Home > RSS Feeds > Security
  • The big one is on its way. At least, a majority of cyber-security professionals believe that the nation's critical infrastructure will be hit by a major breach within the next two years. Worse, they also believe the current state of cyber-defense at U.S. government agencies leaves them unprepared to respond. These represent the most alarming findings of Black Hat's latest report, "Portrait of an Imminent Cyberthreat." The report is based on Black Hat's third annual survey of Black Hat conference attendees, in which nearly 600 security professionals were polled, 40 percent of whom work in critical infrastructure industries such as utilities, healthcare, financial services and government. Respondents weighed in on everything from cyber-risks to Trump administration cyber-policies to nation-state attacks, and the results clearly indicate that government and business leaders need to make security a much higher priority—and soon! "The responses don't just indicate that breaches might happen; they indicate that many breaches will happen in the next year or two," said Steve Wylie, general manager of Black Hat. "We have the top security people in their organizations saying that we should expect major compromises. It would seem to be a warning and a wake-up call that enterprises need to pay more attention to cyber-security threats."

  • Storytelling is an effective way to engage people, and, in a world where content is king, it can help reinforce your cyber-resilience campaign.

  • The internet of things (IoT) is rapidly moving into the mainstream of business, compelling organizations to examine and reexamine the fundamental ways they do business and manage technology. Yet, as technology evolves and expands, and as enterprises rewire and reinvent processes, there's a growing need to focus on security and privacy issues. A newly released PwC study, "Global State of Information Survey 2017, Uncovering the potential of the Internet of Things," examines how organizations are coping with risks and dangers related to IoT security and privacy. "As the IoT moves toward the core of digital business, the integration of security domains—IT, OT [operational technology] and consumer technologies—will likely introduce game-changing hazards," the report noted. "These potential risks include disruption in the information flow among connected devices, physical interference with equipment, impacts on business operations, theft of sensitive information, compromise of personal data, damage to critical infrastructure—and even loss of human life." Significant privacy concerns also surface. "As the internet of things rapidly expands, it is introducing new risks that are not well-understood and could have sweeping implications," said Sean Joyce, PwC U.S. cyber-security and privacy leader. The information in the report is based on responses of more than 10,000 CEOs, CFOs, CIOs, CISOs, CSOs, vice presidents and directors of IT. Here's a look at some of the key findings.