Due to COVID-19 concerns, many United States Government (USG) personnel must now operate from home while continuing to perform critical national functions and support continuity of government services.
The Information Security Forum has announced the release of Deploying Open Source Software: Challenges and Rewards, helping security professionals recognize the benefits and perceived challenges of using OSS and set up a program of protective measures to effectively manage OSS.
Sitting on the frontlines as a red-teamer, people regularly ask me, “Should I do a pentest or hire a red team?” But that’s not the question they should be asking.
Digital Shadows has identified Nulledflix, a brand new live-streaming service on the English-language cybercriminal platform Nulled that enables members to watch live streams together.
The Transportation Security Administration (TSA) published an outline of key objectives to continuously improve security and safeguard the nation’s transportation systems.
A new survey revealed that the transition to widespread remote work presented myriad business challenges and security risks for the employees on the front lines of IT security.
In early June, the California Attorney General filed final CCPA regulations with the California Office of Administrative Law. The final regulations were accompanied by a 59-page Final Statement of Reasons along with six appendices containing over 500 pages of comments on the regulations and the Attorney General’s responses to those comments. One of the many topics that the Attorney General’s office discussed was the final regulation’s requirements for drafting privacy policies. Given that the drafting of a privacy policy is a necessary part of CCPA compliance, it is worth analyzing those comments.
Organizations need to enhance current technical security controls to mitigate against the threat of deepfakes to the business. Training and awareness will also need revamping with special attention paid to this highly believable threat.
