However, the decision says proposed technical minimum standards will be set and then another round of industry consultations, a process that could t
Tag: security strategies
Global IT News
Canadian password manager adds dashboard to business edition
by Howard Solomon •
1Password’s new Insights dashboard allows IT managers to see if employees are taking advantage of all capabilities of
Global IT News
Don’t ditch PowerShell, say intel agencies. Instead, configure it properly
by Howard Solomon •
Start by installing PowerShell 7.2. Then lo
Global IT News
Russia running global cyber-influence operations to support war: Microsoft
by Howard Solomon •
Russian intelligence agencies have stepped up network penetration, espionage and online propaganda activities targeting countries supporting Ukraine, s
Global IT News
Many OT products are ‘insecure by design,’ say researchers
by Howard Solomon •
Forescout researchers discover 56 vulnerabilities in I
Global IT News
Cloudflare, Microsoft 365 suffer major outages
by Howard Solomon •
Two major IT providers suffered service problems this morning, causing CIOs and CISOs hours of grief. A huge outage affected more than a dozen of content provider Cloudflare’s data centers, which affected a large number of major websites. It began around 2:34 a.m. Eastern time and was reported by the company to be resolved about
Global IT News
Mixed reaction to Canada’s proposed cybersecurity law
by Howard Solomon •
One expert says the propose law isn’t innovative, while another says it’s ‘going in the right direction’
The post Mixed reaction to Canada’s proposed cybersecurity law first appeared on IT World Canada.
Global IT News
Designated Canadian firms would have to report cyber breaches under proposed law
by Howard Solomon •
Certain companies in four federally-regulated Canadian critical infrastructure providers — including banks, telcos, energy providers and transport companies — would have to toughen their cybersecurity and share cyber threat information with Ottawa under proposed legislation introduced today by the federal government. Specific companies would be designated after the legislation passes, although in a briefing with […]
The post Designated Canadian firms would have to report cyber breaches under proposed law first appeared on IT World Canada.
Global IT News
Canadian military provider suffered ransom attack, says news report
by Howard Solomon •
The parent company of a Canadian military contractor has acknowledged suffering a ransomware attack, according to a news report. Global News said U.S.-based TransDigm Group issued a statement confirming there was what it called a “third-party intrusion” into their network “that disrupted … operations, in connection with a ransom demand.” TransDigm is the parent company […]
The post Canadian military provider suffered ransom attack, says news report first appeared on IT World Canada.
Global IT News
RSA Conference 2022 – Advice to a new CISO: Shut up and listen
by Howard Solomon •
CISO panel talks about what the first three months on the job are like
The post RSA Conference 2022 – Advice to a new CISO: Shut up and listen first appeared on IT World Canada.
Global IT News
RSA Conference 2022: Infosec pros urged to help small firms, non-profits
by Howard Solomon •
“The weakest link in your supply chain can bring down the entirety of your ecosystem,” conference told
The post RSA Conference 2022: Infosec pros urged to help small firms, non-profits first appeared on IT World Canada.
Global IT News
New owner of Canadian ransomware negotiating firm expands its mandate
by Howard Solomon •
Daniel Tobok buys Cypfer and adds post-incident recovery consulting to the company’s services
The post New owner of Canadian ransomware negotiating firm expands its mandate first appeared on IT World Canada.
Global IT News
LockBit claims Mandiant data will be published, Mandiant says no evidence of theft
by Howard Solomon •
A major ransomware gang claimed today it has data from Google subsidiary Mandiant, one of the biggest names in threat intelligence and incident response. According to several news sites, the LockBit gang’s data leak site now lists Mandiant.com as one of its victims, along with the notice “All available data will be published.” Mandiant quickly […]
The post LockBit claims Mandiant data will be published, Mandiant says no evidence of theft first appeared on IT World Canada.
Global IT News
Mastercard Canada’s cyber centre of excellence adds collaboration facility
by Howard Solomon •
IT developers from around the world can use the facility to test payment-related cybersecurity solutions
The post Mastercard Canada’s cyber centre of excellence adds collaboration facility first appeared on IT World Canada.
Global IT News
Canadian energy provider Suncor among firms vowing to increase cyber resiliency
by Howard Solomon •
The pledge, developed by participants at the World Economic Forum, is a response to cyber attacks on the energy sector
The post Canadian energy provider Suncor among firms vowing to increase cyber resiliency first appeared on IT World Canada.
Global IT News
Human error tops causes of data breaches, says Verizon report
by Howard Solomon •
Ransomware jumped 13 per cent last year over 2022, the annual Verizon Data Breach Investigations Report found
The post Human error tops causes of data breaches, says Verizon report first appeared on IT World Canada.
Global IT News
Conti ransomware brand is dead, but gang restructures: Report
by Howard Solomon •
Gang leveraged its highly-publicized attack on Costa Rica to quietly shift operations, report says
The post Conti ransomware brand is dead, but gang restructures: Report first appeared on IT World Canada.
Global IT News
Toronto high school team wins 2022 CyberTitan cybersecurity competition
by Howard Solomon •
The fifth annual competition saw 130 high schools teams from across the country enter, with 11 making the final
The post Toronto high school team wins 2022 CyberTitan cybersecurity competition first appeared on IT World Canada.
Global IT News
Privacy Commissioner’s bulletin helps Canadian firms handle sensitive personal information
by Howard Solomon •
Documents pulls together court and OPC rulings on what sensitive information could include and how it should be treated
The post Privacy Commissioner’s bulletin helps Canadian firms handle sensitive personal information first appeared on IT World Canada.
Global IT News
Canadian CISOs more likely to push prevention than detection to fight ransomware: Survey
by Howard Solomon •
Proofpoint survey questioned CISOs in 14 countries on a range of issues including
The post Canadian CISOs more likely to push prevention than detection to fight ransomware: Survey first appeared on IT World Canada.
Global IT News
G7 needs group to share best cybersecurity practices in light of Russian attacks on Ukraine, says Canada
by Howard Solomon •
In the face of what it calls Russia’s “malicious cyber activities” in its war against Ukraine, Canada is urging the G7 nations to create a working group to share cybersecurity best practices for protecting their IT and telecom critical infrastructure. Innovation, Science and Industry Minister François-Philippe Champagne told reporters Friday he made that suggestion after […]
The post G7 needs group to share best cybersecurity practices in light of Russian attacks on Ukraine, says Canada first appeared on IT World Canada.
Global IT News
Open-source software community releases plan to boost application security
by Howard Solomon •
Under pressure after the discovery of several open source vulnerabilities including Log4Shell, leading open-source groups and software firms have created a 10-point plan for ensuring ongoing improvements in the security of open-source code. The plan, released Thursday with the encouragement of the White House, includes commitments of US$30 million in funding from Amazon, Google, Intel, […]
The post Open-source software community releases plan to boost application security first appeared on IT World Canada.
Global IT News
Five Eyes cyber agencies warn MSPs to expect an increase in attacks
by Howard Solomon •
Aert includes guidance on how MSPs and their customers can decrease the risk of being victimized by a cyber attack
The post Five Eyes cyber agencies warn MSPs to expect an increase in attacks first appeared on IT World Canada.
Global IT News
Ransomware trends: Cross-platform execution, improving infrastructure and taking sides in war
by Howard Solomon •
On the eve of the third annual Anti-Ransomware Day, Kaspersky issues report on the latest malware trends
The post Ransomware trends: Cross-platform execution, improving infrastructure and taking sides in war first appeared on IT World Canada.
Global IT News
Ikea Canada tight-lipped on details of breach of security controls
by Howard Solomon •
Company will only say an “investigation” led to the disclosure that an employee made unauthorized searches
The post Ikea Canada tight-lipped on details of breach of security controls first appeared on IT World Canada.
Global IT News
Microsoft expands its managed security solutions
by Howard Solomon •
Some new offerings under the Microsoft Security Experts umbrella include online access to an expert for advice
The post Microsoft expands its managed security solutions first appeared on IT World Canada.
Global IT News
Apple, Microsoft, Google expand support for passwordless sign-in
by Howard Solomon •
The three companies announce support for new FIDO Alliance
The post Apple, Microsoft, Google expand support for passwordless sign-in first appeared on IT World Canada.
Global IT News
World Password Day: How CISOs can get rid of passwords
by Howard Solomon •
Help make this year’s World Password Day the last by following advice from experts
The post World Password Day: How CISOs can get rid of passwords first appeared on IT World Canada.
Global IT News
Patch warning issued for Avaya, Aruba switches
by Howard Solomon •
Security updates need to be installed to patch vulnerabilities in login web portals
The post Patch warning issued for Avaya, Aruba switches first appeared on IT World Canada.
Global IT News
Cybersecurity course for disadvantaged youth now offered by Canadian agency
by Howard Solomon •
Post-secondary Canadian institutions are increasingly offering cybersecurity courses to help fill the demand for infosec pros. The latest is a Toronto-area not-for profit agency called Youth Employment Services (YES) that trains disadvantaged and vulnerable youth aged 15 to 29. Next month it starts a cybersecurity course with paid training in conjunction with IBM. Graduates of […]
The post Cybersecurity course for disadvantaged youth now offered by Canadian agency first appeared on IT World Canada.
Global IT News
Canada, U.S. in group of 61 nations vowing to work for an open internet
by Howard Solomon •
Signatories promise to resist efforts to splinter the global Internet
The post Canada, U.S. in group of 61 nations vowing to work for an open internet first appeared on IT World Canada.
Global IT News
Four of the top 15 vulnerabilities used last year by hackers were more than a year old: Report
by Howard Solomon •
One unpatched vulnerability regularly exploited by hackers in Fortinet products dates back to 2018, says report from Five Eyes cyber intelligence agencies
The post Four of the top 15 vulnerabilities used last year by hackers were more than a year old: Report first appeared on IT World Canada.
Global IT News
Fewer insurers offering cyber coverage — and its harder to get — says Sophos ransomware report
by Howard Solomon •
Forty per cent of respondents said fewer companies are offering cyber insurance.
The post Fewer insurers offering cyber coverage — and its harder to get — says Sophos ransomware report first appeared on IT World Canada.
Global IT News
Infected resumés being sent to hiring managers, warns eSentire
by Howard Solomon •
Latest campaign to spread the more_eggs malware switches from those hunting for jobs to those doing the hiring
The post Infected resumés being sent to hiring managers, warns eSentire first appeared on IT World Canada.
Global IT News
Conti ESXi ransomware strain could be run directly by an attacker, says Trellix
by Howard Solomon •
Report analyzes a recently captured strain of the ransomware aimed at the VMware hypervisor
The post Conti ESXi ransomware strain could be run directly by an attacker, says Trellix first appeared on IT World Canada.
Global IT News
Okta now manages devices of third parties accessing its customer support tools
by Howard Solomon •
Move comes after a cyberattack through a supplier. After investigation only two cusomters were compromised, Okta sasy
The post Okta now manages devices of third parties accessing its customer support tools first appeared on IT World Canada.
Global IT News
Canada and Five Eyes allies issue another plea to critical infrastructure firms to prepare for Russian cyber attacks
by Howard Solomon •
Canada and its allies in the Five Eyes intelligence co-operative have issued another warning to organizations in the critical infrastructure sectors to be prepared for cyberattacks from Russia as a response to governments helping Ukraine. Similar to a warning issued in March, it says “evolving intelligence” indicates that the Russian government is exploring options for […]
The post Canada and Five Eyes allies issue another plea to critical infrastructure firms to prepare for Russian cyber attacks first appeared on IT World Canada.
Global IT News
Sunwing incident shows need for mandatory cyber breach reporting, says expert
by Howard Solomon •
“The lessons that need to be learned from this attack need to be shared widely,” says CEO of Beauceron Security. Read why
The post Sunwing incident shows need for mandatory cyber breach reporting, says expert first appeared on IT World Canada.
Global IT News
Hackers going after VMware Workspace ONE Access and VMware Identity Manager; patch now
by Howard Solomon •
Hackers are trying to take advantage of a recently discovered critical vulnerability in VMware Workspace ONE Access and VMware Identity Manager, adding to the pressure to install patches for this as soon as possible. The Bleeping Computer news site quotes security researchers saying a proof-of-concept exploit has been released online for the VMware CVE-2022-22954 remote […]
The post Hackers going after VMware Workspace ONE Access and VMware Identity Manager; patch now first appeared on IT World Canada.
Global IT News
Threat actors have new tools for attacking ICS, SCADA devices, say US cyber agencies
by Howard Solomon •
Tools have a modular architecture enabling hackers to conduct highly automated exploits against targeted devices
The post Threat actors have new tools for attacking ICS, SCADA devices, say US cyber agencies first appeared on IT World Canada.