Information Security & Occasional Forays Into Adjacent Realms
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Many thanks to Israel’s Tel Aviv University for publishing their presenter’s tremendous Cyber Week 2023 security content on the Tel Aviv University’s TAUVOD YouTube channel.
Published today (2021/08/20) via the United States Cybersecurity and Information Systems, Information Analysis Center:
'In this webinar, Mr. Burhan Adam, Resilient Systems Director for Policy, Guidance, and Standards, Angela Lungu, and Madison Rudy, Support to Director, Resilient Systems Policy, Standards, and Guidance, Office of Strategic Technology Protection and Exploitation (STP&E), Office of the Under Secretary for Research and Engineering (OUSD(R&E), will discuss the cyber resilient weapon systems body of knowledge portal (CRWS-BoK) and provide an overview of its capabilities and key features. The CRWS-BoK is designed to provide users by providing up-to-date, publicly accessible CRWS resources directly accessible to users via a web browser. CRWS-BoK also provides a user-friendly, searchable interface and opportunities to provide direct feedback to RS.'
grugq's typically incisive, innovative approach to security is certainly a voice of sanity. Particularly, within an industry that quite often engages in navel gazing of the non-contemplative type. Also, there's this piece by Stilgherrian - writing at ZDNet. Enjoy the Craft!
"This talk describes strategic cyber warfare, including great power conflicts from a strategic level that includes cyber, and cyber operations from within a prism that includes great power contest. Under this lens, individual cyber operations are less interesting, and are advancing towards strategic objectives. Cyber operations can now achieve results typically reserved for kinetic warfare."
via William Knowle's Infosec News (a security news compilation organization), comes this fascinating North American Electric Reliability Corporation (NERC) report document (expertly presented by E&ENews Reporter Blake Sobczak) - ostensibly, a 'play-by-play' of the first cyberattack of a US Energy Utility. Think it can't happen here? It already has...
"But the March 5 event was significant enough to spur the victim utility to report it to the Department of Energy, marking the first disruptive "cyber event" on record for the U.S. power grid (Energywire, April 30). The case offered a stark demonstration of the risks U.S. power utilities face as their critical control networks grow more digitized and interconnected — and more exposed to hackers. "Have as few internet facing devices as possible," NERC urged in its report." - via E&ENews reporter Blake Sobczak
via Nina Kollars & Emma Moore, writing at War On The Rocks, comes this outstanding, sobering analysis of both current and future cybersecurity professionalism & capabilities within the United States Marine Corps MARFORCYBER and the Marine Corps Cyber Auxiliary.
If you are at all interested in Offensive & Defensive Cyberwarfighting capabilities within the Department of the Navy, and more specifically within the Marine Corps, this, my friend, is Today's Absolutely Must Read. Information Security and Cybersecurity Professionals should email cyberaux@usmc.mil for more information or to volunteer with the United States Marines Cyber Auxiliary.
Aaron Guzman is a Director with Aon’s Cyber Solutions Group, also serving as Head of Automotive & IoT Testing.
Iris Levari is an Application Security Architect with two decades of experience in Cybersecurity; Adi Belinkov is the Vice President of Cybersecurity at JPMorgan Chase & Co, and is an Application Security Architect.
Image Attribution - Photographer: Aude - Own work, CC BY-SA 3.0
FastCompany contributing editor Alex Pasternack has written-up a superb interview piece with the highly respected Richard A. Clarke, detailing his warnings of significant attack modalities that we all face as a nation, today, and the extreme danger unfolding around us. Today's Must Read!
"FC: The ransomware attacks seem like an interesting case study in how to respond, because some people are paying ransoms and some aren’t, and at great cost. RC: I think what’s interesting to me about ransomware is it’s picking off the low-hanging fruit. You know there’s that old joke that you don’t have to outrun the bear, you just have to, if there are three or four of you running, you just to run faster than the other guy. Well, that’s kind of the case with ransomware. Ransomware is picking off the slow runners. Ransomware is picking off the people who are spending 3 to 4% of their IT budget on security." - FastCompany contributing editor Alex Pasternack's superb interview of Richard A. Clarke
The Center for Internet Security has released (some say unleashed) it's Annual Year In Review targeting the year 2018. Enjoy Summer 2019 while you still can, because, after all, winter is looming!
"The 2018 Year in Review covers CIS' advances in cybersecurity via the EI-ISAC®, MS-ISAC®, CIS Benchmarks™, CIS SecureSuite®, CIS Hardened Images™, CIS Controls™, and CIS CyberMarket®." - via Center for Internet Security