Information Security experts commenting on news that the NSA Swears It Won’t Allow Backdoors in New Encryption Standards. The genesis is comments made by the NSA Director of Cybersecurity last week that there will be no backdoors in the quantum computer resistant encryption standards being developed by the federal government. Following this line of thinking, we asked Rajiv Pimplaskar, CEO of Dispersive Holdings, the following question: Is there a way to make encryption unbreakable by quantum computers?
ISBuzz Team
A joint security advisory from multiple national cybersecurity agencies, across the United States, Canada, New Zealand, the Netherlands, and the United Kingdom, has been released and it includes guidance on the top 10 most commonly exploited attackers vectors cybercriminals use to gain an initial access to organisations: https://www.cisa.gov/uscert/ncas/alerts/aa22-137a
Multinational company Omnicell recently confirmed that it had experienced a data breach following a reported ransomware attack, impacting internal systems. The company, headquartered in Mountain View, California, USA, learned of the ransomware attack, which it disclosed on May 9 2022 in a 10-Q filing with the Securities and Exchange Commission. More details are likely to be disclosed in the coming weeks. In the company’s quarterly 10-Q filing, Omnicell stated: “Our IT systems and third-party cloud services are potentially vulnerable to cyber-attacks, including ransomware, or other data security incidents, by employees or others, which may expose sensitive data to unauthorized persons.…
In light of the ongoing speculation around Musk’s Twitter takeover and how it could be dependent on verifying the number of bot accounts, please see below for a comment from Industry leader about how digital identity is broken and the changes we need to see to rebuild digital trust in social media platforms.
Kaspersky has released a new report, “How business executives perceive the ransomware threat” showing that in 88% of organizations around the world that were previously attacked by ransomware, business leaders would choose to pay a ransom if faced with another attack. Across organizations that have yet to be victimized, only 67% would be willing to pay, and they would be less inclined to do so immediately. Ransomware remains a prominent threat, with nearly two-thirds (64%) of companies already having suffered an attack.
The Irish Council for Civil Liberties (ICCL) is reporting on the scale of Real-Time Bidding data broadcasts in the U.S. and Europe. Key insights RTB is the biggest data breach ever recorded. It tracks and shares what people view online and their real-world location 294 billion times in the U.S. and 197 billion times in Europe every day.On average, a person in the U.S. has their online activity and location exposed 747 times every day by the RTB industry.In Europe, RTB exposes people’s data 376 times a day.Europeans and U.S. Internet users’ private data is sent to firms across…
Following the news that Europe has moved closer toward new cybersecurity standards and reporting rules following a provisional network and information systems agreement dubbed NIS2 by the European Council and Parliament, please find comments below from Saket Modi, who highlights that the new regulations are a step in the right direction, but more needs to be done, and Paul Brucciani, who offers comments around the ways organizations should also look to logical cybersecurity rules as compliance doesn’t always make you safer.
Lincoln College (a private IL college named for Abraham Lincoln) announced that it is closing as a result of the financial burdens of the pandemic and a devastating December 2021 cyberattack “that thwarted admissions activities and hindered access to all institutional data, creating an unclear picture of Fall 2022 enrollment projections. All systems required for recruitment, retention, and fundraising efforts were inoperable.” Lincoln is a historically black college (HBCU) that’s previously survived a major fire, the Civil War, WWI, WWII, and recent US turmoil and wars. Five top cybersecurity experts offer thoughts for consideration.
The Cornwall council accidentally published the personal details of five schoolchildren in publicly accessible meeting documents. Cornwall Council has apologized for the data breach, including their names, addresses, and dates of birth. It made the error when it published online documents for a meeting of its School Transport Appeals Committee.
5 years on from one of the world’s most damaging ransomware attacks, research from network detection and response leader ExtraHop has found that 68% of enterprises are still running insecure protocol that were exploited by the North Korean ransomware.