Kaseya and REvil: two sides of the supply-chain risk story

Posted by:

Kaseya and REvil: two sides of the supply-chain risk story

The ransomware problem has escalated at a steady pace over the last few years, with that upward slope punctuated by a few larger spikes as major incidents hit the headlines.

July’s Kaseya incident looks likely to be one of the biggest of those spikes, with at least 1000 and, by some reports, as many as 2000 small and medium businesses and organizations impacted. The subsequent disappearance of the perpetrators, the REvil ransomware-as-a-service group, from their various online locations is likely only ...

Read More →
0

Cyber Criminals, Incident Response, Information Security, IT Security, Network Security, Supply Chain

, , , ,

The Delicate OpSecs needed to secure Supply Chains

Posted by:

The Delicate OpSecs needed to secure Supply Chains

OPSEC is a pretty familiar term in this industry, but reviewing its fundamental meaning and what it implies for us today in our current threat landscape is a useful exercise.

After all, being able to secure our systems and information from prying eyes from the likes of cyber thieves, scammers, ransomers, and so on, is a key priority for most businesses today.

OPSEC is the term the industry uses to talk about operational security. ...

Read More →
0

cyber-security, Data Breach, GDPR, HIPAA, Identity Theft, Incident Response, Information Security, IT Security, Network Security, PCI DSS, Penetration Testing, Ransomware, Red Team, Supply Chain

, , ,

Will blockchain transform supply chain management?

Posted by:

Will blockchain transform supply chain management?

Just as no man is an island, no business operates entirely on its own. We all have a supply chain, a support network of businesses providing the products and services we rely on to get our own work done.

This supply chain has always been a major risk point for businesses – we count on our suppliers to get their work done to standard and on time, but also to protect our interests, and in many cases our data and that ...

Read More →
0

Blockchain, Compliance, Crypto currency, Cryptomining, cyber-security

, , ,

Supply Chain attacks: 80% of senior IT professionals say it’s fastest growing cyberthreat

Posted by:

Supply Chain attacks: 80% of senior IT professionals say it’s fastest growing cyberthreat

Earlier this year, we wrote about supply chain risk, warning organizations to be more wary, especially since GDPR has come into full effect. That said, GDPR is by no means the only privacy regulation out there (consider Massachusetts’ CMR 17.00  or California’s 2018 Consumer Privacy Act. No longer can we assume little to no liability when it comes to third party processing or handling of sensitive data.

Read More →

0

201 CMR 17.00, CISO On Demand, Cloud Security, Compliance, Cyber Criminals, cyber-security, Data Breach, GDPR, HIPAA, Information Security, IT Security

, ,

The truth about managing Supply Chain risk? It’ not easy

Posted by:

The truth about managing Supply Chain risk? It’ not easy

Ahhh the joys of supply chain risk management. It is a complex beast with many heads, each focusing on the problem from a different operational standpoint.

The goal is of course to build and maintain a resilient system of checks and balances so your organisation’s supply chain is healthy and operating at an acceptable level of risk.

If this sounds easy to you, I am willing to bet you’re a theoretical expert.

Read More →

0

CISO On Demand, Cloud Security, Compliance, Cyber Criminals, cyber-security, Identity Theft, IT Security

, , , , , ,

})
SEC Cybersecurity Exams