Collaborate Disseminate
When asked during congressional testimony last week, Federal Reserve Chairman Jerome Powell, who was appearing in front of the House Committee on Financial Services, told lawmakers that the number one threat to the stability of the U.S. financial syste… Continue reading Cyberattack biggest threat against U.S. financial system
Last week the Security Service of Ukraine (SBU) announced that VPNFilter malware made it into the nation’s critical infrastructure. This serves as a reminder that all critical infrastructure organizations, from utilities to chemical man… Continue reading Global critical infrastructure remains under significant cyber attack
A new State of the Internet/Security: Web Attack report finds the number of distributed denial of service attacks to be growing, already up 16 percent over all of last year. The report also found that Russia and China are initiating the most crede… Continue reading DDoS attacks grow more popular, targeted
There are many reasons why enterprise security teams struggle to succeed in better managing the risks positioned against their data and business-technology systems. Sometimes these obstacles come from elsewhere within the organization, and sometimes th… Continue reading Four ways security teams sabotage their own efforts
Your staff hates security processes. Of course, this isn’t something we didn’t already know. Antivirus software slows down their machines, and remembering zillions of passwords is a hassle. VPN software is often kludgy and most every other … Continue reading Employees remain obstacle to security
It’s time for passwords to die, they said. Passwords are antiquated and don’t provide the level of security needed, they said. This was the marketing mantra of many an authentication and identity management vendor — 20 years ago. Of c… Continue reading Biometrics (finally) gaining widespread acceptance
It’s been a long time coming. The U.S. Commerce Department’s National Institute of Standards and Technology (NIST) recently released version 1.1 of the Framework for Improving Critical Infrastructure Cybersecurity, or affectionatey called t… Continue reading NIST updates cybersecurity framework
The deadline to GDPR (the EU’s General Data Protection Regulation) is now about a month away. Guess what? One-third of SMBs still aren’t ready to comply, according to Janco Associates. The consultancy reviewed the compliance plans of … Continue reading As GDPR deadline looms, readiness lags
It’s hard to find (read: near impossible) an organization that thinks it has all the cybersecurity expertise that it needs. Whether it’s finding good CISOs, cloud security architects, application security experts, or whatever — findin… Continue reading OPM provides guidance to address cybersecurity skills gap
In identity management, privileged accounts pose special risks. These types of accounts generally grant higher levels of access than typical accounts. They provide high levels of access to endpoint operating systems, servers, databases, identity direct… Continue reading Privileged identity management set to rise through 2022