Vulnerabilities / Threats

6/22/2018
04:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Winners Announced for US Cyber Challenge Competition

Top Cyber Talent Competes at Virginia Tech

Blacksburg, VA, June 22, 2018 – Today, a select group of the nation’s top cybersecurity talent competed in the US Cyber Challenge (USCC) virtual “Capture the Flag” (CTF) competition as the culminating activity to their week-long camp program at Virginia Tech in Blacksburg, Virginia. The winners of the CTF competition were on Team Delta and included Lisa Price, Keith Swagler, Fabrizio D’Angelo and Rob Pescatore. Each of the winners were awarded a $1,000 educational scholarship from USCC for their achievement and a voucher for training from (ISC)2. The CTF competition was developed by Michigan-based company Merit.

The awards ceremony included remarks from Randy Marchany, Chief Information Security Officer of Virginia Tech; Scott Midkiff, VP for Information Technology and CIO of Virginia Tech; and Doug Logan, CEO of Cyber Ninjas.

In his Award Ceremony address, Doug Logan encouraged each of the camp participants to use their experience with U.S. Cyber Challenge as a jumping off point to further their career and be confident in their skill sets. There is a significant workforce gap nationwide in cybersecurity and each of these camp participants are qualified, and proved their qualifications today through their success in the competition, and are an important factor in reducing the vulnerabilities we find nationwide.

Over the course of the week, campers received in-depth classroom instruction from industry experts on topics including program analysis, memory forensics, penetration testing and packet crafting. Each of the campers qualified for the camp by achieving high scores in an online competition called Cyber Quests that took place in April. Over a thousand individuals competed in Cyber Quests across the country.

The Eastern Regional camp is supported in part through partnerships with Accenture Federal Services, Amazon Web Services, the Association for Federal Information Resources Management (AFFIRM), Center for Cyber Safety & Education, Center for Internet Security, CenturyLink, Common Knowledge Scholarship Foundation, Cyber Ninjas, Defense Point Security LLC, the Department of Homeland Security, Duo, the Federal CIO Council, (ISC)2, Lockheed Martin, Microsoft, Monster Government Solutions, NIC, SANS Institute, and Sherman Consulting. Local sponsorship includes Virginia Tech’s Division of Information Technology.

The 2018 Cyber Summer Camp Series features four week-long camps located in Delaware, Illinois, Nevada and Virginia. In line with the mission of USCC’s parent organization, the Center for Internet Security (www.CISecurity.org), the camps are an integral part in the mission to identify and develop cybersecurity talent in order to reduce the nation’s cybersecurity workforce gap and safeguard private and public organizations from cyber threats. Participants in USCC programming are encouraged to continue developing their skills and network with like-minded individuals by becoming active members in CyberCompEx.org, an online social community specifically for cybersecurity enthusiasts. 

For more information about the Cyber Camp program and each of the specific camps, visit U.S. Cyber Challenge online at www.uscyberchallenge.org

 

###

About U.S. Cyber Challenge:

U.S. Cyber Challenge (USCC) is a program supported by the Department of Homeland Security Science and Technology Directorate through a contract with the Center for Internet Security, a 501(c)3 organization, and has the mission to significantly reduce the shortage in the cyber workforce by serving as the premier program to identify, attract, recruit and place the next generation of cybersecurity professionals.  USCC's goal is to find 10,000 of America's best and brightest to fill the ranks of cybersecurity professionals where their skills can be of the greatest value to the nation.

Visit Us Online: www.uscyberchallenge.org

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Crowdsourced vs. Traditional Pen Testing
Alex Haynes, Chief Information Security Officer, CDL,  3/19/2019
BEC Scammer Pleads Guilty
Dark Reading Staff 3/20/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
The State of Cyber Security Incident Response
The State of Cyber Security Incident Response
Organizations are responding to new threats with new processes for detecting and mitigating them. Here's a look at how the discipline of incident response is evolving.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-15583
PUBLISHED: 2019-03-25
Cross-Site Scripting (XSS) vulnerability in point_list.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter.
CVE-2017-7340
PUBLISHED: 2019-03-25
A Cross-Site Scripting vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to execute unauthorized code or commands via the applicationSearch parameter in the FortiView functionality.
CVE-2014-9187
PUBLISHED: 2019-03-25
Multiple heap-based buffer overflow vulnerabilities exist in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules, which could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recomme...
CVE-2014-9189
PUBLISHED: 2019-03-25
Multiple stack-based buffer overflow vulnerabilities were found in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules that could lead to possible remote code execution, dynamic memory corruption, or denial of service. Honeywell...
CVE-2019-10044
PUBLISHED: 2019-03-25
Telegram Desktop before 1.5.12 on Windows, and the Telegram applications for Android, iOS, and Linux, is vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces a clickable link even if (for example) Latin and Cyrillic characters e...