Cyber Security News, Insights and Resources
Cyber security news, insights and resources to help cyber security leaders stay on top of developments, and to understand and address the challenges faced by their organization.
Meet Bob. Bob’s an employee at BigCorp, and he’s confused.He’s got info security folks requiring him to take annual training, posting educational videos, and sending simulated phishing email all the time. Then he’s got the privacy team requiring training of their own and inviting him to “lunch and learns” on privacy by design.But when it gets right down to it, Bob doesn’t understand quite where security ends and privacy begins. When he asks, the privacy and security folks are perfectly happy to go on at length about…
Latest 2019 Verizon data breach report highlights absence of foundation-level and layered security controls, internal security discipline, and general security awareness as the common denominators in the data breach dilemma.
Chinese spies known as Buckeye group are alleged to be using some of the NSA cyber weapons as early as March 2016, long before Shadow Brokers released them in April 2017.
Cybersecurity vacancies are hard to fill as companies are hiring from a pool which is not growing quick enough to meet demand, a phenomenon attributed to growing cybercrime economy and lack of extensive education to produce professionals.
Major anti-malware vendors, Symantec, McAfee, and Trend Micro, allegedly had their source code stolen by Russian hackers. The full set of data including access to the companies' networks are now going on sale for $300,000.
Active Cyber Defense Strategy Could Use Private Sector Bounty Hunters to Protect Critical Infrastructure
New Atlantic Council report by two former Department of Defense officials suggests that active cyber defense would represent a welcome compromise between doing nothing and going on the offensive.
Israel's cyber response to cyber attacks launched by Hamas was to launch an air strike on a building known to be the cyber HQ for Hamas. It is believed to be the first time any military has responded to a digital threat with immediate force.
Personal information of over 80 million U.S. households was exposed from an unsecured cloud database, while the owner of the database remains unknown.
New cyber security directive from DHS has cut mandatory time for U.S. federal government agencies to patch vulnerabilities considered critical from 30 to 15 days, failure to do so may result in administrative penalties.