MIT CYBERSECURITY CLINIC
The new MIT Cybersecurity Clinic (11.274 and 11.074) will be offered in both the fall and spring semester at MIT.
The Cybersecurity Clinic will consist of four-modules : Cybersecurity for Critical Urban Infrastructure: Understanding the Problem; How the MIT Cybersecurity Clinic Makes Initial Contact with potential Client Agencies; Onsite Assessment of Cybersecurity Vulnerability by MIT Clinic Staff; and Prepare and Submit a Final Cybersecurity Vulnerability Assessment to a Client Agency. MIT students who want to take on field assignments with the Cybersecurity Clinic (for academic credit) must pass the certification examination offered at the end of the fourth module.
Students who have achieved certification, will work in teams supervised by advanced doctoral and post-doctoral students during the last nine weeks of the spring semester to collaborate with an assigned client agency to prepare a Cyberattack Vulnerability Assessment for a client agency.
WHO WE ARE
We are developing a new class of non-technical strategies against cyberattacks called Defensive Social Engineering. Cyber defenders can use Defensive Social Engineering along with technical tools to defeat or compromise attackers. One technique in the Defensive Social Engineering toolbox is Cyber Negotiation. This research is supported by MIT’s Internet Policy Research Initiative (IPRI).
RESOURCES
Click here for a list of publications and resources
ABOUT THIS BLOG
click above to read more about this blog and watch the short animation below
-
Boston Globe: How to Thwart Hackers (Local Cybersecurity)
-
Quick guide to the 6 ways we can regulate AI (MIT Tech Review)
-
World agencies issue cybersecurity guidance for smart cities
-
The Electronic Frontier Foundation Opinion Piece on the U.N. Cybercrime Treaty
-
Cyberattacks on local governments 2020: findings from a key informant survey
-
strategic approach to identify, stop and punish cyberattackers (Third Way Cyber Enforcement Initiative)
-
Cyberattack Causes Trains to Stop in Denmark
-
US to launch ‘labeling’ rating program for internet-connected devices in 2023
-
What Cities Should Know About the State and Local Cybersecurity Grant Program
-
Fight Against Disinformation – MIT Lincoln Laboratory
-
NY Gov. Hochul Announces $30 Million Shared Services Program to Enhance Cyber Defenses in Counties Across the State
Governor Hochul Announces Launch of $30 Million Shared Services Program to Enhance Cyber Defenses in Counties Across the State Counties Are Now Eligible to Participate in New Shared Services Program Including Endpoint Detection and Response…
-
UK critical national infrastructure at risk of ransom attacks
https://www.smartcitiesworld.net/data-privacy-and-security/data-privacy-and-security/uk-critical-national-infrastructure-at-risk-of-ransom-attacks?utm_source=newsletter&utm_medium=email&utm_campaign=Daily%20Newsletter Smart Cities World, a forum focused on smart city trends, reported in late June 2022, that “more than three-fifths of cyber leaders in critical national infrastructure organisations do not have a decision-making plan in…
-
Cybersecurity clinics create online defense for the public good
https://www.newamerica.org/the-thread/cybersecurity-clinics-create-online-defense-for-the-public-good/ “The point of the Consortium is to make it easy for faculty at any university to convince their administration that they could quickly launch a clinic of their own,” said Larry Susskind, Ford Professor…
-
Rapid digitalization may leave smart cities open to cyberattacks
https://gcn.com/articles/2021/09/15/smart-city-cyber-vulnerabilities.aspx
-
Officials tell schools not to pay ransomware demands. Parents disagree, survey finds
A majority of parents would support their children's school districts paying off hackers in the event of a cyberattack, research shows. The survey found that 72% said they'd support paying hackers' demands if it meant…
-
Cyber insurance is evolving and here to stay, say underwriters
Cyber insurance faces a challenging market, one where capacity has lessened and insurers are tightening up the "gray areas" of coverage. Underwriters aren't restricting coverage so much as "diversifying" based on risk exposure and claim…
-
Colonial Pipeline Paid Hackers Nearly $5 Million in Ransom
Colonial Pipeline Co. paid nearly $5 million to Eastern European hackers on Friday, contradicting reports earlier this week that the company had no intention of paying an extortion fee to help restore the country’s largest…
-
Cybersecurity risks are growing for state and local governments, report finds
In April, hackers leaked thousands of emails from the administration of Chicago Mayor Lori Lightfoot in response to the police shooting of 13-year-old Adam Toledo. In early May, the city of Tulsa suffered a ransomware attack that left…
-
Ex-employee tampered with Kansas water plant, feds say, a sign of online vulnerability
Wyatt Travnichek was the person responsible for monitoring the water quality in eight central countries in Kansas. In January 2019, he resigned for unknown reasons. Two years later, Travnichek is charged with “illegally tampering with…
-
Hackers demand up to $40 million in ransom from Broward schools
Ransomware attacks have been occurring more frequently over the past few years, and one sector that has been extremely impacted is education. Universities and places of higher education store personal data of tens of thousands…