Female CISOs lead global enterprises through unprecedented change
Supporting organizations that stretched from Colorado to China, security leaders detail COVID tech response.
About SC Media
Government
With Kimsuky APT advisory, gov’t finally shares actionable information
A recent government advisory on the North Korean APT group offered some of the best actionable guidance to security teams that some researchers have seen in a long time.
Twitter hackers lured employees to give up VPN credentials
The attackers that hacked Twitter in July pretended to call from Twitter’s IT department about a VPN issue, then persuaded employees to enter their credentials into a website that looked identical to the real VPN login site. The claims by the hackers were credible – and successful – because Twitter’s employees were all using VPN…
State CIOs face same cyber issues as corporate peers, with budget constraints
States must focus more on digital modernization and improve the role of CISOs, and the cyber issues they face mirror those of broad array of industries. The top barriers state CIOs face sound eerily familiar: lack of sufficient or dedicated cybersecurity budget, inadequate cybersecurity staffing and availability of cybersecurity professionals, and legacy infrastructure and solutions…
More connectivity means greater cyber risk for plane manufacturers
Airplane manufacturers have cybersecurity controls in place and there haven’t been reports of successful cyberattacks on commercial airplane IT systems to date. But evolving cyber threats and increasing connectivity between airplanes and other systems could put future flight safety at risk if the FAA doesn’t prioritize oversight, according to the Government Accountability Office (GAO). An…
Hackers chain Windows, VPN bugs to access government systems
Threat actors have gained access to government networks through a combination of Windows and VPN bugs, a commonly used tactic known as vulnerability chaining in which multiple bugs are used in a single intrusion to compromise a network or application. The recent malicious activity took aim at federal and state, local, tribal and territorial government…
SMEs relearn security basics under COVID’s telework conditions
The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday launched a free “Telework Essentials Toolkit” designed to help businesses to adjust to the realities of working from home during the COVID pandemic. DHS teamed up with the Cyber Readiness Institute (CRI), Global Cyber Alliance and other partners to add these resources to the agency’s dedicated…
Federal watchdog agency pushes proposed White House cyber role into spotlight
Said Rep. Michael Gallagher, R-Wis., co-chair of the Cyber Solarium Commission: “The private sector is at the front lines of cybersecurity – the main effort. Right now, who do they look to in a crisis?”
Commerce imposes prohibitions on TikTok, WeChat
After previously expressing support for Oracle’s planned partnering with TikTok, the Trump administration took a step back from the deal Friday with the Commerce Department putting prohibitions on transactions related to the video-sharing platform and, separately, on the mobile communications app WeChat, both owned by Chinese companies. President Trump had said at a Wednesday news…
FBI opens China-related counterintelligence case every 10 hours
Among the particular concerns, said FBI Director Christopher Wray, is the targeting of managed service providers as a way of attacking multiple victims by hacking just one provider.
Want to read more?
Next post in Security News
