disclosed the integer overflow vulnerability in the SQLite database library (CVE-2022-35737). The vulnerability was introduced during the October 2000 code change, a 22-year-old vulnerability that affected SQLite versions 1.0.12 to 3.39.1. If using billions of bytes in the string parameter of the C API may cause an array boundary overflow, the attacker successfully exploited the vulnerability to execute arbitrary code on the target system. When it was written (in the SQLite source code in 2000), the system was mostly 32-bit architecture, which may not be a vulnerability, the researchers said. Currently, the vulnerability has been fixed in version 3.39.2 released on July 21, 2022.
5, DARPA develops network agents for security testing and learning environments
0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 Cybersecurity protection teams will use a class of machine learning called reinforcement learning to automatically reduce vulnerabilities in the network.
6, Surfshark released a report on global data breach incidents in Q3 2022
According to foreign media reports on October 25, Surfshark released a report on global data breach incidents in Q3 2022. The report pointed out that a total of 108.9 million accounts were stolen in the third quarter of 2022, 70% higher than the previous quarter; the five countries and regions that were most affected by data breaches in Q3 were Russia, France, Indonesia, the United States and Spain; although Russia had the largest total leaks (22.3 million), France had the highest data breaches, with an average of 212 leaked accounts per 1,000 people; in the past decade, the United States was still the most attacked country.
