The Cyber Safety Review Board — launched earlier this year, led by DHS and composed of top federal cybersecurity officials and private sector experts — will examine the tactics the group has used to break into the networks of some of the largest businesses in the world and develop “actionable recommendations” to protect organizations, customers and employees.
Many of the organizations targeted by the group are designated as critical infrastructure, with the agencies flagging the financial services, government, healthcare, manufacturing and information technology sectors as top targets.
A survey of 300 U.S. defense contractors find many still fail to meet baseline cybersecurity standards or utilize modern technologies for monitoring threats. Experts told SC Media the findings underscore how much work the Pentagon and industry have to protect the valuable intellectual property and unclassified data that underpins U.S. military superiority.
After reports detailing the scraping of hospital data by Meta Pixel tools and other tracking tech and several breach notices, OCR blasts the likely privacy violations and reminds providers of HIPAA requirements.
Much has been said about the loss of threat intel sharing that can come from the souring among infosec practitioners to the Elon Musk era of Twitter – a platform used extensively to disclose cyber incidents and to promote patching of critical vulnerabilities, among other things. But Twitter serves another purpose for infosec practitioners: a more human one.
The Irish Data Protection Commission, Meta’s main privacy watchdog in the European Union, levied the fine following disclosure of an investigation in the spring of 2021 that revealed over 530 million Facebook users’ information had been leaked on a public forum.