Risk
4/26/2010
11:35 AM
50%
50%

FBI Names Cyber Division Chief

Gordon Snow has experience working on counterterrorism and cybercrimes in Silicon Valley and led the effort to draft a government-wide Cyber Counterintelligence Plan.

The FBI has a new chief responsible for leading the agency's efforts to detect and prevent cyberattacks on U.S. critical infrastructure.

Gordon M. Snow is now assistant director of the FBI's Cyber Division, replacing Shawn Henry, who left the post in January to lead the FBI's Washington Field Office.

Snow most recently was deputy assistant director of the Cyber Division. He has been with the FBI for more than 18 years, starting out as a special agent in Alabama in 1992.

Snow gained significant cybersecurity experience in 2006 as an assistant special agent working in Silicon Valley. At San Francisco Division's San Jose Resident Agency, he was responsible for the counterterrorism, cyber, white-collar crime and violent crime squads.

After a brief stint in Afghanistan the next year, Snow returned to the U.S. and was appointed section chief in the Cyber Division in January 2008. In that role, he led the effort to draft a government-wide Cyber Counterintelligence Plan.

The following year, he was appointed as chief of the Cyber Division's Cyber National Security Section and the director of the National Cyber Investigative Joint Task Force. Later that year, he was promoted to deputy director of the division.

The White House is bolstering cybersecurity efforts across the administration, especially in agencies charged with protecting the U.S. against terrorism and criminal activity at home and abroad, such as the FBI, the National Security Agency and the Department of Homeland Security.

There is evidence to support the ramp up. In recent testimony during his nomination to lead the U.S. military effort against cyber warfare, Lt. General Keith Alexander said the Department of Defense network alone is hit with hundreds of thousands of probes a day that are attempting to detect vulnerabilities in it to stage an attack.

Moreover, in a recently published report, a group of federal IT pros said they believe a major cyberattack against critical U.S. infrastructure is imminent.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-5084
Published: 2015-08-02
The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically approximate attackers to obtain sensitive information via unspecified vectors.

CVE-2015-5352
Published: 2015-08-02
The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time ...

CVE-2015-5537
Published: 2015-08-02
The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a different vulnerability than CVE-2014-3566.

CVE-2015-5600
Published: 2015-08-02
The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumptio...

CVE-2015-1009
Published: 2015-07-31
Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file.

Dark Reading Radio
Archived Dark Reading Radio
What’s the future of the venerable firewall? We’ve invited two security industry leaders to make their case: Join us and bring your questions and opinions!