SCWorld.com reported that “A conflict has unfolded within the security operations center (SOC). For decades, security teams have balanced their financial needs and security needs to determine which data they should use and maintain to secure their organizations. However, as data volumes and storage costs continue to soar, this imperfect
Continue Reading Aging legacy SIEMs need to be replaced with Next-Gen SIEMs!
SCworld.com reported that “As Al continues to transform how cybersecurity services are delivered, it’s crucial to choose a security service provider that leverages Al responsibly and effectively. The following checklist will help you assess a provider’s Al capabilities, focusing on their ability to integrate Al in ways that improve security
Continue Reading 8 important things to do evaluate AI-augmented cybersecurity providers!PWC.com reported that “Yet despite widespread awareness of the challenges, significant gaps persist. To safeguard their organisations, executives should treat cybersecurity as a standing item on the business agenda, embedding it into every strategic decision and demanding C-suite collaboration.” The PWC report entitled “Findings from the 2025 Global Digital Trust Insights”
Continue Reading Only 2% of organizations have implemented adequate Cyber resilience!
BankInfoSecurity.com reported that “The cybersecurity industry is suffering from a stagnant workforce, a growing skills gap and a worldwide shortage of nearly 5 million qualified professionals. Despite increasing demand, many organizations struggle to fill critical roles, hindered by budget constraints and a highly competitive market for specialized skills in areas
Continue Reading Can you believe that there are more than 4.8 million unfilled Cybersecurity jobs?
SCMagazine.com reported that “Hackers are using cloud service attacks as a way to go after big-money targets in the insurance and financial industries.” The September 11, 2024 article entitled “Hackers use cloud services to target financial and insurance firms” (https://tinyurl.com/ysr2z33d) included these comments:
The most common targets in
Continue Reading Are you surprised that Cloud Services are cyber targets?
GovInfoSecurity.com reported that “The U.S. Department of Defense still hasn’t addressed a series of critical cybersecurity gaps in its information technology business programs – two years after a government watchdog agency first urged the department to develop security strategies for each program.” The July 15, 2024 article entitled ” DOD
Continue Reading Apparently DOD is not fixing critical cybersecurity gaps!
SCMagazine.com reported that “Network security controls are no longer reliable or sufficient. They are easily evaded, prone to false positives, and feed a costly ecosystem of alert management and incident response.” The July 8, 2024 article entitled “Alert overload? There’s a better way to secure your network” (https://tinyurl.com/4jmcb7sz)
Continue Reading Are we at a crucial Cyber Alert overload?
My January 2018 blog was titled “Cybersecurity Software: Kaspersky Lab filed a lawsuit against US government to enjoin federal ban!” (https://tinyurl.com/3pkhtums) and now GovInfoSecurity.com is reporting that “Senior executives of Russian cybersecurity firm Kaspersky face new restrictions against doing business in Western countries following an announcement Friday morning
Continue Reading Kaspersky Executives were Sanctioned, but old news going back to at least 2018!
BankInfoSecurity.com reported that “Critical infrastructure sectors face many potentially disruptive threats such as supply chain vulnerabilities, climate risks and the growing dependency on space-based systems. But the top cyberthreats facing the U.S. are nation-state adversaries in People’s Republic of China and emerging risks associated with artificial intelligence and quantum computing,…”
Continue Reading AI is critical to a successful Public-Private Cyber Collaboration in the US!
BankInfoSecurity.com reported that “Companies are significantly expanding their SEC cyber risk disclosures as they aim to demonstrate their cybersecurity efforts, instill market confidence and potentially improve stock prices, according to Kayne McGladrey, field CISO, Hyperproof.” The June 12, 2024 article entitled ” SEC Cyber Risk Disclosures: What Companies Need to
Continue Reading Are you prepared to report Cyber attacks to the SEC?