Since it seems that fully remote work and hybrid work are not going away anytime soon, we need to make sure that remote workers are secure. It is not going away because the best employees will find another job rather than be forced to come into the office. Forester Research says 68% of remote workers […]
Continue reading → [DISPLAY_ACURAX_ICONS]While the Pentagon grinds agonizingly slowly towards improved cybersecurity with CMMC, the hackers continue to make them look like amateurs. Congress doesn’t seem to be much help in the crisis. Last week the DoD Inspector General crucified the DoD’s operational units for doing a uniformly bad job at protecting Controlled Unclassified Information or CUI. Government […]
Continue reading → [DISPLAY_ACURAX_ICONS]Criminal or Whistleblower? The hacker behind the Football Leaks scandal, Rui Pinto, a 34 year old Portuguese national, currently faces 377 charges for blowing the lid off the tax fraud, corruption and other wrongdoing in the $3 billion European soccer business. One club alone, Manchester City, faced over 100 counts of financial misconduct as a […]
Continue reading → [DISPLAY_ACURAX_ICONS]Zero Trust is a buzzword these days. People say that it is a key tool in the security practitioner’s arsenal, but what is it anyway. Here is what the core elements are, according to NIST’s zero trust framework. That means those “software functions” in the cloud. Each of them. Each of them is a resource. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Law firms getting breached is, unfortunately, no longer big news. Law firms Orrick, Herrington & Sutcliffe, Cadwalader, Wickersham & Taft, Loeb & Loeb and Gibson, Dunn and Crutcher all reported breaches to the California attorney general in July. Bryan Cave Leighton Paisner also reported a breach recently. All of these are very large firms. Imagine […]
Continue reading → [DISPLAY_ACURAX_ICONS]While legislators in a variety of countries are trying very hard to ban encryption, vulnerabilities in existing encryption implementations are surfacing. While none of the proposed encryption bans are laws yet in the U.S., it doesn’t mean that people aren’t trying. More importantly, companies have for years thought that security by obscurity is a good […]
Continue reading → [DISPLAY_ACURAX_ICONS]