Articles

  • Could Costs Impede Info-Sharing Plan?

    Scrutinizing Obama's Cyberthreat Information Sharing Strategy Eric Chabrow - March 4, 2015
    Could Costs Impede Info-Sharing Plan?

    Small and mid-size businesses might not be able to afford participating in voluntary programs to share and receive cyberthreat information, as President Obama has proposed, industry representatives tell Congress.

  • OCC Expands on Third-Party Cyber-Risks

    Director Offers Review of New Cyber-Resiliency Guidance Tracy Kitten - March 4, 2015
    OCC Expands on Third-Party Cyber-Risks

    Kevin Greenfield, director of bank IT for the Office of the Comptroller of the Currency, says FFIEC agencies are working to help financial institutions shore up cybersecurity, and a big focus for regulators is third-party risks.

  • Anthem Refuses Full IT Security Audit

    Watchdog Agency Says Insurer Won't Allow Vulnerability Scans Marianne Kolbasuk McGee - March 4, 2015
    Anthem Refuses Full IT Security Audit

    Anthem Inc. has refused to allow a federal watchdog agency to conduct vulnerability scans of its systems in the wake of its recent massive data breach. The health insurer also refused to allow scans by the same agency in 2013.

  • Gulshan Rai to Head Cybersec at PMO

    CERT-In's Chief to be Special Secretary, Cybersecurity Geetha Nandikotkur - March 4, 2015
    Gulshan Rai to Head Cybersec at PMO

    Sources say Dr. Gulshan Rai, CERT-In's chief, will soon be named special secretary at the PMO to drive cybersecurity strategy. Can this move help enable Modi's vision of a cyber-secured nation?

  • Apple, Android Prep 'Freak' Fix

    Exploiting Crypto Flaw Breaks HTTPS on Devices, Sites Mathew J. Schwartz - March 4, 2015
    Apple, Android Prep 'Freak' Fix

    Many Apple and Android devices are vulnerable to a TLS/SSL "Freak" flaw, which could be exploited to subvert secure Web connections. The flaw is a legacy of U.S. government export restrictions on strong crypto.

  • Dumped Records Case Illustrates BA Risks

    Incident Shows Why Business Associates Are a Big Worry Marianne Kolbasuk McGee - March 3, 2015
    Dumped Records Case Illustrates BA Risks

    A recent incident involving disposed in a vendor's dumpster is an example of why healthcare organizations say business associates taking inadequate security steps ranks as their No. 1 perceived breach threat today.

  • Reversal of Fortune: DHS Funding Approved

    Boehner Persuades Enough GOP Lawmakers to Back Measure Eric Chabrow - March 3, 2015
    Reversal of Fortune: DHS Funding Approved

    Congress has voted to fund the Department of Homeland Security through September, the end of the fiscal year, averting another threatened shutdown that would have curtailed some cybersecurity programs.

  • Hackers Breach Canadian ISP Rogers

    Data Theft Traces to Social Engineering Attack Mathew J. Schwartz - March 3, 2015
    Hackers Breach Canadian ISP Rogers

    Canadian Internet service provider Rogers Communications has confirmed that information about the company and its customers was leaked after attackers successfully targeted one of its employees via a social engineering attack.

  • GAO Sees FAA Air Traffic System at Risk

    Lawmakers Want FAA to Explain How It Will Fix Problems Eric Chabrow - March 3, 2015
    GAO Sees FAA Air Traffic System at Risk

    Because of lax information security controls, the systems that control air traffic in the United States are at "increased and unnecessary risk," GAO says. Leaders of the congressional panels with FAA oversight want to know why.

  • Anthem Attribution to China: Useful?

    Report Links Breach to Chinese Professor; Experts Respond Mathew J. Schwartz - March 3, 2015
    Anthem Attribution to China: Useful?

    A new report details new clues suggesting that the massive data breach involving health insurer Anthem was launched by Chinese hackers. But will such evidence help businesses blunt future APT attacks?

ARTICLE ENISA Warns of Internet Vulnerabilities

ENISA - the EU agency responsible for bolstering European cybersecurity practices - is calling on...

Latest Tweets and Mentions

ARTICLE ENISA Warns of Internet Vulnerabilities

ENISA - the EU agency responsible for bolstering European cybersecurity practices - is calling on...

The ISMG Network