The Senate Homeland Security and Governmental Affairs Committee approved a new bill intended to strengthen the Federal Information Security Management Act on June 25. The bill heads to the Senate floor for a full vote next. Introduced by committee chairman Sen. Tom Carper (D-Del.) and Sen. Tom Coburn (R-Okla.), the new legislation would amend the…
DetailsAccording to one of the founders of ProtonMail, a secure email startup, PayPal had suspended their account. A PayPal representative reportedly questioned the legality of an encrypted email solution. ProtonMail is hosted in Switzerland specifically to provide assurances to users that there is no legal jurisdiction for the US to interfere with it, as it…
DetailsCongressman Alan Grayson made waves last week when he sent letters to the Securities Industry and Financial Markets Association(SIFMA), the Consumer Bankers Association, and the Financial Services Roundtable assailing former head of the NSA, Keith Alexander. In each letter Grayson cited a Bloomberg article that revealed that Alexander’s new consulting firm was commanding hefty fees…
DetailsFlorida Governor Rick Scott signed into a law what may be the nation’s broadest and stringent data breach law. The Florida Information Protection of 2014, which was signed last week, requires companies to take “reasonable measures” to protect and secure personally identifying information in electronic form. The new law also increases companies’ reporting and disclosure…
DetailsAs predicted (by me) email encryption solutions are proliferating rapidly. All it took was a threat actor to appear on the scene. The first time I met Mark Rasch we shared a stage a Detroit event in the ‘90s. He made a comment that stuck with me. “If email was easy to intercept we would…
DetailsMicrosoft launched a preview of a new security and threat information exchange platform to allow security professionals to share information about ongoing threats. Called Interflow, Microsoft’s threat sharing platform will let customers exchange information such as suspected malicious URLs and IP addresses, analysis of malware, and attack signatures, Microsoft said Monday. Having access to the…
DetailsTallinn 2007 was indeed a wake up call for NATO. The massive amounts of distributed denial of service (DDoS) attacks against websites, communications, and even Estonian Parliament members’ fax machines, arising from Russian intimidation caused a lot of soul searching and ignited efforts to formulate cyber policies in many nations. But the threat of cyber attack…
DetailsThird-parties are an expansion of the corporate network. They’re a necessity providing a range of services which are better off outsourced than to try and do in-house. Often-times third-parties are less expensive and more efficient which has become attractive to business leaders to maintain or gain a competitive advantage. The expansion of the corporate footprint not…
DetailsClouldFlare, the CDN like DDoS defense and security service, announced the acquisition of CryptoSeal, a personal VPN service, this morning. Ryan Lackey, CryptoSeal’s founder told securitycurrent that his class of 2011 Y Combinator backed venture had already been leveraging CloudFlare’s infrastructure. A quick conversation with CloudFlare’s CEO, Mathew Prince, revealed that this acquisition is as…
DetailsDespite concerns about the economy, organizations are still investing in technology and in their employees, according to a recent IT skills and salary survey. IT professionals can control their worth and value to the organization. More than two-thirds of IT professionals said skills and certification-oriented training positively impacted base salaries, according to a recent skills…
Details