Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


NIST proposes barring some of the most nonsensical password rules

Proposed guidelines aim to inject badly needed common sense into password hygiene.

Last week, NIST released its second public draft of SP 800-63-4, the latest version of its Digital Identity Guidelines. ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices

Original release date: June 7, 2022

CISA, the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory (CSA) to provide information on ways in which People’s Republic of China (PRC) state-sponsored cyber actors continue to exploit publicly known ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Collaboration Solves the Cyber Risk to Business Risk Challenge

[Bob’s comment:  If you have taken a CISSP or other cybersecurity class from me, you already know that the CIS 20 Controls are my favorite cybersecurity framework.  Here is a new set of tools for doing a risk assessment based on the 20 Controls.]

Over the past year, the ...

Continue Reading →
0
Page 1 of 4 1234