"Agencies are being pushed to move to more secure Internet Protocol version 6 (IPv6) systems and services under a finalized memo the Office of Management and Budget released Thursday."
https://www.fedscoop.com/omb-finalizes-ipv6-memo/
https://www.fedscoop.com/omb-finalizes-ipv6-memo/
FedScoop
IPv6 is now the standard for federal agencies’ internet traffic
It'll be awhile before the government moves entirely away from the older IPv4 standard, but OMB has now set specific milestones and deadlines.
Is your organization prepared for PCI DSS 4.0? - Help Net Security
https://www.helpnetsecurity.com/2020/11/25/pci-dss-4-0/
https://www.helpnetsecurity.com/2020/11/25/pci-dss-4-0/
Help Net Security
Is your organization prepared for PCI DSS 4.0? - Help Net Security
The principle of the PCI DSS is to protect cardholder data, and with PCI DSS 4.0, it will continue to be the foundation for securing payment card data.
ENISA Report Highlights Resilience of Telecom Sector in Facing the Pandemic — ENISA
https://www.enisa.europa.eu/news/enisa-news/telecom-security-and-resilience-during-covid19
https://www.enisa.europa.eu/news/enisa-news/telecom-security-and-resilience-during-covid19
www.enisa.europa.eu
ENISA Report Highlights Resilience of Telecom Sector in Facing the Pandemic
ENISA is releasing its ‘Telecom Security During a Pandemic’ report at the 32nd meeting of EU telecom security authorities. Underlining the current strength of the sector in the face of the pandemic, the report also calls for increased cooperation, as telecommunications…
Financial cyberthreats in 2021
https://www.brighttalk.com/webcast/15591/451572
https://www.brighttalk.com/webcast/15591/451572
Brighttalk
Financial cyberthreats in 2021
As we near the end of 2020, a challenging year that has turned many things upside down, it is clear that one thing remains unchanged: financial threats are still key security concerns among both indiv...
Article for your C-level:
Digital payments deepen the threat of online fraud in Covid era
https://amp.ft.com/content/d56bdbbb-f7f3-4b44-98c3-e1a372ed2280
Digital payments deepen the threat of online fraud in Covid era
https://amp.ft.com/content/d56bdbbb-f7f3-4b44-98c3-e1a372ed2280
Ft
Digital payments deepen the threat of online fraud in Covid era
Shift to cashless transactions exposes consumers and businesses to new variations of crime
DevSecOps and Zero Trust Architecture (ZTA) for Multi-Cloud Environments | NIST
https://www.nist.gov/news-events/events/2021/01/devsecops-and-zero-trust-architecture-zta-multi-cloud-environments
https://www.nist.gov/news-events/events/2021/01/devsecops-and-zero-trust-architecture-zta-multi-cloud-environments
NIST
DevSecOps and Zero Trust Architecture (ZTA) for Multi-Cloud Environments
Co-hosted by Tetrate
Forwarded from RUSCADASEC news: Кибербезопасность АСУ ТП (Anton Shipulin)
11 Декабря, MITRE ATT&CKcon Power Hour. Кроме прочего будут сессии
- Using ATT&CK to Create Design Basis Threats (DBTs) for Nuclear Power Plants
- ATT&CK for ICS
https://na.eventscloud.com/website/19766/
- Using ATT&CK to Create Design Basis Threats (DBTs) for Nuclear Power Plants
- ATT&CK for ICS
https://na.eventscloud.com/website/19766/
New Zealand Privacy Act: Updated data breach legislation comes into effect on December 1 | The Daily Swig
https://portswigger.net/daily-swig/new-zealand-privacy-act-updated-data-breach-legislation-comes-into-effect-on-december-1
https://portswigger.net/daily-swig/new-zealand-privacy-act-updated-data-breach-legislation-comes-into-effect-on-december-1
The Daily Swig | Cybersecurity news and views
New Zealand Privacy Act: Updated data breach legislation comes into effect on December 1
New data privacy law will mandate reporting of ‘serious’ security incidents
SOCstock 2020 - Siemplify's Security Operations Global Virtual Event
https://www.socstock2020.com/
https://www.socstock2020.com/
Socstock2020
SOCstock 2020
The Grooviest Event for Security Operations Professionals
Commonly Exploited Protocols: Remote Desktop Protocol (RDP)
https://www.cisecurity.org/blog/commonly-exploited-protocols-remote-desktop-protocol-rdp/
https://www.cisecurity.org/blog/commonly-exploited-protocols-remote-desktop-protocol-rdp/
CIS
Blog | Commonly Exploited Protocols: Remote Desktop Protocol (RDP)
CIS is releasing guidance to help organizations understand how to mitigate against these risks and why it is important, in order to protect and defend against the most pervasive cyber threats that are faced today. This guide explains how best to secure Remote…
Кто не идёт вперед, тот идёт назад: Международный институт архивного дела Триеста и Марибора 7-8 декабря 2020 года проводит бесплатную онлайн-конференцию «Международный день архивов»
https://rusrim.blogspot.com/2020/12/7-8-2020.html?m=1
https://rusrim.blogspot.com/2020/12/7-8-2020.html?m=1
Blogspot
Международный институт архивного дела Триеста и Марибора 7-8 декабря 2020 года проводит бесплатную онлайн-конференцию «Международный…
Данное сообщение директора Международного института архивного дела Триеста (Италия) и Марибора (Словения) (International Institute for Archi...
REPLY-TO-ALL Information Security Blog: SOC Forum 2020 Live: Роботы среди нас!
http://reply-to-all.blogspot.com/2020/12/soc-forum-2020-live.html?m=1
http://reply-to-all.blogspot.com/2020/12/soc-forum-2020-live.html?m=1
Blogspot
SOC Forum 2020 Live: Роботы среди нас!
Вкалывают роботы, А не человек! " До чего дошёл прогресс " Крылатов. Энтин Сегодня на SOC forum рассказывал о машинном обучении для целей ...
Malware may trick biologists into generating dangerous toxins in their labs - Help Net Security
https://www.helpnetsecurity.com/2020/12/01/cyber-biological-attack/
https://www.helpnetsecurity.com/2020/12/01/cyber-biological-attack/
Help Net Security
Malware may trick biologists into generating dangerous toxins in their labs - Help Net Security
An end-to-end cyber-biological attack, which may trick biologists into generating dangerous toxins in their labs, has been discovered.
Forwarded from Пост Лукацкого
Постер от SANS про security operations- https://t.co/tTORccZH4a Правда, 50 страниц - это уже не постер ;-) pic.twitter.com/1YiSe1lkxr
— Alexey Lukatsky (@alukatsky) December 3, 2020
— Alexey Lukatsky (@alukatsky) December 3, 2020
www.sans.org
SANS Institute
Computer security training, certification and free resources. We specialize in computer/network security, digital forensics, application security and IT audit.