Tomorrow is the one-year anniversary of the Colonial Pipeline attack. The government has done more to improve cybersecurity in the last year than it had done in the last 10 years. But there is still a lot more to do. Jury Finds Norton/Lifelock Infringed on Two Columbia University Patents Even in the world of cybersecurity, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Here is another short read for you (sorry). For those who read this blog on a regular basis, you know that we talk about supply chain risk a lot. Formally, the government calls it Cybersecurity Supply Chain Risk Management or C-SCRM. Supply chain attacks are very popular because if you pull one off (think SolarWinds), […]
Continue reading → [DISPLAY_ACURAX_ICONS]As we watch hackers compromise systems of both large and small companies in every country every day, it kind of points out the obvious – whatever security program companies that develop software have in place are not adequate to the threat. Up until now, software companies have not suffered because their license agreements say that […]
Continue reading → [DISPLAY_ACURAX_ICONS]You may have heard that Russians with cyber expertise have been leaving the country by the tens of thousands. That represents a big problem for the Kremlin. Russian companies, no different than U.S. companies, need cyber talent to operate their businesses. In addition, especially now, they need cybersecurity talent to protect their businesses – and […]
Continue reading → [DISPLAY_ACURAX_ICONS]Sungard Files for Chapter 11 Bankruptcy Protection – Again Sungard, the king of disaster recovery and business continuity needs to figure out a new business. They previously filed for Chapter 11 in 2019 and shed $800 million in debt, but they have a fundamental problem. As businesses move from private data centers to the cloud […]
Continue reading → [DISPLAY_ACURAX_ICONS]To say that DoD’s plans to enhance the cybersecurity practices of the defense industrial base have not gone exactly as planned would be polite. White House Executive Order 13556, creating controlled unclassified, was issued in 2010. 12 years later, DoD is still wrestling with the issue. DFARS 252.204-7012, which mandated NIST 800-171 compliance, became effective […]
Continue reading → [DISPLAY_ACURAX_ICONS]