ISACARuSec – Telegram
ISACARuSec
@IsacaRuSec
2.27K subscribers
1.77K photos
13 videos
303 files
5.64K links
Канал направления ИБ Московского отделения ISACA

Направление канала новости ISACA, новости в области управления ИБ в России и мире, обмен лучшими практиками.

https://engage.isaca.org/moscow/home

Связь с администрацией
@popepiusXIII
Download Telegram
About
Blog
Apps
Platform
Join
ISACARuSec
2.27K subscribers
ISACARuSec
TAdviser выпустил Карту российского рынка информационной безопасности: более 200 разработчиков и поставщиков услуг https://t.co/5hbSB8kguO
1.97K views
ISACARuSec
Если информация достоверна, то это хороший пример почему важно тестировать и держать в актуальном состоянии систему резервного копирования. предоставленный злоумышленником инструмент работал слишком медленно. А свои бэкапы не содержали все файлы.

https://twitter.com/KimZetter/status/1392854986959196165
Twitter
Kim Zetter
Story says Colonial restored netwrk from backups not decrypted systems, because decryption tool was too slow. Note tho, expert I spoke to yesterday says they never restore from ransomed machines because untrustworthy; they always use backup when availabl…
298 viewsedited  
ISACARuSec
https://medium.com/anton-on-security/soc-trends-isac-webinar-q-a-8e500093a1d3
Medium
SOC Trends ISACA Webinar Q&A
A few days ago we did a very well-attended webinar focused on the modern Security Operations Center (SOC) approach (see “Trend for the…
285 views
ISACARuSec
Весьма неоднозначная инициатива ведущая к усилению риска ИБ.

https://www.wsj.com/articles/a-maritime-solution-for-cyber-piracy-11620922458
The Wall Street Journal
Opinion | A Maritime Solution for Cyber Piracy
Congress should revive the ‘letter of marque’ and authorize companies to defend against hackers.
306 views
ISACARuSec
Подготовлена лицензия для правил детектирования типа Yara

https://github.com/SigmaHQ/sigma/blob/master/LICENSE.Detection.Rules.md
265 viewsedited  
ISACARuSec
https://csrc.nist.gov/publications/detail/white-paper/2021/05/14/establishing-confidence-in-iot-device-security/draft
CSRC | NIST
Establishing Confidence in IoT Device Security: How do we get there? (Draft)
NIST conducted a review of the available alternative approaches for providing confidence in the cybersecurity of Internet of Things (IoT) devices in November 2020 through January 2021, conducting interviews with government and private sector organizations…
277 views
ISACARuSec
https://www.darkreading.com/operations/85--of-data-breaches-involve-human-interaction-verizon-dbir/d/d-id/1341012
Dark Reading
85% of Data Breaches Involve Human Interaction: Verizon DBIR
Ransomware, phishing, and Web application attacks all increased during a year in which the majority of attacks involved a human element.
312 views
ISACARuSec
https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-may-2021
Google Cloud Blog
Google Cloud CISO Perspectives: May 2021 | Google Cloud Blog
Google Cloud CISO Phil Venables shares his perspective on industry news as RSA 2021 approaches.
321 views
ISACARuSec
https://twitter.com/FrankMcG/status/1393306715970490371

I’m just waiting for when ransomware starts changing data as it decrypts for you.

Ransomware is the tip of the iceberg. How many have you fully solved data integrity protections? I’ll wait while you lie. Much greater risks and concerns. What do you do if your data is all muddy?
305 viewsedited  
ISACARuSec
https://www.helpnetsecurity.com/2021/05/12/maritime-cybersecurity/
Help Net Security
Navigating the waters of maritime cybersecurity
In January 2021, new International Maritime Organization (IMO) guidelines on maritime cyber risk management went into effect.
304 views
ISACARuSec
Forwarded from Пост Лукацкого
Новая CIS Controls v8. Там теперь не Топ20 мер защиты, а Топ18. Все сгруппировано; под разной зрелости компании. Еще и маппинг в угрозы и риски. А также все это автоматизировано в виде Excel’ек pic.twitter.com/bAoJkLekHY
— Alexey Lukatsky (@alukatsky) May 17, 2021
173 views
ISACARuSec
Forwarded from Пост Лукацкого
176 views
ISACARuSec
https://www.nist.gov/news-events/events/2021/06/enhancing-software-supply-chain-security-workshop-and-call-position
NIST
Enhancing Software Supply Chain Security: Workshop and Call for Position Papers on Standards and Guidelines
On June 2-3, NIST will host a virtual workshop to enhance the security of t
274 views
ISACARuSec
https://twitter.com/TAdviser/status/1394321831121891332
Twitter
TAdviser
Подсчитаны расходы на информационную безопасность в 2020 году tadviser.ru/a/275984
272 viewsedited  
ISACARuSec
283 views
ISACARuSec
https://www.gartner.com/en/newsroom/press-releases/2021-05-17-gartner-forecasts-worldwide-security-and-risk-managem
Gartner
Gartner Forecasts WW Security Spending to Reach $150 Billion in 2021
Worldwide spending on information #security and #risk management technology and services is forecast to grow 12.4% to reach $150.4 billion in 2021, according to @Gartner_IT #GartnerSEC #Cybersecurity
235 views
ISACARuSec
https://www.shujinko.io/free-soc-2-automation-software-for-auditors/
223 views
ISACARuSec
https://twitter.com/SVSoldatov/status/1394511766441369601
Twitter
Sergey Soldatov
Приходите и увидимся!securityday.kaspersky.ru
235 viewsedited  
ISACARuSec
Forwarded from Пост Лукацкого
120 views
ISACARuSec
Forwarded from Пост Лукацкого
109 views
ISACARuSec
Forwarded from Пост Лукацкого
108 views