Cyber

Subscribe to Cyber via RSS

The Security and Exchange Commission (SEC) issued a press release about “adopted rules requiring registrants to disclose material cybersecurity incidents they experience and to disclose on an annual basis material information regarding their cybersecurity risk management, strategy, and governance. The Commission also adopted rules requiring foreign private issuers to make

Continue Reading Wake-up! The SEC adopts new Cybersecurity Rules!

Darkreading.com reported that “One trend we’ve seen in recent years is a rise of “as-a-service” offerings. Early hackers were tinkerers and mischief-makers, tricking phone systems or causing chaos mostly as an exercise in fun. This has fundamentally changed. Threat actors are professional and often sell their products for others to

Continue Reading Are we at the Golden Age of AI Spearphishing (BEC) Cybersecurity threats?

Darkreading.com reported these comments from Check Point researchers “The research also highlights the “alarming” role USB drives play in spreading malware quickly and often unbeknown to users — even across air-gapped systems. “These malicious programs possess the ability to self-propagate through USB drives, making them potent carriers of infection

Continue Reading New USB drive malware spreading across the world!

BankInfoSecurity.com reported that “Law enforcement and regulatory action over the past year in the United States most likely dissuaded hackers from stealing cryptocurrency, making the amount stolen in the first quarter of the year the lowest compared to each of the four quarters in 2022.”  The May 23, 2023 article

Continue Reading Crypto Hacks in 2023 have declined in 2023, but likely to Increase!

GovInfoSecurity.com reported that “Executive liability, where decision-makers face personal liability for making professional decisions, is a topic trending yet again as former Uber CSO Joe Sullivan was recently sentenced to probation and a fine for his role in covering up a data breach that affected tens of millions of Uber

Continue Reading Should CISOs be liable for making business decisions?

Darkreading.com reported that “A recent study shows that 77% of IT professionals believe that shadow IT is becoming a major concern in 2023, with more than 65% saying their SaaS tools aren’t being approved.”  The April 21, 2023 article entitled “Shadow IT, SaaS Pose Security Liability for Enterprises” (https://www.darkreading.com/edge-articles/shadow-it-saas-pose-security-liability-for-enterprises

Continue Reading Shadow IT & SaaS remain major security threats!

Darkreading.com reported that “Extended IoT devices (xIoT) stand as a perennial favorite for cyberattackers seeking to move laterally and establish persistence within enterprise networks. They’ve got everything the bad guys need for a foothold: They’re grossly under secured, they’re present in large numbers (and in sensitive parts of the network)

Continue Reading Watch out of unsecure xIoT (extended IoT devices)!

Darkreading.com reported that “In a survey released last week, 42% of the more than 400 IT and security professionals surveyed — and 71% of those in the United States — maintain that they have been instructed to keep a data breach confidential when they knew the incident should be reported.”

Continue Reading 71% of IT Professionals advised to not report a cyber incident!

Darkreading.com reported “Russia’s invasion of Ukraine spurs Space Force to seek astronomical investments in cybersecurity.” The March 31, 2023 article entitled “US Space Force Requests $700M for Cybersecurity Blast Off” (https://www.darkreading.com/cloud/us-space-force-wants-700m-cybersecurity) included these comments:

US Space Force top brass have requested a $700 million investment in cybersecurity as

Continue Reading US Space Force requests $700M for Cybersecurity!