US Bulk Energy Providers Must Report Attempted Breaches The Solar Winds attack, from what little we know about it, was bad enough, but what if it was Russia’s trial run for taking down the power grid like they did in Ukraine or taking out the water supply or gas supply? NERC, the electric utility regulator, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Very few of my readers run electric utilities – those are the ones that these regulations apply to directly. Then there are folks who are suppliers to utilities. And suppliers to those suppliers. The new regs require that utilities have a decent vendor cyber risk management program. That increases the pool of interested parties a […]
Continue reading → [DISPLAY_ACURAX_ICONS]Text Messaging for Two Factor Authentication is Under Attack We have talked on occasion about a basically theoretical attack against text messages as the second factor for authentication. It is likely that the feds know more than they are telling us about that since the National Institute of Standards and Technology has deprecated the use […]
Continue reading → [DISPLAY_ACURAX_ICONS]