720-891-1663

State Department Still Pwned

Homeland Security Today and others are reporting that three months after the State Department admitted that hackers had gotten into their unclassified email system, the hackers are still there.  (see article) While it is always fun to beat up government bureaucracies, it points out that sometimes getting hackers out is a hard thing to do. […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Lawmaker says assume the bad guys are going to get in and focus on detection, mitigation and damage control

Representative Will Hurd (R-TX), is the head of the House  Information Technology Subcommittee and a former CIA Agent who spent 9 years in Afghanistan, Pakistan and India, working on counter terrorism and cyber security before working for the cyber security firm FusionX. He has a somewhat depressing but very accurate view of cyber security. In […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Company Bilked Out Of $17 Million in Spear Phishing Attack

Scoular Company, a $6 Billion, 800 employee commodities trading company got bilked out of a little more that $17 million in a modified spear phishing attack. Simply put, the attacker generated emails over time last summer to the company’s CFO that looked like they came from the company’s CEO and their Auditor that instructed the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Director And Officer Liability

Brenda Sharton, Senior Partner and member of the executive committee at Goodwin Proctor (see bio) wrote this week about director and officer personal liability for data security breaches. While no individual directors and officers have been held liable for the costs of a data breach yet, it is not for lack of trying. Ms. Sharton’s […]

Continue reading → [DISPLAY_ACURAX_ICONS]