Risk
4/26/2010
11:35 AM
50%
50%

FBI Names Cyber Division Chief

Gordon Snow has experience working on counterterrorism and cybercrimes in Silicon Valley and led the effort to draft a government-wide Cyber Counterintelligence Plan.

The FBI has a new chief responsible for leading the agency's efforts to detect and prevent cyberattacks on U.S. critical infrastructure.

Gordon M. Snow is now assistant director of the FBI's Cyber Division, replacing Shawn Henry, who left the post in January to lead the FBI's Washington Field Office.

Snow most recently was deputy assistant director of the Cyber Division. He has been with the FBI for more than 18 years, starting out as a special agent in Alabama in 1992.

Snow gained significant cybersecurity experience in 2006 as an assistant special agent working in Silicon Valley. At San Francisco Division's San Jose Resident Agency, he was responsible for the counterterrorism, cyber, white-collar crime and violent crime squads.

After a brief stint in Afghanistan the next year, Snow returned to the U.S. and was appointed section chief in the Cyber Division in January 2008. In that role, he led the effort to draft a government-wide Cyber Counterintelligence Plan.

The following year, he was appointed as chief of the Cyber Division's Cyber National Security Section and the director of the National Cyber Investigative Joint Task Force. Later that year, he was promoted to deputy director of the division.

The White House is bolstering cybersecurity efforts across the administration, especially in agencies charged with protecting the U.S. against terrorism and criminal activity at home and abroad, such as the FBI, the National Security Agency and the Department of Homeland Security.

There is evidence to support the ramp up. In recent testimony during his nomination to lead the U.S. military effort against cyber warfare, Lt. General Keith Alexander said the Department of Defense network alone is hit with hundreds of thousands of probes a day that are attempting to detect vulnerabilities in it to stage an attack.

Moreover, in a recently published report, a group of federal IT pros said they believe a major cyberattack against critical U.S. infrastructure is imminent.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.