Tag: cybersecurity

^{Type
post

Author
News
Date
April 6, 2022

Categorized
Computer Security

Tagged
cybersecurity, Cybersecurity (computing defense potential), Cybersecurity (hype), Cybersecurity (misconceptions), David Kruger, Featured}

What’s Wrong With Cybersecurity Technology?

_{Know your enemy: The target isn’t networks, computers, or users; they are pathways to the target —gaining control of data} _{News

April 6, 2022

10

Computer Security}

Veteran software developer David A. Kruger offered some thoughts on computer security recently at Expensivity and we appreciate the opportunity to republish them here. He starts with “Root Cause Analysis 101” Now we’ll apply the lessons learned in yesterday’s discussion to cybersecurity: Lesson Learned 1: A pattern of multiple types of recurring related failures indicates the presence of an unidentified root cause. In cybersecurity, is there a pattern of multiple types of recurring failures that appear to be related? Yes! A cybersecurity failure occurs whenever a cyberattacker gains control of data and then: 1) views or plays it, 2) steals copies of it, 3) ransoms it, 5) impedes its flow, 5) corrupts it, or 6) destroys it. The lesson learned is that the Read More ›

^{Type
post

Author
Heather Zeiger
Date
July 22, 2021

Categorized
Data Privacy, Events

Tagged
Antony Blinken, China, cybersecurity, hacking, Hafnium, Kellen Dwyer, Microsoft, Microsoft Exchange Server, NATO, Nicole Perlroth, This Is How They Tell Me the World Ends (book), U.S. Department of Justice, Wall Street Journal, zero-day hack}

U.S. and Allies Formally Accuse China of Exchange Server Hack

_{This isn’t the first time the Chinese-backed hacker group has infiltrated organizations} _{Heather Zeiger

July 22, 2021

7

Data Privacy, Events}

On Monday, July 19, three cybersecurity announcements were made: In response to the massive Microsoft Exchange Server hack, the U.S., U.K., Canada, Australia, New Zealand, Norway, Japan, the E.U., and NATO formally accused the Chinese government of engaging in harmful cyberactivity. The U.S. Department of Justice published its indictment of four Chinese hackers associated with the Chinese government, known as APT40. The FBI, CSIS, and the NSA published a cybersecurity advisory cataloging the fifty tactics, techniques, and procedures used by Chinese state-sponsored hackers. Then, on Tuesday, the CSIA and the FBI published a report on state-sponsored international hacking groups that included accusations that the Chinese state-backed hackers infiltrated thirteen oil and natural gas pipeline operators between 2011 and 2013. In Read More ›