Vulnerabilities / Threats

6/22/2018
04:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Winners Announced for US Cyber Challenge Competition

Top Cyber Talent Competes at Virginia Tech

Blacksburg, VA, June 22, 2018 – Today, a select group of the nation’s top cybersecurity talent competed in the US Cyber Challenge (USCC) virtual “Capture the Flag” (CTF) competition as the culminating activity to their week-long camp program at Virginia Tech in Blacksburg, Virginia. The winners of the CTF competition were on Team Delta and included Lisa Price, Keith Swagler, Fabrizio D’Angelo and Rob Pescatore. Each of the winners were awarded a $1,000 educational scholarship from USCC for their achievement and a voucher for training from (ISC)2. The CTF competition was developed by Michigan-based company Merit.

The awards ceremony included remarks from Randy Marchany, Chief Information Security Officer of Virginia Tech; Scott Midkiff, VP for Information Technology and CIO of Virginia Tech; and Doug Logan, CEO of Cyber Ninjas.

In his Award Ceremony address, Doug Logan encouraged each of the camp participants to use their experience with U.S. Cyber Challenge as a jumping off point to further their career and be confident in their skill sets. There is a significant workforce gap nationwide in cybersecurity and each of these camp participants are qualified, and proved their qualifications today through their success in the competition, and are an important factor in reducing the vulnerabilities we find nationwide.

Over the course of the week, campers received in-depth classroom instruction from industry experts on topics including program analysis, memory forensics, penetration testing and packet crafting. Each of the campers qualified for the camp by achieving high scores in an online competition called Cyber Quests that took place in April. Over a thousand individuals competed in Cyber Quests across the country.

The Eastern Regional camp is supported in part through partnerships with Accenture Federal Services, Amazon Web Services, the Association for Federal Information Resources Management (AFFIRM), Center for Cyber Safety & Education, Center for Internet Security, CenturyLink, Common Knowledge Scholarship Foundation, Cyber Ninjas, Defense Point Security LLC, the Department of Homeland Security, Duo, the Federal CIO Council, (ISC)2, Lockheed Martin, Microsoft, Monster Government Solutions, NIC, SANS Institute, and Sherman Consulting. Local sponsorship includes Virginia Tech’s Division of Information Technology.

The 2018 Cyber Summer Camp Series features four week-long camps located in Delaware, Illinois, Nevada and Virginia. In line with the mission of USCC’s parent organization, the Center for Internet Security (www.CISecurity.org), the camps are an integral part in the mission to identify and develop cybersecurity talent in order to reduce the nation’s cybersecurity workforce gap and safeguard private and public organizations from cyber threats. Participants in USCC programming are encouraged to continue developing their skills and network with like-minded individuals by becoming active members in CyberCompEx.org, an online social community specifically for cybersecurity enthusiasts. 

For more information about the Cyber Camp program and each of the specific camps, visit U.S. Cyber Challenge online at www.uscyberchallenge.org

 

###

About U.S. Cyber Challenge:

U.S. Cyber Challenge (USCC) is a program supported by the Department of Homeland Security Science and Technology Directorate through a contract with the Center for Internet Security, a 501(c)3 organization, and has the mission to significantly reduce the shortage in the cyber workforce by serving as the premier program to identify, attract, recruit and place the next generation of cybersecurity professionals.  USCC's goal is to find 10,000 of America's best and brightest to fill the ranks of cybersecurity professionals where their skills can be of the greatest value to the nation.

Visit Us Online: www.uscyberchallenge.org

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
New Cold Boot Attack Gives Hackers the Keys to PCs, Macs
Kelly Sheridan, Staff Editor, Dark Reading,  9/13/2018
Yahoo Class-Action Suits Set for Settlement
Dark Reading Staff 9/17/2018
RDP Ports Prove Hot Commodities on the Dark Web
Kelly Sheridan, Staff Editor, Dark Reading,  9/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: In Russia, application hangs YOU!
Current Issue
Flash Poll
How Data Breaches Affect the Enterprise
How Data Breaches Affect the Enterprise
This report, offers new data on the frequency of data breaches, the losses they cause, and the steps that organizations are taking to prevent them in the future. Read the report today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-3912
PUBLISHED: 2018-09-18
Bypassing password security vulnerability in McAfee Application and Change Control (MACC) 7.0.1 and 6.2.0 allows authenticated users to perform arbitrary command execution via a command-line utility.
CVE-2018-6690
PUBLISHED: 2018-09-18
Accessing, modifying, or executing executable files vulnerability in Microsoft Windows client in McAfee Application and Change Control (MACC) 8.0.0 Hotfix 4 and earlier allows authenticated users to execute arbitrary code via file transfer from external system.
CVE-2018-6693
PUBLISHED: 2018-09-18
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escal...
CVE-2018-16515
PUBLISHED: 2018-09-18
Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by leveraging improper transaction and event signature validation.
CVE-2018-16794
PUBLISHED: 2018-09-18
Microsoft ADFS 4.0 Windows Server 2016 and previous (Active Directory Federation Services) has an SSRF vulnerability via the txtBoxEmail parameter in /adfs/ls.