US Army's $12bn Mobile Internet Is Vulnerable

Uploaded on 2016-05-03 in NEWS-Cybersecurity News, INTELLIGENCE--USA, GOVERNMENT-Defence, FREE TO VIEW, TECHNOLOGY--Developments


A mobile Internet network used by the US Army in Iraq, Afghanistan and Africa contains cybersecurity vulnerabilities, the details about which have surfaced in combat testing.

The network, that costs $12bn (£8.3bn), is said to be the latest defense system to have vulnerabilities.

TWarfighter Information Network-Tactical (WIN-T) Increment 2 provides on-the-move network capability, a mobile infrastructure by employing military and commercial satellite connectivity and line-of-sight (terrestrial) radios and antennas to achieve end-to-end connectivity and dynamic networking operations. The network is deployed to 11 of the Army's combat brigades. Frank Kendall, chief of the Defense Department's acquisitions, approved the production in June.

The Army and contractor General Dynamics Corporation are currently working together to improve the systems and embed updates into the mobile networks that are scheduled to be deployed through 2028, states a Bloomberg report.

Paul Mehney, an Army spokesperson, noted in an email that Johns Hopkins University and the Army Research Laboratory who have conducted the assessment, "recommended both improvements to user training techniques and procedures and hardware and software enhancement to harden against cyber-threat".

In March, the US Government Accountability Office (GAO), in its annual review of major weapons programmes, said that Kendall directed an independent assessment of the mobile network in 2015 as "cybersecurity vulnerabilities reduced the program's operational capability and could incur growth cost and schedule delays if significant changes are necessary".

The GAO, although, did not disclose details about how to gain access to the system or how can it be attacked. Michael Gilmore, the Pentagon's director of operational testing said the vulnerability in the network poses a difficult challenge as it is "dependent upon the cyberdefence capabilities of all mission command systems".

Carol Smith, a spokeswoman for the Falls Church said, "General Dynamics Mission Systems is supporting the Army's efforts" to improve cybersecurity "to address the constantly changing threat environment."
IB Times: http://bit.ly/21bNqfn

« Fear This Man And His Hacking Empire
Disrupting ISIS Online In Africa »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Luxembourg Institute of Science & Technology (LIST)

Luxembourg Institute of Science & Technology (LIST)

LIST is a mission-driven Research and Technology Organisation. Areas of research include IT and aspects of IT security.

Havelsan

Havelsan

HAVELSAN is a leading technology company in Turkey developing indigenous systems for domestic and foreign military, public and private sector clients.

RUSCADASEC

RUSCADASEC

RUSCADASEC is an independent non-profit initiative on developing the open Russian-speaking international community of industrial cyber security/ICS/SCADA cyber security professionals.

Cybersecurity Manufacturing Innovation Institute (CyManII)

Cybersecurity Manufacturing Innovation Institute (CyManII)

CyManII was established to create economically viable, pervasive, and inconspicuous cybersecurity in American manufacturing to secure the digital supply chain and energy automation.

WidePoint

WidePoint

WidePoint Corporation is an innovative provider of Trusted Mobility Management (TM2) solutions.

Glocomms

Glocomms

Glocomms is a leading specialist recruitment agency for the tech sector, providing permanent, contract, and multi-hire recruitment from our global hubs in San Francisco, New York, London and Berlin.

MVP Tech

MVP Tech

MVP Tech designs and deploys next generation infrastructures where Security and Technology converge.

Anvilogic

Anvilogic

Anvilogic provides a unifying experience for security professionals aimed at providing improved visibility, enrichment, and context across hundreds of alerting datasets and security tools.

SpeQtral

SpeQtral

SpeQtral offers commercial space-based Quantum Key Distribution (QKD) founded on technology developed at the National University of Singapore.

Secrutiny

Secrutiny

Scrutiny's core services include Cyber Maturity, Cyber Risk Analyser, Cyber Controls, Incident Response, SOC, Cyber Recovery and Assurance Testing.

NetRise

NetRise

NetRise was founded as a direct result of the many shortcomings currently in the device security market, specifically targeting the firmware of devices.

Exiger

Exiger

Exiger is revolutionizing the way corporations, government agencies and banks navigate risk and compliance in their third-parties, supply chains and customers.

Bastazo

Bastazo

Bastazo provides tools for vulnerability and patch management. Focus your cybersecurity operations on vulnerabilities with the highest risk of exploitation.

CUBE3 AI

CUBE3 AI

CUBE3.AI is a web3 security platform that provides real-time transaction protection for smart contracts, safeguarding against cyber exploits, fraud, and compliance risks.

Sardine

Sardine

Sardine is a leader in financial crime prevention. Using unparalleled device intelligence and behavior biometrics, Sardine applies machine learning to detect and stop fraud before it happens.

RAH Infotech

RAH Infotech

RAH Infotech is India’s leading value added distributor and solutions provider in the Network and Security domain. We are specialists in Enterprise and App Security and Application Delivery.