Does Your Company Need a Virtual CISO?

December 2, 2024 at 12:47PM Companies hire virtual chief information security officers (vCISOs) for various reasons, including expanding security strategies, responding to breaches, and complying with regulations. vCISOs offer expert guidance, consistent security program management, and cost-effective solutions for firms lacking full-time CISO resources. They also help navigate evolving cybersecurity challenges and technologies. ### Meeting … Read more

Incident Response Playbooks: Are You Prepared?

December 2, 2024 at 10:05AM An effective incident response (IR) library emphasizes the necessity of having up-to-date IR plans and playbooks. While IR plans outline organizational roles during incidents, playbooks standardize responses, enhance efficiency, and improve preparedness. Regular updates and testing of playbooks are crucial for effective incident management and cost reduction. ### Key Takeaways … Read more

In Other News: OPPC Breach Impacts 1.7M, US Soldier Suspected in Snowflake Hack, Cloudflare Loses Logs

November 29, 2024 at 07:05AM This week’s cybersecurity news roundup highlights significant developments, including the doubling of a data breach affecting OnePoint Patient Care, Meta’s crackdown on scam operations, malware exploiting Avast’s software, and various vulnerability patches from notable companies. Additional stories cover hacking incidents, Cloudflare’s log loss, and recent data breaches at Keesal, Young … Read more

Fighting cybercrime with actionable knowledge

November 29, 2024 at 04:28AM Cybercrime is evolving, making continuous training essential for cybersecurity professionals. Celebrating 35 years, the SANS Institute offers over 85 courses and 240,000 GIAC certifications globally, emphasizing updated curriculums. New courses in 2025 will cover cybercrime intelligence and Linux incident response, ensuring professionals stay equipped to tackle emerging threats. ### Meeting … Read more

Cloudflare says it lost 55% of logs pushed to customers for 3.5 hours

November 27, 2024 at 11:17AM Cloudflare faced a significant incident on November 14, 2024, losing 55% of customer logs due to a bug in its log collection service. A misconfiguration in the Logfwdr system led to log discard errors, overwhelming Buftee, the buffering system. Cloudflare has since implemented measures to prevent future incidents. ### Meeting … Read more

Cyberattack Disrupts Systems of Gambling Giant IGT

November 22, 2024 at 11:05AM International Game Technology (IGT) experienced a cyberattack on November 17, leading to disruptions in its internal IT systems. The company has taken certain systems offline for protection, activated its incident response plan, and is investigating the matter. IGT is working to restore operations while communicating with stakeholders. ### Meeting Takeaways: … Read more

Here’s what happens if you don’t layer network security – or remove unused web shells

November 21, 2024 at 08:18PM The US Cybersecurity and Infrastructure Agency (CISA) simulated a cyber attack on a critical infrastructure provider, exploiting vulnerabilities to gain extensive access. They highlighted lessons learned, emphasizing the need for better detection controls, ongoing staff training, and leadership to prioritize addressing known vulnerabilities to prevent future breaches. ### Meeting Notes … Read more

Fortinet VPN design flaw hides successful brute-force attacks

November 21, 2024 at 09:39AM A design flaw in Fortinet’s VPN logging mechanism allows successful credential verifications during brute-force attacks to go unlogged. Researchers from Pentera discovered that halting the login process post-authentication prevents successful attempts from being recorded, risking undetected breaches. Fortinet does not classify the issue as a vulnerability. ### Meeting Takeaways: 1. … Read more

Financial Software Firm Finastra Investigating Data Breach

November 21, 2024 at 07:51AM SecurityWeek offers comprehensive cybersecurity news, webcasts, and virtual events covering various topics, including malware, cybercrime, ransomware, and data protection. Subscribers can receive daily updates via the email briefing, ensuring they stay informed about the latest threats and expert insights in the cybersecurity landscape. ### Meeting Notes Takeaways 1. **SecurityWeek Overview**: … Read more

US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work

November 20, 2024 at 10:07PM SecurityWeek provides a range of cybersecurity news and resources, including webcasts, virtual events, and conferences focused on themes like malware, data breaches, ransomware, and more. They offer a daily briefing newsletter for updates and insights, and a platform for connecting key cybersecurity professionals and discussions. ### Meeting Takeaways: 1. **SecurityWeek … Read more