Ransomware Response — A Better Way
On March 15, 2020, during the height of the COVID-19 pandemic, hackers attacked the Department of Health and Human Services (HHS) servers. In the past, computers belonging to hospitals, doctor’s…
Details
BEC and Call – Business E-Mail Compromise Leads to Liability
When William Darby went to work as a securities broker in October of 2018, little did he know that he was going to not only have a bad day, but…
Details
NSA and FBI Take Different Paths for Cybersecurity
When NSA security researchers learned that the methods used by Microsoft Windows 10 machines to examine digitally signed code (like that used to install patches) had a vulnerability which would…
Details
Update on Iowa
Yesterday, I wrote about two employees of CoalFire who were arrested for performing a physical pen test of various courthouses in Iowa. The article focused on the need to have…
Details
Data Privacy – I Do Not Think That Word Means What You Think it Means
On September 10, 2019, leaders of the high tech and business world, through the Business Roundtable, sent a letter to political leaders urging them to pass a comprehensive federal consumer data privacy…
Details
Security status unknown
Do CEOs and Boards have any idea what the company’s cybersecurity status is? Cybersecurity and privacy compliance should be a top priority of the Board of Directors and senior management…
Details