Latest News and Alerts:
Be aware that there are a number of concerted attacks occurring now through a technique called “spear phishing”. This occurs when someone sends an e-mail that looks like a legitimate communication from someone who seems to be a real person, but it’s not. See the link here to get a good definition and some examples of spear phishing attacks. Never believe that you are not noticeable to someone who might want to target you. Always question any e-mail that you receive. If you don’t recognize the link to something or it has an attachment that you are not expecting, don’t trust it. You can even receive spear phishing e-mails from people you know who have had their e-mail accounts hacked through the same method. This happens daily at all A&M members. Here’s a good article that talks more about this technique to infect our infrastructure, take your information and generally cause havoc.
We must all be aware of the threats that face us. Each of us has a responsibility to not only protect ourselves, but others who share the same information resources such as the network we all share, the e-mail servers we share and so forth. A really good short article by Accenture explains our responsibilities here.
Daily news stories from around the world for the security executive.
Atlanta city employees coming to work this morning were handed an unusual notice: don’t turn on your computers. The municipal systems had been hit with a ransomware attack on Thursday, and employees were not to use their computer until they were cleared by the municipal IT group.
The Alabama House of Representatives passed a bill to allow school systems to use money from the Advancement and Technology Fund for school security.
Students at Marjory Stoneman Douglas High School will soon be allowed to only wear clear school backpacks on campus.
Nearly four in five companies (79%) were hit by a breach in the last year, according to new research from Balabit.
The Security Industry Association (SIA) has opened registration for its annual public policy and government security technology conference, SIA GovSummit.
It’s no surprise that air travelers have a lot on their minds when it comes to safety, security, flight delays, inclement weather, and more.
Travel booking website Orbitz has announced that it discovered a potential data breach that exposed information for thousands of customers.
The demand for travel security advice has grown by nearly 30 percent in the last two years and increased by 800 percent in the last decade.
A study by Ponemon Institute and sponsored by IBM Resilient has found that 77 percent of respondents admit they do not have a formal cyber security incident response plan (CSIRP) applied consistently across their organization.
Nearly three-quarters of U.S. school teachers oppose the idea of training certain teachers and staff to carry guns in school buildings.
New research reveals the US cities that are best at password security, with Minneapolis topping the list.
The Health Care Workplace Violence Prevention Act would direct OSHA to create a standard that would require healthcare facilities to develop and implement facility- and unit-specific workplace violence prevention plans.
In August 2017, a petrochemical company with a plant in Saudi Arabia was hit with a cyberattack aiming not to simply destroy data but to sabotage the firm’s operations and trigger an explosion.
Although minority representation in cybersecurity is higher than the overall U.S. workforce (26 percent vs. 21 percent), these professionals are disproportionately in non-management roles.
With the recent tragedies that have occurred on campuses as a result of domestic violence, now is a good time for schools to evaluate or re-evaluate their institution’s readiness and response capabilities to threats and incidents of domestic violence.
Traditional and online retailing are increasingly intertwined as customers seamlessly shop across touchpoints and the industry uses both platforms to better serve them, according to the annual State of Retail Online study by the National Retail Federation and Forrester.
From elections to North Korean nuclear threats and missile launches, it appears that cyber actors are using geopolitical events to achieve cyber activism and other goals.
The Security Industry Association (SIA) announced on March 8 that it was establishing a Women in Security Forum to support the participation of women in the security industry. According to SIA, “through programs, professional development and networking events, the committee will engage members, both men and women, who share this goal.”
The outlook for international business travel is generally optimistic, according to the Global Business Travel Forecast 2018 published by American Express Global Business Travel (GBT).
The U.S. Embassy in Mexico City is prohibiting U.S. government employees from to the resort town Playa del Carmen.
United Airlines and Special Olympics International announced the expansion of their relationship globally, celebrating in their shared vision to end discrimination against people with intellectual disabilities.
Security is constant. It’s fast-paced with a high burnout rate, and many companies continue to struggle with implementing basic security controls.
A report by NTT Security has warned that organizations could be targeted by malware designed for mining cryptocurrency.
One-third of Government worker respondents to a Dtex study believe they are more likely to be struck by lightning than have their organizations' data compromised.
Nearly nine in 10 Americans (85%) say they currently use at least one of six devices, programs or services that feature elements of artificial intelligence (AI),says a Gallup poll.
The Florida House passed the Marjory Stoneman Douglas High School Public Safety Act, which includes several gun control measures.
Under Police Chief Linda Stump-Kurnick’s direction, the University of Florida has implemented a number of new safety and security measures, including a clear-bag policy, background screening for event personnel and enhancing perimeter protection.
- Cybersecurity Enhancement Act of 2014
- TAC 202 Refresh
- Data Classification Update
- Identity and Access Management (IAM)
- Security Monitoring
- Risk Management Sandbox
- NIST Cybersecurity Framework news and education