Vulnerabilities / Threats

6/22/2018
04:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Winners Announced for US Cyber Challenge Competition

Top Cyber Talent Competes at Virginia Tech

Blacksburg, VA, June 22, 2018 – Today, a select group of the nation’s top cybersecurity talent competed in the US Cyber Challenge (USCC) virtual “Capture the Flag” (CTF) competition as the culminating activity to their week-long camp program at Virginia Tech in Blacksburg, Virginia. The winners of the CTF competition were on Team Delta and included Lisa Price, Keith Swagler, Fabrizio D’Angelo and Rob Pescatore. Each of the winners were awarded a $1,000 educational scholarship from USCC for their achievement and a voucher for training from (ISC)2. The CTF competition was developed by Michigan-based company Merit.

The awards ceremony included remarks from Randy Marchany, Chief Information Security Officer of Virginia Tech; Scott Midkiff, VP for Information Technology and CIO of Virginia Tech; and Doug Logan, CEO of Cyber Ninjas.

In his Award Ceremony address, Doug Logan encouraged each of the camp participants to use their experience with U.S. Cyber Challenge as a jumping off point to further their career and be confident in their skill sets. There is a significant workforce gap nationwide in cybersecurity and each of these camp participants are qualified, and proved their qualifications today through their success in the competition, and are an important factor in reducing the vulnerabilities we find nationwide.

Over the course of the week, campers received in-depth classroom instruction from industry experts on topics including program analysis, memory forensics, penetration testing and packet crafting. Each of the campers qualified for the camp by achieving high scores in an online competition called Cyber Quests that took place in April. Over a thousand individuals competed in Cyber Quests across the country.

The Eastern Regional camp is supported in part through partnerships with Accenture Federal Services, Amazon Web Services, the Association for Federal Information Resources Management (AFFIRM), Center for Cyber Safety & Education, Center for Internet Security, CenturyLink, Common Knowledge Scholarship Foundation, Cyber Ninjas, Defense Point Security LLC, the Department of Homeland Security, Duo, the Federal CIO Council, (ISC)2, Lockheed Martin, Microsoft, Monster Government Solutions, NIC, SANS Institute, and Sherman Consulting. Local sponsorship includes Virginia Tech’s Division of Information Technology.

The 2018 Cyber Summer Camp Series features four week-long camps located in Delaware, Illinois, Nevada and Virginia. In line with the mission of USCC’s parent organization, the Center for Internet Security (www.CISecurity.org), the camps are an integral part in the mission to identify and develop cybersecurity talent in order to reduce the nation’s cybersecurity workforce gap and safeguard private and public organizations from cyber threats. Participants in USCC programming are encouraged to continue developing their skills and network with like-minded individuals by becoming active members in CyberCompEx.org, an online social community specifically for cybersecurity enthusiasts. 

For more information about the Cyber Camp program and each of the specific camps, visit U.S. Cyber Challenge online at www.uscyberchallenge.org

 

###

About U.S. Cyber Challenge:

U.S. Cyber Challenge (USCC) is a program supported by the Department of Homeland Security Science and Technology Directorate through a contract with the Center for Internet Security, a 501(c)3 organization, and has the mission to significantly reduce the shortage in the cyber workforce by serving as the premier program to identify, attract, recruit and place the next generation of cybersecurity professionals.  USCC's goal is to find 10,000 of America's best and brightest to fill the ranks of cybersecurity professionals where their skills can be of the greatest value to the nation.

Visit Us Online: www.uscyberchallenge.org

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-7907
PUBLISHED: 2018-09-26
Some Huawei products Agassi-L09 AGS-L09C100B257CUSTC100D001, AGS-L09C170B253CUSTC170D001, AGS-L09C199B251CUSTC199D001, AGS-L09C229B003CUSTC229D001, Agassi-W09 AGS-W09C100B257CUSTC100D001, AGS-W09C128B252CUSTC128D001, AGS-W09C170B252CUSTC170D001, AGS-W09C229B251CUSTC229D001, AGS-W09C331B003CUSTC331D0...
CVE-2018-3972
PUBLISHED: 2018-09-26
An exploitable code execution vulnerability exists in the Levin deserialization functionality of the Epee library, as used in Monero 'Lithium Luna' (v0.12.2.0-master-ffab6700) and other cryptocurrencies. A specially crafted network packet can cause a logic flaw, resulting in code execution. An attac...
CVE-2018-17538
PUBLISHED: 2018-09-26
Axon (formerly TASER International) Evidence Sync 3.15.89 is vulnerable to process injection.
CVE-2018-11763
PUBLISHED: 2018-09-25
In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol.
CVE-2018-14634
PUBLISHED: 2018-09-25
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerabl...