Category Archives: Cyber

Subscribe to Cyber RSS Feed

Duh! Cybersecurity for Small Businesses Include Backup and Mobile!!

Darkreading.com reported big “cybersecurity challenges aren’t limited to large organizations. Small and medium-sized organizations are subject to the same vulnerabilities, exploits, and attacks that plague multi-national enterprises.”  The April 8, 2019 report entitled “8 Steps to More Effective Small Business Security” included these comments about #6 Don’t Take Backup/Recovery for Granted: Ransomware is a wonderful … Continue reading this entry

Can Cybersecurity Pros develop more business acumen?

Darkingreading.com posted a story included a reference to an ISACA survey on the State of Cybersecurity 2019 that “49% of security leaders believe the biggest skills gap they see in today’s cybersecurity professionals is in that very arena — the ability to understand the business.”  The April 3, 2019 story entitled “6 Essential Skills Cybersecurity … Continue reading this entry

If you use Office365 think about this - about 40% of Organizations are not doing enough to protect Office365 Data!

Darkreading.com reported that “Based on responses from more than 1,000 IT professionals, business executives, and backup administrators, Barracuda found that 40% of IT organizations surveyed don’t use third-party backup tools to protect Office 365 data.” The March 28, 2019 article entitled “40% of Organizations Not Doing Enough to Protect Office 365 Data” included these comments … Continue reading this entry

$100M+ guilty plea for Spearphishing (BEC – Business Email Compromise)!

The Department of Justice reported that “a Lithuanian citizen, pled guilty today to wire fraud arising out of his orchestration of a fraudulent business email compromise scheme that induced two U.S.-based Internet companies (the “Victim Companies”) to wire a total of over $100 million to bank accounts he controlled.”  The March 20, 2019 press release … Continue reading this entry

Only 47% companies train employees to recognize spear phishing!

Darkreading.com reported about the results of the February 2019 report from the Ponemon Institute and commissioned by Experian “Is Your Company Ready for a Big Data Breach?” which “polled 643 professionals in IT and IT security on their organizations’ data breach response practices…[less] than half (47%) educate employees on spear-phishing.”  The March 5, 2019 report … Continue reading this entry

Cloud Cyber Threat Looms Large!

Dark reading.com reported that the second annual “Oracle and KPMG Cloud Threat Report 2019,” that “But the cloud is fraught with security challenges: Shadow IT, shared responsibility, and poor visibility put data at risk.” The February 20, 2019 report entitled “As Businesses Move Critical Data to Cloud, Security Risks Abound” included these comments: While many cloud … Continue reading this entry

PRIVACY STUDY: GDPR readiness appears to help avoid cyber intrusions!

Cisco issued a Study that “GDPR-ready organizations have also experienced fewer data breaches, and when breaches have occurred, fewer records were impacted, and system downtime was shorter. As a result, the total cost of data breaches was less than what organizations not ready for GDPR experienced.” The January 2019 “Data Privacy Benchmark Study” is part … Continue reading this entry

Cyberrealm defense – McKinsey gives advice about how to thwart cyberattacks!

McKinsey released a Podcast interview of three McKinsey Cybersecurity experts who said among other things “I think the key insight of the last ten years has been that you can’t do cybersecurity in secret. You can’t do it behind a wall in the intelligence agencies. For the obvious reason that the attacks are out there … Continue reading this entry

Watch out because the CryptoRansom may be directed to you!

CBSnews.com reported that “68-year-old Anne-Elisabeth Falkevik Hagen has been missing since Oct. 31.”  The January 9, 2019 article entitled “Norwegian billionaire Tom Hagen’s wife being held for ransom” included these comments about her husband Tom Hagen a real estate investor and owner of power facilities whose “fortune in 2018 amounted to nearly 1.7 billion kroner … Continue reading this entry

First State Bar Launches Privacy Certification

Law.com reported that “The North Carolina State Bar recently founded a privacy and information security law certification. In the absence of a federal privacy law, such certifications could become common in other states.” The September 21, 2018 report entitled “North Carolina State Bar Launches Privacy Certification Amid Growing Cyber Focus” included these comments: Right now … Continue reading this entry

Arrest of three for DDoS-for-hire services may make your holiday season less chaotic!

The Department of Justice issued a new release about the arrest of 3 people who managed 15 Internet domains for “sites, which offered what are often called “booter” or “stresser” services, allowed paying users to launch powerful distributed denial-of-service, or DDoS, attacks that flood targeted computers with information and prevent them from being able to … Continue reading this entry

IoT Privacy Threat – Hacker takes over Baby Cam!

The Washington Post report included this recommendation about baby cameras “The first is to change your camera’s password to something that isn’t ’1111111′ or ‘iloveyousweeties,’… ”  The December 20, 2018 report entitled “‘I’m in your baby’s room’: A hacker took over a baby monitor and broadcast threats, parents say” included these comments about IoT including … Continue reading this entry

IoT Alert for the Holidays! Be wary of POS devices!

Darkreading.com reported that “Almost every retail store in existence has at least one point-of-sale (POS) machine to quickly process credit cards and allow their customers to make transactions. Some of the largest retailers may have hundreds of machines in a single location, or thousands of them deployed worldwide.” The December 14, 2018 article entitled “Retailers: … Continue reading this entry

Surprise! Users fall for fake Virus Alerts!

The New York Times reported that “one in five recipients actually talks to the fake tech-support centers, and 6 percent ultimately pay the operators to “fix” the nonexistent problem, according to recent consumer surveys by Microsoft.” The November 28, 2018 report entitled “That Virus Alert on Your Computer? Scammers in India May Be Behind It” … Continue reading this entry

How is this possible? The Japanese cybersecurity minister doesn’t get cybersecurity?

The Washington Post reported that “Japan’s cybersecurity minister, ….has now admitted he’s not that familiar with the whole cybersecurity…” which is an update to my recent blog “What’s wrong with this news? Japan’s Cybersecurity Minister has never used a computer!”  The Washington Post November 23, 2018 article entitled “Japan cybersecurity minister who doesn’t use computers … Continue reading this entry

What’s wrong with this news? Japan’s Cybersecurity Minister has never used a computer!

The New York Times reported “Japanese lawmakers were aghast on Wednesday when Yoshitaka Sakurada, 68, the minister who heads the government’s cybersecurity office, said during questioning in Parliament that he had no need for the devices, and appeared confused when asked basic technology questions.” The November 15, 2018 Report entitled “Minister in Charge of Japan’s … Continue reading this entry

China infiltrated the US with tiny chips!

Bloomberg News reported that “The attack by Chinese spies reached almost 30 U.S. companies, including Amazon and Apple, by compromising America’s technology supply chain…”. The report entitled “The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies” and included these details: In 2015, Amazon.com Inc. began quietly evaluating a startup called Elemental … Continue reading this entry

IoT Hackers plead guilty and get no jail time!

Darkreading.com reported that after substantial cooperation with the FBI that the three “…men charged with creating and managing the Mirai botnet have pleaded guilty to conspiracy to violate the Computer Fraud & Abuse Act and have been sentenced to a five-year period of probation and 2,500 hours of community service.” The September 19,2018 report entitled … Continue reading this entry

Silent Cyber Growing (lack of cyber insurance coverage)!

My friend Judy Greenwald reported for BusinessInsurance.com that “Silent cyber, cyber losses that affect insurance policies not specifically designed to cover cyber risk” was significant and that a “survey of close to 700 participants from more than 100 insurance companies found that in 2017, fewer than half of respondents estimated the silent cyber risk to … Continue reading this entry

Cyberattacks in Germany cost $50 billion!

Reuters reported about “Bitkom surveyed 503 top managers and security chiefs from across Germany’s manufacturing sector” and reported that “Two thirds of Germany’s manufacturers have been hit by cyber-crime attacks, costing industry in Europe’s largest economy some 43 billion euros ($50 billion),…”. The September 13, 2018 article entitled “Cyber attacks cost German industry almost $50 … Continue reading this entry

Cyberattack on BA customers compromises 380,000+ credit cards!

Reuters reported that “British Airways was forced to apologize on Friday after the credit card details of hundreds of thousands of its customers were stolen over a two-week period in the most serious attack on its website and app.”  The September 6, 2018 reported entitled “BA apologizes after 380,000 customers hit in cyber attack” included … Continue reading this entry

Cyberattacks directed at local governments may reduce credit ratings!

Reuters reported that a report from S& P Global Ratings indicates that credit “risks stemming from cyberattacks on U.S. cities, school districts and other municipal bond issuers are likely to grow as the public sector remains an easy target for hackers.”  The August 22, 2018 report entitled “Cyberattacks heighten credit risks in U.S. public sector: … Continue reading this entry

G20 countries skeptical about cryptocurrencies & Blockchain

Law.com reported that “crypto assets, which include cryptocurrencies, tokens, and ICOs, ‘raise issues with respect to consumer and investor protection, market integrity, tax evasion, money laundering and terrorist financing.’” The August 6, 2018 article entitled “G20 Countries’ Cryptocurrency Regulations Highlight Contradictory Blockchain Realities” included these comments: At the 2018 G20 international forum, finance ministers and … Continue reading this entry

WOW! Cyber theft of $1.1 billion of cryptocurrencies in the past 6 months!

Bankinfosecurity.com reported that to “steal cryptocurrency, attackers continue to leverage malware, phishing attacks and fake advertising campaigns.”  The June 12, 2018 article entitled “Cryptocurrency Theft: $1.1 Billion Stolen in Last 6 Months” included the comments from endpoint security firm Carbon Black “which analyzes cryptocurrency attacks that have been seen over the past six months”:   … Continue reading this entry