CISOSteve
@Prot3ctD3f3nd
vCISO | CISO | CIO | Strategic Cyber Security Leader | like to break things....legally
ID:979832625492873218
30-03-2018 21:27:57
356 Tweets
74 Followers
215 Following
Fantastic writeup about the harrowing cyber incident that has affected millions. Robert Ames of the SecurityScorecard STRIKE team also gives actionable recommendations to those in the crosshairs of ransomware actors (aka YOU!)
#ransomware #keeppeoplesafe
securityscorecard.com/blog/change-he…
See here! 3rd party risk is your risk!!
1. Be intentional about your 3rd party risk program
2. Get a tool like SecurityScorecard to identify risks
3. Foster a community of improvement with your vendors! They need help and you need help!
wsj.com/articles/cyber…
You are only as strong as your weakest link : these days 65% of the breaches
happen due to negligence of a third-party vendor.
That’s why having a strong Third Party Risk Management Program (TPRM) and applying objective, trusted KPIs, such as SecurityScorecard SecurityScorecard…
I just finished this. It was fantastic. It was recommended and provided by Aleksandr Yampolskiy to SecurityScorecard leadership. Thanks Alex! Highly recommended if you care about your customers.
This is huge news. The Lockbit gang has collected more than $120 million in payments!
Also, the Operation Cronos team created a decrypt tool, which will be invaluable for recent victims.
Kudos to all teams involved!
#ransomware
bleepingcomputer.com/news/security/…
This is a great achievement by the SecurityScorecard team. Fantastic job!
finance.yahoo.com/news/securitys…
Some interesting trends in this analysis. Ransomware payments topped $1.1 Billion and it looks like some threat actors are willing to ask for smaller ransoms as they increase the frequency of intrusions.
#ransomware
bleepingcomputer.com/news/security/…
Our latest research by Ryan Ryan Sherstobitoff and Dr. Robert Ames reveals how #VoltTyphoon , a state-sponsored group, compromised 30% of Cisco RV320/325 devices in just 37 days. Find out the implications of this extensive campaign and their recommendations.
securityscorecard.com/blog/threat-in…
SecurityScorecard introduces industry-first Security Ratings tailored for Telecommunications, Internet Service Providers, and Cloud Providers. Developed in collaboration with industry leaders, these ratings address unique challenges and enhance accuracy. securityscorecard.com/blog/security-…
We must foster collaboration amongst our internal teams tasked with protecting the org. Threat Intelligence, SecOps, and Third Party Risk Management teams must start to interact more with each other. Utilizing a tool like SecurityScorecard can facilitate those interactions.
This is a great article on the potential cyber threats lurking for the 2024 elections..and not just because I contributed. Thanks to Infosecurity Magazine and Beth Maundrill for covering it!
infosecurity-magazine.com/news-features/…