Many companies and organization are moving their data repositories to the cloud, to places such as Amazon Web Services (AWS). Hopefully, if your company is moving to the cloud, you are doing a better job securing this information than the Department of Defense or the National Security Agency.
The first story involves a trove of data left on AWS servers, and discovered by security ...
Continue Reading →
H.R.4036 – formerly called the Active Cyber Defense Certainty (ACDC) Act and informally called the hack-back bill – was introduced as an amendment to the Computer Fraud and Abuse Act (CFAA) last week. Introduced by Georgia Republican Tom Graves, and Arizona Democrat Kyrsten Sinema, in the House of ...
A quick Saturday digest of cybersecurity news articles from other sources.Veteran’s day is a remembrance of all U.S. military veterans – past and present. It is celebrated every November 11th, and has been a federal holiday since 1926.
10/31/2017 08:14 AM EDT Original release date: October 31, 2017
Building resilience in critical ...
Continue Reading →
Happy Halloween! Nothing like a scary story to end the holiday. The scary story in cybersecurity is that Kaspersky anti-malware and security products are in league with the Putin government and the FSB in Russia. The FBI is advising government agencies to drop Kaspersky and find a new endpoint security solution.
Kaspersky Lab is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia and operated through a holding company in the United Kingdom. Kaspersky was founded ...
Continue Reading →The Equifax breach has been all over the news this weekend, and it should be. This is worse than they are telling us. It most certainly DOES affect you, if you are adult and have ever purchased a car or opened a credit card account. Don’t wait to be told you are a victim. Assume you are a victim.
In a world where we are all suffering from “breach fatigue,” having suffered through dozens if not hundreds of these revelations about ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.If there’s one thing we’ve learned, it’s that any new way of DDoSing will reveal that there are a huge number of undefended devices online.
We already have some highly sophisticated weapons systems that use computer technology and electronics to do things on a battlefield undreamed of even a few decades ago. This does include robotic weapons systems. The important ingredient in all this tech is the presence of human control. At this point in time it still takes a human to drive these war machines.
But we are not the far from being able to ...
Continue Reading →
NIST (National Institute for Standards and Technology) released Special Publication 800-53 version 4 recently, and it covers the shortcomings in privacy and security in the national power grid, water control systems, dams, oil and gas utilities and similar computer controlled systems. There are no coherent or enforceable standards for Industrial Control Systems (ICS) and Supervisory Control And Data Acquisition (SCADA) systems ...
I remember it as the “number sign” or the “pound sign.” Jeopardy contestants might know it is called an “octothorpe.” The symbol itself goes back to Roman times, and was used extensively in the telephone industry, appearing on touch tone phone keypads as a way to allow special dialing features.
First suggested by Twitter marketing guru Chris Messina as a way to group, organize, and follow an idea in the Twitter stream, it quickly became a social media staple used not ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Microsoft Windows operating systems
This Alert has been updated to reflect the National Cybersecurity and Communications Integration Center’s (NCCIC) analysis of the “NotPetya” malware variant.
The scope of this Alert’s analysis is limited to the newest Petya malware variant ...