On Wednesday, October 22, 2021, Rep Ritchie Torres sponsored the DHS Software Supply Chain Risk Management Act of 2021. It aims to strengthen the Department of Homeland Security’s (DHS) infrastructure by offering in-depth visibility to its software supply chain. The new legislation that the U.S. House of Representatives passed in a 412-2 vote was a… Read More »A New Act passed towards securing the DHS software supply chain!
Welcome to this week’s Weekly News roundup. Here we present the latest news and updates in the world of cybersecurity. From lawmakers pushing for better cybersecurity for the transport sector to fraudsters targeting Android users into premium subscription services without their consent, this week saw several cybersecurity incidents. Here is a rundown: A team of… Read More »Cybersecurity News Weekly Roundup (October 25-29)
Over the last year, there have been multiple instances where cybercriminals have targeted the U.S.’ transportation infrastructure. These include attacks against ferries, railways, and even oil supply chains. These attacks cause widespread disruption in the lives of ordinary citizens. A committee of lawmakers from the Department of Homeland Security will discuss industry-wide measures to improve… Read More »U.S. Lawmakers Push for Better Cybersecurity for Transport Sector
VirusTotal, the cybersecurity arm of Google, released a comprehensive report on Ransomware activity. The report collected and analyzed 80 million potential ransomware-related samples submitted over the last year and a half from 140 different countries. With ransomware attackers threatening to publicize a company’s business secrets, patents, and IP rights, the stakes are rising. This report’s… Read More »Key Takeaways from VirusTotal’s Ransomware Activity Report with Actionable Suggestions!
This October, National Cyber Security Awareness Month, the U.S. Government is making intelligent and systematic moves to combat cyberattacks, most notably ransomware. The two recent US Civil Cyber-Fraud Initiatives that are strategic measures this direction are: Launch of US Civil Cyber-Fraud Initiative by Deputy Attorney General Lisa O. Monaco (under the existing False Claims Act… Read More »US Civil Cyber-Fraud Initiatives that make Reporting Cyberattacks and Ransomware Payments Mandatory
The announcement of the Cybersecurity Maturity Model Certification (CMMC) model in January 2020 by the Department of Defense (DoD) was not a surprise to the DoD supply chain. The DoD had been requiring more cybersecurity surety by its supply chain as cyberattacks increased in scale and frequency over the 2010s. Today, let us look at… Read More »Journey of CMMC & Why Businesses Need to Prepare Now!
Cybersecurity Awareness Month, earlier known as National Cybersecurity Awareness Month (NCSAM) falls in October every year. Now in its 18th year, the Month aims to spread awareness on cybersecurity and the best practices across various industries and stakeholders. Since its inception by CISA and the NSCS in 2004, the overarching theme of this initiative has… Read More »This Cybersecurity Awareness Month #BeCyberSmart
If you have been a frequent user of the internet at least for the past decade (assuming you do not live under a rock) and have multiple accounts in several different websites/applications, then it is highly likely that at least one of your accounts may have been compromised in the millions of data breaches that… Read More »What makes Credential Stuffing attacks so dangerous?
Students readily offer their personal information to schools and colleges, hoping to receive a quality education. Many of these institutions have a thorough selection process that often requires students to share everything from social security numbers to favorite hobbies. Hence, colleges, like hospitals, have loads of information on each student. The problem is that this… Read More »Future Under Threat: State of Cybersecurity in Educational Institutions
Just about a year ago, New Zealand’s stock exchange was brought to its knees by a textbook Distributed Denial of Service (DDoS) attack. Now, ANZ bank and several institutions in New Zealand have experienced another DDoS attack. At present, there seems to be nothing serious about the attack, and all websites are back online. In… Read More »DDoS attacks on NZ Institutions, is it A Blast from the Past?
