720-891-1663

Security News for the Week Ending January 15, 2021

US Bulk Energy Providers Must Report Attempted Breaches The Solar Winds attack, from what little we know about it, was bad enough, but what if it was Russia’s trial run for taking down the power grid like they did in Ukraine or taking out the water supply or gas supply? NERC, the electric utility regulator, […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Regulators Update Cyber Security Regs for Electric Utilities

Very few of my readers run electric utilities – those are the ones that these regulations apply to directly. Then there are folks who are suppliers to utilities.  And suppliers to those suppliers.  The new regs require that utilities have a decent vendor cyber risk management program.  That increases the pool of interested parties a […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Bites for the Week Ending February 8, 2019

Text Messaging for Two Factor Authentication is Under Attack We have talked on occasion about a basically theoretical attack against text messages as the second factor for authentication.  It is likely that the feds know more than they are telling us about that since the National Institute of Standards and Technology has deprecated the use […]

Continue reading → [DISPLAY_ACURAX_ICONS]