Security Insights – April 2019
Cybersecurity Tactics to Defend Against Cyberattacks
Cybercrime continues to plague organizations resulting in compromised information, damaged reputations and expensive reparations. As cyberattacks grow in complexity, they are capable of attacking various forms of infrastructure using a wide range of tactics. In short, our dependence on technology makes cybersecurity a concern for all of us, and each of us has a responsbility to learn what we can do to thwart attempted attacks and reduce the damage a successful attack can cause.
Artificial Intelligence Is Only As Good As Our Input
Much of the intelligence and SIEM tools cybersecurity and IT pros use day in and day out have a machine learning component that falls into the category of Artificial Intelligence (AI). For example, it could be argued that the AlienVault Unified Security Management (USM) product, with SIEM capabilities, operates with some AI characteristics and capabilities. That may sound surprising, but it’s very easy to track, at a high level, the growing level of sophistication it gathers from machine learning components across its history.
What Is Cyber Intelligence?
In February 2002, Donald Rumsfeld, then US Secretary of State for Defense, stated at a briefing, “There are known knowns. There are things we know that we know. There are known unknowns. That is to say, there are things that we now know we don’t know. But there are also unknown unknowns. There are things we do not know we don’t know.” Hidden in this nonsensical-sounding statement are some important truths that are particularly relevant to cyber intelligence. It defines the three broad categories of risk and threats.
Legislators Are Answering the Call to Strengthen Election Security
Article Published in BillTrack50
In the wake of disturbing news about election tampering and hacks, lawmakers are focused on ensuring that elections are administered fairly and that votes are protected. The evidence is in the fact that more cybersecurity legislation is being introduced, and this recent increase in election security-related regulation is likely only the beginning.
In the headlines
In the Age of AI, the Human Factor Still Matters for Cybersecurity
It’s no secret that both the public and private sector are turning to AI and automation in their fight against cyber-attacks. However, while it’s important to use every tool in the arsenal to be effective, this strategy must not be at the expense of people – rather, it must be blended with them.
Insurers Collaborate on Cybersecurity Ratings
It's in the best interest of insurance companies to have their customers protected from cybersecurity losses. That, in a nutshell, is why a number of global insurers are collaborating on a rating system for cybersecurity products
SEC to Focus on Cybersecurity in 2019
The National Law Review
For the fourth year running, the Securities and Exchange Commission’s Office continues to list cybersecurity as one of the top enforcement priorities for 2019. As it relates to cybersecurity, the SEC will be focusing on ensuring companies have proper configuration of network storage devices, robust information security governance, and established policies and procedures specific to protecting retail investors’ trading information and preventing cyber intrusions into retail brokerage accounts.
Holding Government Contractors Responsible for Cybersecurity Is Trickier Than It Sounds
The federal government wants to hold defense contractors accountable for the cybersecurity of their supply chains but that’s no easy feat, experts said Tuesday.
Industry representatives told lawmakers on the Senate Armed Services Committee about attempting to tackle cyber threats as a federal contractor. Much of the hearing was focused on one specific issue: increasingly complex levels of supply chains make it difficult for prime contractor to ensure all subcontractors are upholding cybersecurity protections. And that ever-lengthening chain increases the possibility of compromised information or cyberattacks.
Visit CyberDefenses at the DIR ISF Event in Austin
Will you be at the Texas State Department of Information Resources Information Security Forum (DIR ISF) event in Austin on April 23 - 24th at the Palmer Auditorium? If so, stop by booth 406 to visit our team. And you won't want to miss this session presented by Brian Engle, CISO and Director of Advisory Services:
How a Risk Focus Results in Better Assessments, Stronger Security Programs
Tuesday, April 23rd 2:00 - 2:50 pm
CyberDefenses is an award-winning Managed Security Services Provider (MSSP). Schedule a 30-minute conversation to learn how we can help protect your organization from cyber attack.