In a new study that surveyed enterprises with 3,000 or more employees, 60% of respondents are concerned pentesting gives them limited coverage or leaves them with too many blind spots.
The California Transportation Agency's entire bus fleet is getting a security upgrade to include mobile surveillance and cloud-based monitoring services.
The National Security Agency (NSA) released the Cybersecurity Advisory, “Stop Malicious Cyber Activity Against Connected Operational Technology.” The CSA details how to evaluate risks to systems and improve the security of connections between OT and enterprise networks. Information technology (IT) exploitation can serve as a pivot point for OT exploitation, so carefully evaluating the risk of connectivity between IT and OT systems is necessary to ensure unique cybersecurity requirements are met.
U.S. Customs and Border Protection and the World Business Alliance for Secure Commerce Organization (WBO) issued a joint statement affirming their shared commitment to enhance supply chain security. In the joint statement, CBP and WBO expressed their intent to collaborate on implementing a nine-point action plan that calls for, among other measures: Enhanced information sharing; Joint training and outreach on supply chain security; Customs Trade Partnership Against Terrorism (CTPAT) recognition for WBO certified supply chain partners that successfully complete a CBP validation process; and
U.S. Rep. Bill Pascrell, Jr. (D-NJ) and John Katko (R-NY) lead 143 House colleagues requesting a significant increase in Nonprofit Security Grant Program (NSGP) funding for Fiscal Year 2022.
Paul Suarez joins Casey's General Stores in the newly created Chief Information Security Officer position at the company, which operates 2,200 convenience stores across 16 states.
The U.S. Federal Emergency Management Agency (FEMA) will host the Hazard Mitigation Partners Workshop on May 3, 2021 - May 6, 2021. The Hazard Mitigation Partners Workshop is the annual gathering of hazard mitigation stakeholders with the purpose of informing and updating them about mitigation grants and floodplain management, strengthening those relationships, and providing knowledge transfer between FEMA and invited attendees.
Zoom has joined the CVE Program as a CVE Numbering Authority (CNA). The CVE Program’s overall mission is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities that require third-party notification or coordination to fully remediate. Cybersecurity and IT professionals use CVE records to ensure they are discussing the same security issue, coordinate their efforts, and prioritize and address vulnerabilities. The program is an international, community-based effort and relies on the industry norms of the responsible and coordinated security community to discover vulnerabilities.
The Security Executive Council (SEC) has welcomed Tom Bello, Coral Gehring, Matthew Giese, Bill King, and Tom Mahlik to its faculty of esteemed security experts. SEC subject matter experts and emeritus faculty (former CSOs and CISOs) have excelled in their careers and are eager to transfer their knowledge and competencies to other security leaders.
More than 60 experts from industry, government, law enforcement, civil society and international organizations have worked together to develop a comprehensive framework, breaking down siloed approaches and advocated for a unified, aggressive, comprehensive, public-private anti-ransomware campaign.
The 81-page report, "A Comprehensive Framework for Action: Key Recommendations from the Ransomware Task Force," includes 48 recommendations that together form a comprehensive framework to address ransomware. The report was delivered to the Biden administration this week. Among those, these priority recommendations are the most foundational and urgent, and many of the other recommendations were developed to facilitate or strengthen these core actions.
RSS
