While there are plenty of private companies that were compromised by the SolarWinds attack, more importantly, many federal government departments and agencies including Treasury, State, the Nuclear Management folks, the FAA and others were compromised and information was stolen. Congress is getting into the act; we will see if anything positive happens or Congress loses […]
Continue reading → [DISPLAY_ACURAX_ICONS]Now that the power is mostly back on in Texas and the majority of people can drink the water, the what-iffing begins. This is relevant because Texas is far from alone. They just got caught this time and they will be pilloried – for the most part appropriately – as a result. #1 – According […]
Continue reading → [DISPLAY_ACURAX_ICONS]Early this month, New York’s Department of Financial Services, the regulator for banks and insurance companies, issued guidance on cybersecurity insurance. Unfortunately, the guidance was not to insurance customers; it was for insurance companies. The regulator is concerned that big breaches may cause insurance companies to go out of business. DFS advised insurers against paying […]
Continue reading → [DISPLAY_ACURAX_ICONS]If you read the security news or talk to security vendors, the buzz word of the year is ZERO TRUST. Many vendors tell you that they have the zero trust answer. The reality is a lot more complex. Zero trust is not a product or even a family of products. It is not a platform. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Last October Wilmington Surgical Associates was dealing with a ransomware attack. Allegedly, the Netwalker ransomware group stole 13 gigabytes of data, which in today’s world easily fits on a flash drive, and leaked that data online. The patients of the North Carolina clinic whose data was stolen and leaked are seeking “redress for its unlawful […]
Continue reading → [DISPLAY_ACURAX_ICONS]I have been talking a lot about supply chain risk lately and there is a good reason. From open source products with backdoors like Webmin or Rubygems to NotPetya a few years ago which shut down many companies around the world to the recent attacks against SolarWinds or Centreon, supply chain attacks are running rampant. […]
Continue reading → [DISPLAY_ACURAX_ICONS]