If you have tried to get cyber risk insurance recently, you know that it is a whole new world. After years of collecting premiums, insurance companies have had to write checks. A lot of checks. They don’t like that so much. As a result, premiums have gone up, coverage has gone down, underwriting has become…
For those of you who are DoD contractors (and even if you are not), here is one thing that you can do that will improve your security program and, if you are a DoD contractor, will add 20 or more points to your NIST SP 800-171 SPRS Score. Audio Video
This week’s security news includes: College closes after 157 years after ransomware attack A really bad idea Ya can’t tell the players without a scorecard Microsoft to offer human-based security services This month’s patch Tuesday NIST plans to ask for comments on updates to Controlled Unclassified Information publications UK Sanctions Russian chip makers Prince Charles…
This week’s security news includes: White House releases orders to deploy quantum computing resistant encryption CISA releases secure cloud business applications (SCBA) technical reference architecture And now there are five – Connecticut joins the club Dark patterns – continued SEC doubles the size of its cryptocurrency fraud unit President signs better cybercrime metrics act NIST…
This week’s security news includes: French fiber cables cut in acts of sabotage Apple launches self-service repair store Google Play Store adds App Data Safety section Microsoft Announces Edge Secure Network Google will now let you remove some PII from their search results Breach reporting: 30 days? 4 days? 6 hours? get ready CFPB to…
Do you have to comply with CMMC? Here is an update with the current status of things – along with a little history – as of today. Audio Video
This week’s security news includes: Lakeview Loan Servicing reports breach Police pull over driverless vehicle – not sure what comes next Hackers are exploiting Spring4Shell to spread Mirai NIST plans to update the NIST Cybersecurty Frameword Cisco patches wireless controller login bypass Apache says Struts 2 patch – well not really patched Login.gov to hold…
This week’s security news includes: ATMs and medical devices at risk due to Access:7 bugs NSA says OpenSSL vulnerability can ‘definitely be weaponized’ Windows Autopatch coming this summer PHP package manager PEAR had critical flaw undiscovered for 15 years VMWare patches Spring4Shell RCE flaw in multiple products Senate confirms Maj. Gen. Maria Barrett as head…
Many of us use password managers and some of us use multi-factor authentication apps and, in many cases, that app lives on your phone. But what happens if your phone breaks, gets dropped in the toilet or run over by your car? What do you do then? I learned some things today and have some…
This week’s security news includes: Kaspersky deemed national security threat Administrator at Yale admitted to stealing tens of millions of dollars – insider threat on steroids Opt-out from major credit bureaus selling your data Hacked WordPress sites make visitors DDoS Ukrainian targets SonicWall releases critical patch for some of its firewalls Gitlab patches critical account…
