“We have the technical sophistication of Tinker Toy’s protecting the IoT microcosms of America’s health sector organizations.” AmericaHealthCybersecurityJames ScottIcitIotSenior FellowIot Microcosms Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“It's time to wake up and smell the Mutating Hash! Signature Based Malware Detection is Dead” AiArtificial IntelligenceNational SecurityCybersecurityVirusAnalyticsMachine LearningJames ScottIcitMalwareAnti VirusOpmAntiquated TechnologyHackforumsKeyloggerNon Signature BasedSignature Based Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Senator Markey’s Cyber Shield Act can work! Start the conversations with the basics: Use a QR code that attaches to a dynamic database that runs an artificial intelligence algorithm to calculate the score. Let’s not make this more difficult than it is.” CongressAiArtificial IntelligenceCybersecurityJames ScottIcitCritical InfrastructureCapitolhillLegislative CommunityCyber Shield Act Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“If developed and implemented meaningfully, Cyber Shield Act could be a catalyst to incite responsible cybersecurity adoption and implementation throughout multiple manufacturing sectors." James Scott, Senior Fellow, Institute for Critical Infrastructure Technology” SecurityCongressCybersecurityJames ScottIcitCritical InfrastructureCapitolhillLegislative CommunityCyber Shield ActManufacturing Sectors Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“If you don’t feel ordained by the Universe to do this job, do something else. The intelligence community has to shut down the gaping wound that is the insider threat epidemic we are experiencing right now.” CybersecurityEpidemicJames ScottInsider ThreatCyber Intelligence Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“What do you mean “Should we worry about cyber adversaries getting into state voter registration databases?” They’re already in and selling exfiltrated voter registration data on the dark web! Next election cycle black hats will be selling ‘access as service’.” ElectionElectionsHackingCybersecurityAdversaryDark WebBlack HatAdversaries Voting Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“This cyberwar will be a continuous marathon war that will only compound and hyper-evolve in stealth, sophistication and easy entry due to the accelerated evolution of “as a service” attack strategies for sale on the dark web.” WarMarathonCybersecurityJames ScottStealthIcitSenior FellowDark WebCyberwar Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“There's a compounding and unraveling chaos that is perpetually in motion in the Dark Web's toxic underbelly.” SecurityCybersecurityJames ScottIcitDark Web Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Real cybersecurity means that your Security Operations team is consistently pen testing your network with the same stealth and sophistication as the Russian nation state, the same desperation as China’s 13th Five Year Plan, the same inexhaustible energy of the Cyber Caliphate and the same greed and ambition for monetary payoff as a seasoned cyber-criminal gang.” SecurityChinaCybersecurityRussianStealthCyber CrimeEnergy Of The Cyber Caliphate Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Your ideas are bound to forces of which you have no control due to the fact that you've voluntarily submitted your freedom of though to the perception steering censorship of Google, Facebook and other dragnet surveillance capitalists.” GoogleSurveillanceFacebookCybersecurityJames ScottCapitalistsInfosecNetsecDragnet Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“You are a product to dragnet surveillance capitalists like Google, Facebook, Comcast and Verizon. Your ideas are rarely your own, rather you are little more than a pawn to their perception steering initiatives to get you to read, believe and buy what they put in front of you. The first step to breaking out of this faux reality matrix is to stop using Google, Bing, Yahoo, Comcast and Facebook.” GoogleFacebookCybersecurityJames ScottCapitalistsYahooBingComcastVerizon Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The gaping wound in America’s national security is without a doubt, the unregulated dragnet surveillance capitalists.” AmericaNational SecuritySurveillanceCybersecurityJames ScottCapitalistsDragnet Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“I don’t care how secure you think your organization is, I’ll social engineer my way inside in less than 24 hours regardless of the sophistication of your IoT microcosm security. Whatever obstacles I run into exploiting your technical vulnerabilities will be made up for by exploiting the vulnerabilities in the cyber hygiene of your staff.” SecurityCybersecurityJames ScottSocial EngineeringIotCyber Hygiene Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The security theater we are witnessing in our election system boasting the illusion of security via ‘clunky as heck’ and air gap defense will do nothing against the real and sophisticated adversarial landscape that is zeroing in on our democracy” AmericaDemocracySecurityVoteElectionVotingDefenceCybersecurityJames ScottIcitCyberattacks Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“We’re talking about the fate of our economy and the questionable resiliency of our Nation’s critical infrastructure. Why are experts so polite, patient, and forgiving when talking about cybersecurity and National Security? The drama of each script kiddie botnet attack and Nation State pilfering of our IP has been turned into a soap opera through press releases, sound bites and enforced absurdity of mainstream media. It’s time for a cybersecurity zeitgeist in the West where cyber hygiene is a meme that is aggressively distributed by those who have mastered it and encouraged to be imitated by those who have experienced it.” EconomySecurityMediaNational SecurityCybersecurityJames ScottCyber SecurityIcitCritical InfrastructureCyber HygieneBotnetCybersecurity Zeitgeist Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“You'll have the right to be angry about Vault 7 only after you boycott dragnet surveillance data providers like Google, Microsoft, Skype, Facebook and LinkedIn. The true threat is coming from the private sector surveillance profiteers.” SecurityGoogleSurveillanceMicrosoftFacebookCybersecurityWikileaksJames ScottSkypeIcitLinkedinDragnetVault 7Vault7 Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“A single spear-phishing email carrying a slightly altered malware can bypass multi-million dollar enterprise security solutions if an adversary deceives a cyber-hygienically apathetic employee into opening the attachment or clicking a malicious link and thereby compromising the entire network.” SecurityCybersecurityNetworkJames ScottIcitMalwarePhishing Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Many members of Isis are not sophisticated attackers. The majority of members do not have a technical background. The UCC is predominately capable of hacking soft targets, such as Twitter accounts, and spreading propaganda or defacing websites” AmericaDemocracySecurityVoteElectionVotingCybersecurityJames ScottIcitCyberattacks Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“In an age of dynamic malware obfuscation through operations such as mutating hash, a hyper-evolving threat landscape, and technologically next generation adversaries, offensive campaigns have an overwhelming advantage over defensive strategies.” SecurityNext GenerationCybersecurityJames ScottMalwareNetwork Security Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Few critical infrastructures need to expedite their cyber resiliency as desperately as the health sector, who repeatedly demonstrates lackadaisical cyber hygiene, finagled and Frankensteined networks, virtually unanimous absence of security operations teams and good ol’ boys club bureaucratic board members flexing little more than smoke and mirror, cyber security theatrics as their organizational defense.” SecurityCybersecurityJames ScottIcitHealthitCritical InfrastructuresHealth Sector Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Cyber hygiene, patching vulnerabilities, security by design, threat hunting and machine learning based artificial intelligence are mandatory prerequisites for cyber defense against the next generation threat landscape.” SecurityIntelligenceCybersecurityMachine LearningJames ScottIcitCyber HygieneSecurity By Design Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“In this business, I find more value in working with hackers who abstract new realities from cast aside code and concepts than academics who regurgitate other people’s work and try to pawn it off as their own.” CybersecurityHackersJames ScottIcitSenior Fellow Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Cyber hygiene has to memetically pounded into the intellectual DNA of the American population and continuously reinforced by peer pressure.” DnaAmericanCybersecurityJames ScottIcitSenior FellowCyber Hygiene Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The cyber industry is riddled with faux experts and self-proclaimed scholars, Tallinn Manual 2.0 is a perfect example of what happens when cyber-upstarts try to proclaim authority on a topic they know nothing about.” CybersecurityJames ScottIcitSenior FellowCyber Industry Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Cybersecurity whitepaper authors have it all wrong! It’s about weaponizing the mind of the reader so that when they’re done reading the document, you’ve memetically drilled home actionable concepts that will expediently impact their cyber defense.” CybersecurityJames ScottIcitSenior FellowCyber DefenseWeaponizing Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Ransomware is not only about weaponizing encryption, its more about bridging the fractures in the mind with a weaponized message that demands a response from the victim.” CybersecurityEncryptionJames ScottIcitSenior FellowRansomware Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Right and wrong isn’t a matter of ethics, rather it’s the geography in which you reside and whose control you’re under. Tallinn Manual 2.0 is based largely on western international humanitarian law.” EthicsWesternCybersecurityJames ScottIcitSenior FellowHumanitarian Law Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“America is a reactionary society which makes us prone and vulnerable to Hegelian dialectic style manipulation. I’m more concerned about the adversaries within our boarders than I am our adversaries from abroad.” AmericaSocietyCybersecurityJames ScottIcitSenior Fellow Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Cities require connectivity rather than territory in order to drive their economic stability and growth.” CitiesEconomicCybersecurityJames ScottConnectivityInfosecNetsec Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The cyber hygienically apathetic c-suites running critical infrastructure organization are losing this war. This this is a cyber kinetic meta war and its hyper evolving in an already next gen space.” CybersecurityJames ScottCyber HygieneEquifaxEquifax BreachEquifax HackMeta Data Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“We’ve gone from a planet ruled by natural geography to political geography to kinetically functional geography to a cyber geography that is ruled by ideological variation rather than politically constructed boarders.” PoliticsGeographyCybersecurityJames ScottInfosecNetsecCyber Geography Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The way to stifle China’s growth is to inhibit the flow of their connectivity. In order to slow down Chinese expansion, we need to cripple their cyber-kinetic-political connectivity. Indirect polarization, in all forms, must be at the forefront of the agenda when conducting influence operations on all things China.” PoliticsChinaChineseCybersecurityJames ScottInfosecNetsecCyber Kinetic Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Labor automation, machine learning and artificial intelligence will have a devastating impact on the already struggling Chinese economy.” EconomyChineseAiArtificial IntelligenceCybersecurityJames ScottMlInfosecNetsec Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The human condition is plagued with a labyrinth of shortcomings, frailties and limitations that hinder man from reaching his fullest potential. Therefore, it only makes sense that we find ourselves at the next phase in human evolution where restricted man merges with the infinite possibilities of hyper-evolving technologies. This techno-human transmutation will prove to be ‘the’ quantum leap in human progression. The harmonization of technologically extending oneself, consciousness, artificial intelligence and machine learning will reverse the failures of genetic predisposition and limitation.” TechnologyAiArtificial IntelligenceCybersecurityMachine LearningHuman EvolutionJames ScottMl Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Every conceivable layer of the election process is completely riddled with vulnerabilities, so yes, hacking elections is easy!” SecurityElectionVotingElectionsHackingCybersecurityElection 2016MalwarePhishing Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Consider all tabulation systems infected by bad actors until a third party, not affiliated with the manufacturer or election officials, proves they are secure.” ElectionVotingElectionsHackingCybersecurityElection 2016MalwarePhishingCyber Threats Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“You think an Air Gap is a defense? Sofacy, Stuxnet, Uroburos, AirHopper, BitWhisperer and ProjectSauron…enough said!” DemocracyVoteElectionDefenseAmericanCybersecurityVoterIcitCyberattackSecurity DailyApts Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“The collaboration between secretaries of state, election officials and the voting system manufacturers on the matter of enforcing this black box proprietary code secrecy with election systems, is nothing less than the commoditization and monetization of American Democracy” DemocracyVoteElectionDefenseAmericanCybersecurityStealthVoterIcitCyberattackSecurity DailyApts Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“As we’ve already seen with exfiltrated voter registration databases and the endless methods of poisoning manufacturer updates, manipulating DRE and optical scan machines and bypassing air gap defense, the state election official’s illusion of security is being pummeled by the reality of cyberattack.” VoteElectionDefenseCybersecurityStealthVoterIcitCyberattackSecurity DailyApts Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“Between the black box proprietary code, barebones computers we call voting machines and a mass of completely unqualified election officials, our election system is up for grabs to anybody with even a modest interest and some script kiddie capability. The cyber-kinetic attack surface here is wide open.” DemocracyVoteElectionDefenseVotingAmericanCybersecurityVoterIcitCyberattackSecurity DailyApts Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology
“A Nation State or Cyber-Mercenary won’t hack e-voting machines one by one. This takes too long and will have minimal impact. Instead, they’ll take an easier approach like spear phishing the manufacturer with malware and poison the voting machine update pre-election and allow the manufacturer to update each individual machine with a self-deleting payload that will target the tabulation process.” ElectionVotingElectionsHackingCybersecurityMercenaryMercenariesMalwarePhishing Author:James Scott, Senior Fellow, Institute for Critical Infrastructure Technology