Thank you to Mr. Krebs for the excellent coverage. Whether this announcement by the FBI and Cisco is truly urgent or a little more cautious than necessary, the underlying security procedures are sound. Please keep your firmware current. Rotate all your system passwords and use stronger randomized values whenever possible. These simple steps can provide better, long term security.
https://krebsonsecurity.com/2018/05/fbi-kindly-reboot-your-router-now-please/
This is certainly an interesting read. I particularly agree that a shift to Integrity and Availability is coming. Users are finally starting to understand that cyber threats are not purely matters involving the confidentiality of data. Uptime and reliability of information are becoming more and more paramount in the minds of the average data consumer.
I am also intrigued by the various paths that blockchain technology is taking. This is a technology evolution worth paying close attention to.
GDPR is upon us this week. This is an update with some guidance from the team at Cisco.
It is always good to receive clarification from the PCI Council and these minor changes are both relevant and timely. Enjoy!
I cannot understate the danger of shadow IT. It bypasses security processes, testing procedures, tools, patching mechanisms and almost everything else in place to properly defend an organization. This article is a cringe worthy example.
For all my friends at a financial institution, this article should cause you to pause and and ponder for just a moment. Ransomware is not going anywhere. Advanced malware protection, user training, sound tested backups and overall diligence are vital to safety and security.
https://betanews.com/2018/05/22/financial-institutions-ransomware/
The saga surrounding the Spectre and Meltdown vulnerabilities continues. New potential variants have been discovered and should be yet another motivator to update and patch accordingly.
https://www.infosecurity-magazine.com/news/new-variants-found-in-spectre-and/
The content of this series has been outstanding and the advice is both sound and timely. Please take a moment and read through this article and the associated entries concerning the CIS Controls. It could save your data!
So many words to describe the statistics shared in this article – sad, depressing, pathetic, lazy…did I mention sad and depressing. There really is no reason for this. Strong, safe, effective password managers exist. They are free or cost effective. They are easy to use. They truly save time and money. We really have no good excuse to be in this situation.
Virtual Sweater Vest 