Hundreds of victims are surfacing across the world from zero-day cyberattacks on Europe’s biggest software manufacturer and company, in a campaign that one leading cyber expert is comparing to the vast Chinese government-linked Salt Typhoon and Volt Typhoon breaches of critical infrastructure. The zero-days — vulnerabilities previously unknown to researchers or companies, but that malicious…
Category: SolarWinds
china, critical infrastructure, cyber workforce, cybersecurity workforce, FireEye, Global Security News, North Korea, North Korean IT workers, Ransomware, Research, Russia, SentinelOne, SolarWinds, telecommunications, Threats, Workforce
Cybersecurity vendors are themselves under attack by hackers, SentinelOne says
Cybersecurity companies don’t just defend their customers against cyberattacks — they also have to defend themselves, and a SentinelOne report published Monday examines some of the biggest threats they’re facing. Those include ransomware, Chinese government-sponsored hackers and North Korean IT workers posing as job applicants, according to the report from SentinelOne’s SentinelLabs. “In recent months,…
Asia Pacific, china, CISA, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), disinformation, Exclusive, Gary Peters, Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Joint Cyber Defense Collaborative, Local Government, Mike Rounds, misinformation, North Carolina, Policy, privacy, rand paul, Russia, Salt Typhoon, Senate Armed Services Committee, Senate Homeland Security and Governmental Affairs Committee, SolarWinds, State Government, Volt Typhoon
Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing law
A bipartisan pair of senators are kicking off the race Wednesday to reauthorize a 2015 cyber threat information sharing law, a move that industry groups and cyber experts are eager to see happen before it’s set to expire in September. Advocates say the 10-year-old Cybersecurity Information Sharing Act has been vital to sharing threat information…
continuous diagnostics and mitigation, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Elastic, Emerging Tech, Global Security News, Government, SolarWinds
How DHS is working to continually improve the Continuous Diagnostics and Mitigation program
Department of Homeland Security officials in charge of the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) have pushed the program to evolve from a compliance-focused initiative to a real-time threat detection and response platform. First launched in 2013, the program is now tracking approximately 6.5 million devices, which includes operational technology…
CISO, Cybersecurity, Geopolitics, Global Security News, Government, liability, Policy, Russia, SolarWinds
SolarWinds CISO says security execs are ‘nervous’ about individual liability for data breachesÂ
SolarWinds’ top cybersecurity executive said chief information security officers are increasingly grappling with how to do their jobs while avoiding individual legal liability for breaches that happen on their watch. Tim Brown, now CISO at SolarWinds, was a vice president and the highest-ranking security official at the company when hackers working on behalf of the…
Bennie Thompson, CISA, Computer Fraud and Abuse Act (CFAA), crowdstrike, Cybersecurity, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), fraud, Global Security News, House Homeland Security Committee, House Intelligence Committee, information sharing, information sharing and analysis centers (ISACs), Internet Security Alliance, Kemba Walden, Mark Green, Mark Warner, Policy, privacy, rand paul, Senate Homeland Security and Governmental Affairs Committee, Senate Intelligence Committee, SolarWinds
A major cybersecurity law is expiring soon — and advocates are prepping to push Congress for renewalÂ
A push is gearing up to renew an expiring 10-year-old cybersecurity law that was viewed at its initial passage as the most significant cybersecurity legislation Congress had ever passed, and that advocates say now fosters several important threat-sharing initiatives. The 2015 Cybersecurity Information Sharing Act provides safeguards for companies that voluntarily share threat intelligence data…