Meet Ellen. As CISO for a regional bank, she spends her time spreading security awareness, coaching her managers, and supporting the selection of security tools. Ellen doesn’t know that her bank has been compromised, or that a nation-state has been funneling data out of her network with impunity. After three years of pleasant ignorance, Ellen happily retires from the bank and moves to Florida where she enjoys sailing.
Like so many events that fell victim to social distancing during the pandemic, Microsoft’s annual BlueHat conference was cancelled for both 2020 and 2021. This week the Microsoft Security Response Center (MSRC) instead held a virtual panel event discussing vulnerability disclosure.
Firefox and Apple are offering email alias options, but experts say while they’re helpful, they aren’t as safe as you might think, and should be used with other security measures.
Accenture and Prevailion describe the recent activities of the Iranian threat group Lyceum. It’s concentrated on installing backdoors in ISPs and telecommunications companies.