Federal cybersecurity agency on the way?

Posted on May 31st, 2019 by Responsible Cyber

The departments and agencies within the United States government have evolved over time to address modern-day problems and meet the changing needs of citizens. For example, the Department of Homeland Security was created in the aftermath of the September 11th attacks as a measure to improve domestic safety and handle threats of terrorism. Jumping forward […]

Read More

Securing IoT with Dynamic Segmentation

Posted on May 31st, 2019 by Responsible Cyber

The idea of the pending influx of Internet of Things (IoT) devices just waiting to jump on my network is starting to give me heartburn. Sure, you could probably think of all the crazy thermostats and speakers and lightbulbs in your house right now. But what about enterprise or industrial IoT devices? Gas pumps. Badge […]

Read More

U.S. Charges WikiLeaks’ Julian Assange With Violating Espionage Act

Posted on May 31st, 2019 by Responsible Cyber

The United States Justice Department has unveiled charges against WikiLeaks founder Julian Assange with 17 new counts on the alleged violation of the Espionage Act by publishing classified information through WikiLeaks website.If convicted for all counts, Assange could face a maximum sentence of 175 years in U.S. prison for his “alleged role in one of […]

Read More

How to update your Spectre, Meltdown mitigations for the Retpoline mitigation

Posted on May 31st, 2019 by Responsible Cyber

The Spectre and Meltdown vulnerabilities discovered in January 2018 showed that weaknesses in CPUs were a potential attack vector. They allow a rogue process to read memory without authorization. Patches were rolled out along with bios updates from the manufacturer, but they came with a costly side effect: They degraded performance, especially on systems with […]

Read More

Caveat Emptor: Calculating the Impact of Global Attacks on Cyber Insurance – Dark Reading

Posted on May 31st, 2019 by Responsible Cyber

The reality for business owners and CISOs looking to protect their business from a cyberattack is that cyber insurance is not a catchall for protecting against risk and loss. The cyber insurance investigation into the loss potential of the recent ransomware attack on one of the world’s largest aluminum producers, Norsk Hydro, has begun. It […]

Read More

First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records — Krebs on Security

Posted on May 31st, 2019 by Responsible Cyber

The Web site for Fortune 500 real estate title insurance giant First American Financial Corp. [NYSE:FAF] leaked hundreds of millions of documents related to mortgage deals going back to 2003, until notified this week by KrebsOnSecurity. The digitized records — including bank account numbers and statements, mortgage and tax records, Social Security numbers, wire transaction […]

Read More

Satan Ransomware Adds More Evil Tricks

Posted on May 23rd, 2019 by Responsible Cyber

The latest changes to the Satan ransomware framework demonstrate attackers are changing their operations while targeting victims more carefully. The operators and developers behind a 2-year-old ransomware framework, dubbed Satan, continue to expand the codebase, adding exploits for the Spring Web application framework, the ElasticSearch search engine, and ThinkPHP Web application framework popular in China, […]

Read More

KnowBe4 Focuses on Security Culture with CLTRe Acquisition

Posted on May 23rd, 2019 by Responsible Cyber

The acquisition solidifies KnowBe4’s European presence and shows a focus on building and measuring security culture. KnowBe4 today confirmed its acquisition of CLTRe, a Norwegian company that specializes in helping organizations build, assess, maintain, and measure a stronger cybersecurity culture. CLTRe (pronounced “culture”), was founded in 2015 and is headquartered in Oslo, Norway. Its Security […]

Read More

Digital ethics rising in importance

Posted on May 23rd, 2019 by Responsible Cyber

The innovative capabilities of technology – as well as the potency of that technology – are advancing at a remarkable pace, creating new possibilities in today’s digital economy. This is mostly wonderful, with one large caveat: we must keep in mind that just because we have the ability to deploy a new technological innovation does […]

Read More

Google Alerts Admins to Unhashed Password Storage

Posted on May 23rd, 2019 by Responsible Cyber

The company reports it has seen improper access to, or misuse of, affected enterprise G Suite credentials. Google this week informed a subset of enterprise G Suite users that passwords were stored unhashed in its encrypted internal systems. So far, it says, none of them have been accessed or misused. The issue specifically affects business […]

Read More