Security News > 2020

What are the silver linings to the cybersecurity skills shortage? Employee satisfaction and increasing diversity, says John McCumber of2. McCumber is the director of cybersecurity advocacy, North America, for2.

The UK's spy agency auditor has given public sector snoopers a clean bill of health - except for domestic surveillance specialists MI5, whose cloud data storage blunder is still under investigation. In its annual report for 2018, published this week, the Investigatory Powers Commissioner's Office concluded once again that all is broadly well in the murky world of British state surveillance, where everyone from eavesdropping agency GCHQ to council binmen is legally allowed to spy on you.

As of March 5, the map lists 176 cases in the US. A United Nations aviation agency built the 3DFX Dispersion map, which shows the movement of the coronavirus around the world via air traffic routes from its origin in Wuhan, China. The geographic information system map displays multiple layers of data, including deaths, confirmed cases, and cases by country.

UNITED NATIONS - The United States, United Kingdom and Estonia accused Russia's military intelligence Thursday of conducting cyber attacks against the Georgian government and media websites in an attempt "To sow discord and disrupt the lives of ordinary Georgians." Estonian Ambassador Sven Jurgenson read a statement afterward, flanked by UK Ambassador Karen Pierce and acting U.S. deputy ambassador Cherith Norman Chalet, saying the cyber attacks "Are part of Russia's long-running campaign of hostile and destabilizing activity against Georgia and are part of a wider pattern of malign activity."

Women appearing on the RSA keynote stages this year included, among others, cryptography expert and blockchain fan Tal Rabin; Katie Arrington, the Pentagon's CISO of acquisitions, discussing Huawei; Jessica Barker talking about the psychology of fear and trying to blame users; computer scientist and human factors expert Celeste Paul of the National Security Agency; coordinated vulnerability disclosure queen Katie Moussouris; and Wendy Nather of Duo Security - now part of Cisco - who sadly wasn't allowed to arrive on the opening morning's keynote stage via skateboard. RSA went ahead despite mounting concerns over the coronavirus SARS-CoV-2 that causes the severe acute respiratory syndrome COVID-19.

On Tuesday, researchers reported two malware campaigns connected to the coronavirus: One that uses a phishing email to spread Remcos RAT and malware payloads and the other using a Microsoft Office document to drop a backdoor onto a victim's computer. One campaign is in the form of a phishing email with a PDF offering coronavirus safety measures, according to research from ZLab-Yoroi Cybaze.

On Tuesday, researchers reported two malware campaigns connected to the coronavirus: One that uses a phishing email to spread Remcos RAT and malware payloads and the other using a Microsoft Office document to drop a backdoor onto a victim's computer. One campaign is in the form of a phishing email with a PDF offering coronavirus safety measures, according to research from ZLab-Yoroi Cybaze.

How can the use of "Smart contracts" based on distributed ledger technology help improve the overall security picture for evolving healthcare sector supply chains? Mitch Parker, CISO of Indiana University Health, explains. "Smart contracts are pieces of executable code that can run as part of a distributed ledge technology system, and they're relevant to healthcare supply chain because a lot of the [newer] enterprise planning resource systems we're putting in actually support those as a way of doing data interchange," says Parker in an interview with Information Security Media Group.

Today's cybersecurity landscape is arguably without a perimeter. Homayun Yaqub of Forcepoint describes a human-centric approach to cybersecurity.

Joseph Krull, an analyst with Aite Group, recommends that vendors at RSA Conference should focus on how they integrate with the life of a CISO, rather than fixing point solutions. Why vendors should focus on what problems their solutions are solving;.