[From the desk of Paul Davis – his opinions and no-one else’s]
Apart from the reporter’s opinions đ
So onto the news:
Why cyber should not be limited to cyber
Open-source intelligence (OSINT) is not new, and making sense of data from publicly available sources is as relevant for cyber security as it is for other purposes. With a plethora of data everywhere about everything, access to data is no longer the issue. On the other hand, access alone is not the solution either. We live in times when availability of data is better than ever, yet the fear of having missed something continues to keep company executives awake at night. This disconnect can only be mitigated by broadening perspectives, recognising the need for change in internal processes, and using new technologies to find and unlock the information hidden in the vast volumes of data available today on the web.
Taking this broader intelligence approach is nevertheless pioneering. Many companies still regard cyber-security as an âIT problemâ and pass on the internal responsibilities accordingly. The results are mixed and suffer from similar issues that the business intelligence industry has struggled with.
Link: http://paulgdavis.us3.list-manage2.com/track/click?u=45bf3caf699abf9904ddc00e3&id=168e23bc78&e=20056c7556
Strategic Risks of Ambiguity in Cyberspace
Attacks against the diverse and growing number of vulnerabilities on critical U.S. networks will pose a significant risk of triggering or aggravating a crisis for years to come. Though the cyber threat cannot be eliminated, implementing the recommendations above would put the United States on a course to better manage its risks and promote stability. The United States should act now to enhance its cyber defense and deterrence, support the growth of shared norms, and improve the processes through which attacks are mitigated and investigated. The longer the United States delays taking these steps, the harder it will be to prevent and mitigate a crisis. Deterrence failures and misperceptions occur routinely in international relations, but a renewed focus now would significantly reduce the risk of an unnecessary crisis or escalation.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=1467d968f0&e=20056c7556
Top 5 ways to immediately improve your security program
1. Reducing your attack surface
2. Employing multi-factor authentication
3. Monitoring the environment for anomalies
4. Utilizing data-centric security
5. Participating in threat intelligence sharing
Link: http://paulgdavis.us3.list-manage1.com/track/click?u=45bf3caf699abf9904ddc00e3&id=5992fb9cc8&e=20056c7556
Cybersecurity on the agenda for 80 percent of corporate boards
The survey, conducted jointly by NYSE Governance Services and security vendor Veracode, revealed that more than 80 percent of board members say that cybersecurity is discussed at most or all board meetings.
Specifically, 35 percent said that cybersecurity was discussed at every board meeting and 46 percent said it was discussed at most meetings. Only 10 percent said they discussed cybersecurity after an incident in their industry or at their company — and only 1 percent said they never discussed cybersecurity at all.
Link: http://paulgdavis.us3.list-manage1.com/track/click?u=45bf3caf699abf9904ddc00e3&id=11a32ea1a2&e=20056c7556
Diamonds or chains
Youâre setting up a new team to deal with targeted cyber attacks and your boss has asked you whether you should be using the Diamond Model or the Cyber Kill ChainÂŽ. Thinking furiously for a moment, you pick one and feel relieved as they wander off, only for the panic to return as they turn around and ask that dreaded question⌠why?
What are they and why would you pick one over the other?
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=571c3c140e&e=20056c7556
U.S. to take Japan under cyberdefense umbrella as hacker threats grow
The United States will extend its cyberdefense umbrella over Japan, helping its ally cope with the growing threat of online attacks against military bases and infrastructure such as power grids, the two nations said in a joint statement Saturday.
The Self-Defense Forces cyberdefense unit has around 90 members, compared to over 6,000 people at the Pentagon, a Defense Ministry official said at a briefing in Tokyo on Thursday.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=5cc4dd8e45&e=20056c7556
The underworld at your fingertips
In truth, the dark net is as multi-faceted and complex as much of the real world itself. Dark net sites are, at their simplest, illegal and under-the-radar sites that are not easily accessible from the surface web, but that can be found through Tor or through searches on the deep web. (Google indexes roughly 16 per cent of the internet; the deep web is the rest of the wide ocean of cyberspace, searchable through specific databases or concealed behind security walls.)
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=8472c70338&e=20056c7556
Bitdefender Identifies Malware Posing As Flash Update
Bitdefender has identified a new piece of Android malware designed to extract money from customers, by sending an email claiming to be an update to Adobe Flash Player that installed an innocent-enough video player onto the device. However, when the user attempts to launch the video player the device instead displays an error message. Once this is dismissed, the screen switches to a screen claiming to be from the FBI explaining to the user that he or she has broken the law by visiting pornographic websites. There are also screenshots displayed claiming to be the browser history of the device. The message continues, explaining that they have screenshots of the victimsâ faces and know of their location. Unfortunately, users cannot navigate away from this screen so essentially the device is disabled. The solution? $500 via Money Pak or PalPal My Cash transfers, which increases to $1,500 should the user have attempted to unlock the device themselves.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=0fdfd1e19c&e=20056c7556
============================================================
Feedback, questions? Our mailing address is: ** dailynews@paulgdavis.com (mailto:dailynews@paulgdavis.com)
If someone forwarded this email to you and you want to be added in,
please click this: ** Subscribe to this list (http://paulgdavis.us3.list-manage.com/subscribe?u=45bf3caf699abf9904ddc00e3&id=e09452545a)
** Unsubscribe from this list (http://paulgdavis.us3.list-manage.com/unsubscribe?u=45bf3caf699abf9904ddc00e3&id=e09452545a&e=20056c7556&c=bc48a34149)
** Update subscription preferences (http://paulgdavis.us3.list-manage2.com/profile?u=45bf3caf699abf9904ddc00e3&id=e09452545a&e=20056c7556)