October 9, 2024 at 05:14PM Australia introduced the Cyber Security Bill 2024 to establish security standards for smart devices and improve ransomware reporting. It proposes a Cyber Incident Review Board and reforms under the 2018 SOCI Act to enhance government support for critical infrastructure, aiming to strengthen cybersecurity measures by 2030. **Meeting Takeaways: Cyber Security … Read more
October 7, 2024 at 10:10AM The US government’s move towards cyber regulation, a politically sensitive and intricate task, demands a strategic approach. To execute this, the Office of the National Cyber Director (ONCD) should establish a new office to oversee regulation, integrating harmonization, strategy development, and implementation. The US government faces a crucial opportunity to … Read more
October 3, 2024 at 10:15PM Custom dictionaries are essential for strengthening password security. They block the use of common words, industry and organization-specific terms, and easily guessable patterns, adding an extra layer of defense against targeted attacks. Integrating custom dictionaries with tools like Specops Password Policy enhances Active Directory password security and reduces the risk … Read more
October 3, 2024 at 10:39AM Weak and easily guessable passwords can leave organizations vulnerable to cyber threats. Integrating a custom dictionary into password policies can protect against targeted attacks, brute force methods, and industry-specific vulnerabilities. Specops Password Policy enables seamless integration of custom dictionaries into Active Directory, bolstering overall password security and compliance with industry … Read more
September 27, 2024 at 03:21PM Security leaders must navigate the SEC’s cybersecurity and disclosure rules by understanding 8-K and 10-K filings, disclosing material cybersecurity incidents, and providing annual updates on cybersecurity posture. They need to accurately share cybersecurity updates in a timely manner and lean into transparency to ensure compliance. Additionally, leaders should regularly audit … Read more
September 27, 2024 at 01:46PM Microsoft has revamped the controversial Windows Recall feature with enhanced security measures, including proof-of-presence encryption and anti-tampering checks. The AI-powered technology, which creates a searchable digital memory of user activity, will now be turned off by default and comes with tools for permanent deletion. The redesign aims to address privacy … Read more
June 14, 2024 at 06:39AM Microsoft has postponed the launch of the Recall feature preview due to security and privacy concerns. It allows users to find past screenshots on their PC, but experts have pointed out potential risks of sensitive data being obtained by malware. The feature will now be rolled out through the Windows … Read more
June 6, 2024 at 07:42AM Cybersecurity threats are increasingly targeting small and medium-sized businesses (SMBs), with 94% experiencing attacks in 2024, up from 64% in 2019. SMBs face challenges such as resource constraints, lack of awareness, and sophisticated threats. Managed Service Providers (MSPs) are rising as essential allies, offering expertise, services, and support to strengthen … Read more
May 7, 2024 at 07:09AM The US Department of State announced its international cyberspace strategy to promote a secure, inclusive, and equitable digital world. It emphasizes digital solidarity and cooperation among rights-respecting users of digital technologies. The strategy outlines guiding principles and areas of action, focusing on diplomacy, international engagement, and countering cyber threats. It … Read more
April 5, 2024 at 10:08AM The White House ONCD has released a report supporting the National Cybersecurity Strategy, emphasizing a shift to memory-safe programming languages for improved cybersecurity. The challenge lies in addressing legacy systems and balancing economic and technical considerations. Industry leaders, such as Mozilla, Microsoft, and Google, have invested in memory-safe languages. Practical … Read more