The path to securing the remote workforce should be seamless and experienced as a hassle-free balance between safety and a quality user-experience. It is pivotal to implement appropriate security practices, as inadequate measures can lead to unmanaged risks and the endangerment of corporate systems, data and employees.
Meet 13 female executives who are succeeding in security leadership roles.
Global technology association ISACA recently installed its 2020-2021 Board of Directors at its virtual Annual General Meeting, featuring a strong combination of executive expertise and association and chapter leadership experience.
A new white paper from ISACA, ‘Supply Chain Resilience and Continuity: Closing Gaps Exposed in a Global Pandemic’, offers approaches that enterprises can implement to increase the resiliency of their supply chain.
A bipartisan group of six House members introduced a bill to establish a National Cyber Director in the Executive Office of the President to coordinate cyber policy across the Federal government.
Now is the time every CIO should retire their virtual private network (VPN) technology.
Northern Kentucky University now offers the only undergraduate cybersecurity program in the Great Cincinnati region.
Security issues with computers and networks are in the news constantly. While there are issues users need to address when using networks, the advantages of a home network far outweigh any potential disadvantages. With the advent of the Internet of Things, homeowners will garner even more from their home networks. So, there are several possible responses when anyone asks why set up a home network?
While the original intent of home networks was to connect multiple computers to a single Internet source, home networks now serve as a hub connecting countless devices. Home networks still connect multiple computers but, today, networks are routinely used to connect gaming devices, televisions, and even home appliances, allowing all devices to communicate within the home or with remote devices.
There are two ways to design home networks. First, they can be wired together. In the past, that was the only option. All devices were physically linked using a series of cables. However, wiring devices created a variety of issues, especially when devices were some distance apart. Routing wiring is problematic and can be unsightly. Today, most home networks are wireless, relying on radio waves rather than physically attaching each device using cables.
As a rule, no. Modern devices were designed to accommodate home wireless networks. While the initial installation may take a little time, linking devices is generally quite simple. Using wireless networks also saves money, as devices like printers are easily shared by multiple devices. DVD players, televisions and gaming equipment can all take advantage of a single modem and wireless router, cutting down on clutter.
Of course. However, the equipment comes with detailed instructions to prevent unauthorized access to the network. Open networks, where no password is needed to access the network, are strongly discouraged by security professionals. Simply following the recommendations provided by Internet and equipment providers will normally provide a relatively high level of security for home networks. Because security issues are evolving, it’s always important to stay abreast of potential threats. When prompted to allow providers to send updates, do so.
Home networks are evolving rapidly, especially with newer generation security and environmental systems taking advantage of network capabilities to improve home comfort and safety. If your home does not have a network, consider installing one today.
Zoom Video Communications, Inc. announced that Jason Lee will join the company as its Chief Information Security Officer.
Sitting on the frontlines as a red-teamer, people regularly ask me, “Should I do a pentest or hire a red team?” But that’s not the question they should be asking.
A new survey revealed that the transition to widespread remote work presented myriad business challenges and security risks for the employees on the front lines of IT security.
Black Hat's sixth annual community survey, Cyber Threats in Turbulent Times, highlights how the COVID-19 pandemic and U.S. presidential election will have a significant impact on the information security industry in 2020.
The second annual Devo SOC Performance ReportTM, based on a survey conducted by Ponemon Institute, found that 60% of Security Operations Center (SOC) team members are still considering changing careers or leaving their jobs due to stress.
Cred, a blockchain-based financial services platform, announced Bethany De Lude will take over all security operations as Chief Information Security Officer.
MITRE’s Center for Technology & National Security (CTNS), created to enhance MITRE’s engagement with senior government leadership, named five highly esteemed national security officials to its newly established advisory board.
Investar Bank recently hired Darryl Bercegeay as its Chief Information Security Officer (CISO) and Senior Vice President.
The University of Arkansas at Little Rock is introducing a new four-year degree program in cybersecurity in the fall 2021 semester to help meet the rising demand for cybersecurity professionals.
[dropcaps]I[/dropcaps]n today’s society, mobile phone security is a vital necessity. Consumers now use smart-phones as much or more than computers to transmit confidential information. These actions could; however, in the end expose them to more security risks as cyber crimes are on the rise. The highest percentage of these crimes are associated with online shopping.
What is Mobile Phone Security?
Essentially, mobile phone security encompasses the tactics used to prevent the compromise of private information. The tactics are used to prevent the exploitation of weaknesses found within the smart-phones. The security methods are generated to improve the mobile experience for all users and prevent the theft of their intellectual property and personal information.
The Most Common Threats
Malicious software is often introduced through text messages. These attacks rely on average users who don’t know how this software works. It can manipulate the smart-phone and send messages to the user via their contacts. In most instances, a link is included. When the user clicks the link, the software attacks and could cause a complete denial of service while it acquires all information within the device.
Security Tips to Protect Your Information
Smart-phone users who shop online should always use links that offer a secured socket layer. You’ll recognize them within the address bar. They start with “https:” and show a padlock out to the side in most instances.
Secure Your Phone
Always set up a password for your smart-phone. This prevents anyone from gaining physical access to your information if you lose your phone. Don’t use any names connected to you directly. Don’t use the birth date of your children. Use something random that you could remember that isn’t accessible if a thief acquires your wallet.
Additionally, you should use GPS for your phone. Some contract packages include this feature. However, if your plan doesn’t you could download an app for free.
Smart-phones have replaced the storage of a PC for most consumers. Unfortunately, this could leave their information ripe for the picking. By using effective security tactics for your smart-phone, you prevent a security breach that could cause a significant loss of your confidential information. Read further for more security tips to keep your smart-phones safe.
[dropcaps]A[/dropcaps] large percentage of computer users routinely neglect to protect the information on their computers. That makes them potential targets for malicious software that can quickly gather that data and use it to empty bank accounts and run up charges on credit cards. Recent malware attacks have also held unprotected computers hostage, with hackers demanding ransom before providing a code to unlock the computer. By following some basic steps, computer users can avoid the majority of threats to their computers’ security.
Use Strong Passwords for All Sites
While it’s tempting to use the same password for everything, that’s a dangerous practice. If one site is hacked, the security of all your commonly used programs and sites is threatened. Computer security experts always recommend using strong passwords and never using the same password for multiple sites. Obviously, even moderate computer users can quickly generate many hard-to-remember passwords, so taking advantage of some sort of password management software is a great idea.
A great software tool that can help you to keep track of all your passwords securely is LastPass. I highly recommend this software. It has helped me out so much as I can create random passwords now without worrying that I’m going to forget them.
Keep Software Up to Date
Browsers are constantly under attack by hackers, so it is important to install updates as they are provided. It’s also important to install and routinely run software designed to discover and eliminate all types of malware. If you’re the type of person who tends to forget to do so, configure the software to update and run automatically. Doing so will prevent a large percentage of the malware typically circulating from infecting your computer.
Always Back Up Your Data Files
No matter how careful you are, there is still a potential for malware to infect your computer. While system hardware is generally easy to restore, losing valuable data can create significant problems. Set up a regular routine for backing up all files, either to an on-site backup hard drive or to a cloud-based storage system. Again, the process can be automated or manual. The important thing is that steps are taken to back up all files often. If your computer is ever infected, the losses will be minimized.
I suggest Backblaze or MyPCBackup, which I use myself. I use Backblaze for my video editing PC and MyPCBackup for my business laptop. They are very cost effective ways of backing up your computer as you can set the software to back up at a set time each day, which is enormously helpful. Online backup is also helpful in terms of being an “off site” backup in case of a disaster such as a flood or house fire.
The data security best practices are constantly evolving, which means all computer users should take the time to stay abreast of changes affecting their systems. By doing so, the chances of your data being lost or stolen will be significantly reduced. Taking some time to put a few precautions in place now can save a great deal of time and stress later.
New research has found that while most consumers are taking necessary security precautions to protect their online accounts, businesses may not be doing enough to protect their information – inadvertently driving sales to competitors that can.
Two-fifths (40%) of consumers hold business leaders personally responsible for ransomware attacks businesses suffer, according to global research from Veritas Technologies.
The University of Idaho College of Engineering is launching Idaho's first bachelor's degree program in cybersecurity, open to students this fall.
A new report that examines the processes and effectiveness of corporate security operations centers (SOCs) reveals that 82% of SOCs are confident in the ability to detect cyberthreats, despite just 22% of frontline workers tracking mean time to detection (MTTD), which helps determine hacker dwell time.
Crypto lender and financial services company BlockFi announced that it has hired Adam Healy as its new Chief Security Officer.
A new Cybersecurity Exposure Index (CEI) reveals which countries are the most and least exposed to cybercrime.
JSOF has discovered a series of vulnerabilities stemming from one small software library that has rippled across the supply chain, affecting 100's of millions of IoT devices.
Charles Blauner, previously Global Head of Information Security at Citigroup, joins Team8 as Operating Partner and CISO in Residence.
[dropcaps]H[/dropcaps]aving your data and files securely and automatically backed up is one of the most important steps you can take. Putting your documents, music, photos, and other data into the cloud lets you get your files no matter what computer or mobile device you are using. It offers a convenient way to back up your data. Switching to a cloud-based backup is an important decision that requires a clear understanding of how a solution will integrate into your business.
What is Cloud Backup
Cloud backup is a form of service through which cloud computing resources and infrastructure are used on creating, editing and restoring data, services or application backup. This form of backup is also known as online or remote backup, and it is remotely done over the internet.
The Backup Services
Many great cloud storage services have free accounts that usually come with few limitations. Some cloud storage services are niche while other specialize on e-signatures, so that your collaborators can sign all those documents that you are storing and sharing via the internet. File-syncing has become an integral part of online backups.
These days, one can sign up for an online cloud storage service such as Dropbox, Box or the Google drive and have all your files made available to you, no matter where you are located or which device you are using. The very best cloud backup solutions play nicely with other apps and services to make the experience of working with your files to be seamless.
Key benefits of Cloud backup services
As companies cope with the growing amount of corporate information that is being generated every day, they face the daunting task since not having their data, they have no business. Cloud backups, recovery and restore options have emerged as secure, cost effective and reliable solutions. The key benefits of cloud-based storage services include:
[list][item icon=”fa-flag” ]Lower total cost of ownership – A cloud backup, recovery and restore services takes the advantage of your existing infrastructure so that you do not need to buy or install expensive equipment.[/item] [item icon=”fa-flag” ]Improved reliability and speed recovery – Cloud based solutions and recovery systems instantly restore data regardless of your location including the individual files. You can work with managed service provider in establishing recovery point objectives.[/item] [item icon=”fa-flag” ]A more secure method of file transfer – The files that are selected for backup are encrypted before they are transmitted and remain encrypted once they reach their destination.[/item] [item icon=”fa-flag” ]Smarter use of IT resources – A cloud storage and recovery solution allows your business or other services to redirect IT resources to more pressing challenges or strategic initiatives within your organization. There is a built-in scalability of this form of backup that makes it easy for businesses to grow.[/item] [item icon=”fa-flag” ]Stronger compliance safeguards – Although companies continue to assume liability for the data security when moving to the cloud, a provider using multiple data centers that are geographically diverse can offer a backup solution with more reliability and redundancy.[/item][/list]By use of cloud backups, you can access your files from your phone. Regardless of the information contained in your files and folders, you can rest assured that no one can access any of these files without your permission. Software in the background keeps your files continuously updated and automatically backed up. You can set up an account for unlimited storage and have thousands of your files backed up.
Bob Olsen, Senior Managing Director, has been appointed Global Head of Cybersecurity and Privacy at Ankura, global business advisory services firm. Based in Baltimore, Olsen will be responsible for supporting the continued expansion and growth of the firm’s cybersecurity and privacy practices in both existing and developing markets.
[dropcaps]E[/dropcaps]very summer, stories surface of caregivers who accidentally leave a little one in the car, often with horrific consequences. Tech companies have stepped in to offer parents life-saving solutions, with the hope that, once again, technology can help where human memory fails. Find out which options provide reliable assistance and which ones fall short.
Intel’s Smart Clip
Usually, child car deaths occur when an infant or toddler is left in the car for more than a few minutes. Often, a change in the family transportation schedule or a communication failure results in a memory lapse, and the child is forgotten in the car. The temperature within the vehicle rises to dangerous levels very quickly during the summer. In the winter, prolonged exposure to the cold also becomes a danger.
To combat the problem, Intel developed the Smart Clip, a small device that attaches to any car seat. It replaces the main clip on the car seat straps and rests over the baby’s chest. Inside the clip is a BlueTooth sensor. If you walk too far from the vehicle and the clip remains buckled, the sensor is triggered. The alert goes to your phone, where the Intel Smart Clip app provides additional information such as your baby’s temperature. Every 20 seconds, users receive alerts until they go back and unbuckle the baby from the car seat.
The clip’s sensor can also tell whether or not the car is moving, and it shows that information right under the temperature readout in the app. Once the caregiver unfastens the Intel Smart Clip, the sensor registers that the baby is safely out of the car seat and deactivates the alert.
First Years True Fit IAlert
TOMY International was an early proponent of technology as a life-saver in instances of hot-car death. In 2013, TOMY’s First Years car seats rolled onto the market. Each seat featured motion sensors, angle sensors, and temperature sensors for a complete readout of the child’s condition and safety. Should the seat’s temperature rise too dramatically, the unit sent an alarm to the caregiver’s phone. In addition, it let parents know if the baby was not buckled in while the car was moving, or if the seat was not properly installed in the vehicle. Although the seats worked well when alerting the primary contact, users complained that secondary contacts rarely received the necessary alerts─ and when they did receive them, they were significantly delayed. Currently the seats are unavailable as the company works to address the technical issues.
Evenflo Advanced Embrace
Another high-tech car seat with an emphasis on safety is the Evenflo Advanced SensorSafe Embrace. Walmart offers these seats, which include a hot-car alert system. Released in 2015, this model is in high demand among families with little ones. It features a special sensor with a tone that sounds loudly if the child is still buckled in when the keys are removed from the ignition. With a reasonable price and a wireless receiver that works with the car’s diagnostic system, the product is currently the only crash-tested car seat with this life-saving technology. With successes from Evenflo and Intel, other manufacturers may soon follow, integrating technology into car seats for infants and toddlers.
TikTok says it plans to hire 100 security, data and privacy protection experts in the U.S. by the end of 2020.
The Federal Communications Commission proposed a $225 million fine against Texas-based health insurance telemarketers for making approximately 1 billion illegally spoofed robocalls.
David Fairman has been named Chief Security Officer (CSO), APAC for Netskope.
Michael Bruemmer is Vice President of the Experian® Data Breach Resolution group and Consumer Protection at Experian. Why does believe security serve as a calming force during the COVID-19 pandemic?
The Overseas Security Advisory Council (OSAC) announced that its Annual Briefing will be held online this November, during the week of November 16.
Most computer users have felt it─ that twinge in your wrists or elbows, or that cramp in your neck and shoulders. It’s the sign that your body has been in an uncomfortable position of strain for too long. Whether you spend hours typing at work or hours at home surfing and gaming, you need ergonomic technology to help your body handle the tasks that you need─ or want─ to accomplish.
Making the Curve
One tester claimed that the Microsoft Sculpt Ergonomic keyboard was his favorite for work, while others swear by the Logitech Wireless Keyboard K350, with its convenient cordless design and 3 years of battery life. In addition to its naturally curved shape, the Logitech K350 boasts 2.4 GHz wireless connectivity. For individuals who type all day at the office, the Microsoft Natural Ergonomic Keyboard 4000 provides a “gull wing” design with a 14-degree spread at the center. The keyboard’s wavy surface and key arrangement allow wrists and hands to stay in a natural, relaxed position. The wrist rest provides additional support.
Splitting the Sections
Another keyboard takes ergonomic comfort even further with a dramatic split design. The Kinesis Freestyle Solo Keyboard, created for Mac computers, comes in two separate sections with a Pivot Tether in the middle, holding them together. You can go one step further and take off the tether if you need different positioning.
Tossing Out Tradition
Is your hand cramping up from using your mouse? Ditch the traditional mouse design altogether and try the Roller Mouse Free from Contour Design. Instead of the typical oval, curvaceous ergonomic mouse, this device takes on the shape of a long, slim bar outfitted with buttons. Instead of gripping or flexing, the Roller Mouse Free interprets rolling and sliding motions from your fingers and navigates the screen accordingly.
Shaking It Up
Another mouse option takes the standard mouse design and turns it on its side. The VerticalMouse 3 Wireless from Evoluent adapts the “handshake” orientation and works well for users with large hands. Its five buttons are programmable, and its battery lasts for up to three months.
Feeling Left Out
Since left-handed users are in the minority, they are often neglected when manufacturers design ergonomic mice; but the Humanscale Switch Mouse remedies that problem. Its triangular base permits a natural, comfortable hold for either left-handed or right-handed users. Instead of a scroll wheel that could put more stress on the wrist and fingers, this mouse incorporates a navigation dish, a disc-like device for easier scrolling. The rounded palm rest and the extender feature make this the perfect solution for users of all types.
Seeing Eye to Eye
One way to prevent aches in your shoulders and neck is to keep your monitor at eye level. If your desk has no higher second level on which to set your monitor, consider a display arm so that you can mount your monitor and adjust its height and angle to best suit your height. With a minimal investment and a few key changes to your work space, you can use your computer comfortably again.
On May 26, the District Court found in the In Re: Capital One Consumer Data Security Breach Litigation that a report prepared by Mandiant concerning the Capitol One data breach (Breach Report) was not protected by the work product privilege and must be turned over to Plaintiffs. What are some lessens to be learned from this data breach litigation response?
The National Institute of Standards and Technology (NIST) is looking for public and private sector experts to take part in an exercise that will evaluate the digital forensics community’s ability to conduct mobile- and computer-based investigations.
Global Cybersecurity specialist MetaCompliance announced the publication of a new book, titled Cyber Security Awareness For Dummies.
It is no secret that finding and recruiting strong Chief Information Security Officer (CISO) candidates is far from easy. Many CISOs typically stay in a role for a few years and subsequently are not able to dedicate adequate time to the development of junior leaders who could become the next wave of security leaders. Most organizations are forced to look externally for the experience they require. However, looking for outside hires also contributes to the shortage of potential internal leaders, as skilled professionals are often overlooked. For the security industry to thrive, this needs to change, and it starts with grooming the next generation of leaders.
According to a report from Cisco, 5G’s faster broadband (10 to 20 times faster than 4G) will enable 12 billion mobile-ready devices and IoT connections by 2022 compared to 9 billion in 2017. While this is great news for the rising number of smart device users globally, the increased connectivity can be taxing for IoT security. The combination of higher bandwidth and lower latency is a double-edged sword. While it enables new, exciting use cases like Vehicle-to-Vehicle and telemedicine, it is critical to not lose sight of the fact that it expands the scope of security threats, such as ransomware and botnets, among others.
Security leaders have been discussing the convergence of cybersecurity and physical security for years. But what does it mean?
With the flight to remote work happening so suddenly, senior decision makers at small and medium sized businesses simply haven’t come to reality with their cybersecurity capabilities, and in turn, vulnerabilities.
Berkeley Research Group (BRG) announced that Jared Der-Yeghiayan has joined its Cyber Operations and Incident Response practice as a director in Washington, D.C.
Fullstack Cyber Bootcamp, New York City's cybersecurity bootcamp partner, announced an initiative to offer free introductory courses to people nationwide, providing an opportunity for individuals to explore the cybersecurity industry as a potential career path.
Lookout, Inc. released its 2020 Mobile Phishing Spotlight Report that reveals there was a 37 percent increase worldwide in enterprise mobile phishing encounter rate between the fourth quarter of 2019 and the first quarter of 2020.
Recently, engineer Isis Anchalee faced sexist comments when she posed for her company’s recruitment ad. In response, she started the “I look like an engineer” campaign, which quickly gained momentum among intelligent women who feel the sting of gender-shaming in their chosen careers. The campaign highlighted the continuing problems of sexism and racism in the science and technology fields. Compared to the number of Caucasian men in tech jobs, the percentages of women and minorities are tiny. Diversity is a growing issue for many companies, as they face criticism for their lack of color-blindness and gender-neutrality during the hiring process.
Breaking the Bias
Apple is leading the way in openly striving for diversity among its employees. In 2015, Apple’s CEO Tim Cook, released the diversity breakdown for the company. During the previous year, Apple hired over 2,200 black American employees, a 50% jump from the number of black hires the year before that. Apple also hired 11,000 women, a 65% increase over its female hires during the previous year.
It’s a massive step forward for the big tech company, but Cook acknowledges that even more change must happen. “We know there is a lot more work to be done,” he said. “Some people will read this page and see our progress. Others will recognize how much farther we have to go. We see both.” He emphasized Apple’s celebration of difference, of uniqueness, and of teamwork.
The Same, But Different
The fact remains that many tech companies have even further to go than Apple when it comes to diversity. It’s not that women aren’t interested in the fields of science, technology, engineering, and mechanics— or STEM, as those fields are commonly abbreviated. From their early years, girls are often prodded in other directions, even by well-intentioned teachers and parents. The women that do go on to complete degrees in STEM fields have a tough time getting hired; and when they are hired, they face bias in the workplace.
Emilio J. Castilla and Stephen Benard conducted a revealing study. They found that companies who tend toward the meritocracy mindset often give smaller bonuses to women and larger ones to men, even in cases where the women and men have equal performance reviews.
Minorities face similar issues. The Computing Research Association reported that its 2010 undergraduate class was composed of just 5.6% Hispanic students and 4.2% black students. Only 13.4% of all the students were women. These low numbers are worrisome for social experts, women, and minority groups.
Goodbye, Research— Hello, Action!
Enough with the studies, already. Everyone knows that a problem exists— so what can companies do to make a significant change? Like Apple, they can make a conscious effort to hire for diversity. If two candidates for a position have equal qualifications, the hiring manager needs to make sure that he does not choose based on a subconscious bias towards the white male.
Since the problems with sexism and racism begin early, tech companies should consider creating incentive and training programs that reach children in elementary school and middle school. By donating resources, time, and expertise, these companies offer girls and minority students the means and opportunity to pursue a STEM career. Who knows? Maybe some of those brilliant boys and girls will be the next Steve Jobs or Mark Zuckerberg— just with a different skin color or gender.
The Cybersecurity and Infrastructure Security Agency (CISA) released the first in a series of six Cyber Essentials Toolkits - a starting point for small businesses and government agencies to understand and address cybersecurity risk as they do other risks.
