Long before quantum computing becomes “main stream”, state actors will have access to it. In part, because they command large budgets; in part because it is important to them. Why do they care? Because, it will allow them to decrypt both communications that they intercept going forward and communications that they have intercepted in the […]
Continue reading → [DISPLAY_ACURAX_ICONS]As I said yesterday, some EOs are a couple of paragraphs long. This one goes on for pages. Today’s post is going to cover the section of the EO that addresses supply chain risk. Supply chain risk, as we saw in both the SolarWinds and Microsoft Exchange attacks, is a huge problem. So what does […]
Continue reading → [DISPLAY_ACURAX_ICONS]What could go wrong? As we rush headlong to deploy billions of Internet of Things devices with no regard to security, that doesn’t make security problems go away. Security researchers today disclosed nine vulnerabilities affecting implementations of the Domain Name System protocol in popular TCP/IP network communication stacks running on at least 100 million devices. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Fitch Ratings, one of the big creditworthiness ratings firms for businesses, published an alert today regarding the impact of cyberattacks on an organization’s creditworthiness. Their ratings affect an organization’s ability to borrow money because they are worried that unexpected events like cyberattacks could pose financial and operating risks that ultimately affect an organization’s ability to […]
Continue reading → [DISPLAY_ACURAX_ICONS]NSA Director General Paul Nakasone testified before the Senate Armed Services Committee about the recent SolarWinds and Microsoft Exchange hacks. He said that foreign hackers are taking advantage of the Intelligence community’s blind spot – adversaries working INSIDE the United States. Our adversaries can come into the United States, set up shop on the web, […]
Continue reading → [DISPLAY_ACURAX_ICONS]After SolarWinds and after the Microsoft Exchange attacks, the feds have begun to outline their plans to improve cybersecurity. While there are no silver bullets in this business, it is a nice change to see the feds actively working to improve things. The way the feds have worked things in the past is to use […]
Continue reading → [DISPLAY_ACURAX_ICONS]