U.S. Rolls Out National Cyber Alert System
You've got: an advisory from the U.S. government. The newly ordained Department of Homeland Security (DHS) has asked its National Cyber Security Division (NCSD) to roll out the National Cyber Alert System. The system is intended to provide timely and actionable information to Americans with the explicit purpose of assisting the public in securing their computers and minimizing emerging threats.
Threats are aggregated, analyzed, and graded by the United States Computer Emergency Readiness Team (US-CERT), which is a cooperative effort between the government and the private sector intended to secure cyberspace. U.S. Citizens, or anyone else who joins the mailing list, can sign up to have e-mail alerts sent directly to their inboxes.
To meet NCSD's goal of "empowering citizens," information contained in US-CERT advisories ranges from technical to non-technical how-to's and best practices.
"The development and initial operating capability of the National Cyber Alert System elevates awareness and helps improve America's IT security posture," said Amit Yoran, director of the National Cyber Security Division. "We are focused on making the threats and recommended actions easier for all computer users to understand, prioritize, and act upon. We recognize the importance and urgency of our mission and are taking action."
Aside from receiving details on the latest threats to hit the Internet, visitors to the US-CERT Web site can report incidents and vulnerabilities. Threats will not be color-coded at this time like those issued as part of the terrorism warning system.
Despite the latest efforts of Homeland Security, not everyone in the U.S. government is cozy with the current design of the system. "If I were a betting man, I'd put a few dollars down that the next virus that clogs computer networks is going to be transmitted through an e-mail that looks like one of these DHS e-mail alerts," Sen. Charles Schumer said in a statement.
Schumer pointed out that the Federal Trade Commission already provides information concerning virus threats and security vulnerabilities to both consumers and the private sector. The Senator suggested that US-CERT instead work with Internet providers to locate infected machines and take them offline during cyber-attacks.