The U.S. Department of Justice (DOJ) has charged six computer hackers, all of whom were residents and nationals of the Russian Federation (Russia) and officers in Unit 74455 of the Russian Main Intelligence Directorate (GRU), a military intelligence agency of the General Staff of the Armed Forces. The group is believed to be part of one of Russia's most elite and secretive hacking groups, known as Sandworm.
The restaurant group that owns more than 80 locations was dealing outdated legacy hardware and changing regulations, which posed a challenge for a 45-year-old company like Thrive. Unreliable CCTV equipment left the restaurants vulnerable to security risks. Constantly evolving PCI-compliance rules meant the company had to devote hours of his limited bandwidth to keeping up with the latest changes and updates so Thrive could avoid major penalties and security threats.
AppOmni, provider of SaaS Security Posture Management (SSPM), released findings of their latest survey highlighting the security concerns of cloud SaaS applications as they become more essential for enabling remote workers.
The National Security Agency (NSA) announced the release of SkillTree, an internally-developed open source solution for gamifying user training.
SkillTree provides a systematic and interactive way to promote user proficiency of an existing application. The service is based on industry best practices using gamification to provide awareness of tool features, promote best practices, and document user progression and expertise. By reducing an application’s training curve, SkillTree reduces traditional comprehensive training costs while providing a more enjoyable experience for the user.
The responses reveal deep divisions in how differently security execs are responding in the face of real business continuity challenges posed by the pandemic. For example, 26% of CISOs surveyed have introduced more stringent endpoint security and corporate access measures since the arrival of the pandemic, while 35% have relaxed their security policies in order to foster greater productivity among remote workers; 39% have left their security policies the same, according to a new study.
Purdue University is offering new cybersecurity short courses in social engineering and digital forensics as part of a growing suite of offerings through the Purdue Polytechnic Institute’s Cyber Education Network Training Resources (CENTR).
In a new report of survey results, nearly a quarter of businesses felt natural disaster preparations helped them address COVID-19. They tended to find preparations of broad applicability during natural disasters, such as telework readiness, more useful than hazard-specific measures. The survey also identified areas of hardship for businesses, including uncertainty and a lack of guidance and resources.
The Partner Alliance for Safer Schools (PASS) has released the fifth edition of its Safety and Security Guidelines for K-12 Schools, which offers the most comprehensive information available on nationwide best practices specifically for securing school facilities, from subject matter experts across the education, public safety and industry sectors.
This month in Security magazine, we explore how Corning's global security group ensured business continuity and employee safety during the global COVID-19 pandemic. Also, we highlight the global security team at Uber and their recent security programs and initiatives. Industry experts discuss travel safety programs, career hackers, working for terrible bosses, group attribution error and more.