With a new proposal that would require federal agencies to get permission from the Office of Management and Budget to opt-out of implementing specific cybersecurity practices— encryption of sensitive information and multifactor authentication—Sen. Ron Wyden, D-Ore., and Rep. Lauren Underwood, D-Ill., are challenging the status quo in cybersecurity policy.

“To secure our nation’s infrastructure, we must prioritize that federal agencies are adhering to the best cybersecurity practices,” Underwood, the new chair of the Committee on Homeland Security’s subcommittee on cybersecurity, infrastructure protection and innovation said in a press release of the bill’s introduction. “I’m pleased to join Senator Wyden to introduce this timely legislation.” 

The generally accepted theory in U.S. cybersecurity policy centers on risk management and the idea that because there are limited resources and variations in system designs and functions, each entity must decide for itself where and how to focus its protection efforts. 

The National Institute of Standards and Technology’s 2013 cybersecurity framework is at the heart of this. It references a host of security controls,…

Read More…

Afraid of being hacked or cyber-compromised
in some other way?

If you want to be very afraid, take a look at the online sites that track the daily
flows of global cyber attacks in real time (similar to a real-time map of
global airline routes in the good old days when planes actually flew).

For example, threatmap.checkpoint.com
currently logs around 30 million attempted attacks a day, with the country
locations of the offending and receiving parties changing dynamically from
minute to minute.

Usually, the good guys thwart the attacks.
But when the ‘black hats’ win over the ‘white hats’ in the constant game of
cat-and-mouse, chaos abounds.

The attacks highlight the importance of
constant vigilance on the part of government and companies, as well as
individuals who remarkably are still vulnerable to the entreaties of
disenfranchised Nigerian princesses.

With this week being Australian Cyber Week, what
better time to enforce the message?

The silver lining to the dark threats is that
cyber crime prevention has become a billion dollar industry – and a thriving
ASX sector covering high-level encryption work for sensitive government bodies
to blocking…

Read More…

Washington, DC, 7 September 2020. – The White House has issued last week its fifth Space Policy Directive (SPD 5) outlining cybersecurity principles of space systems and operations.

The memorandum signed by US President Donald Trump sets forth key cybersecurity principles for space systems and intends to serve as “the foundation for the United States Government approach to the cyber protection of space systems” by defining best practices, improving cybersecurity behaviors and fostering cooperation between agencies, the commercial space industry and other non-government space operators.

The principles outline the use of “risk-based, cybersecurity-informed engineering” in the development and operation of space systems and supporting infrastructures and the development and implementation of cybersecurity plans incorporating

• the protection against unauthorized access to critical space vehicle functions through appropriate authentication or encryption measures;
• the physical protection measures for space facilities;
• the protection “against communications jamming and spoofing, such as signal strength monitoring programs, secured transmitters and…

Read More…

DUBLIN, Sept. 4, 2020 /PRNewswire/ — The “Global Security Advisory Services Market – Forecasts from 2020 to 2025” report has been added to ResearchAndMarkets.com’s offering.

The global security advisory services market is projected to grow at a CAGR of 21.33% to reach US$29.167 billion by 2025 from US$9.143 billion in 2019.

There is an increase in the adoption of information communication, and technology, data encryption, and cybersecurity solutions by different end-user industries. These industries include BFSI, communication and technology, automobile among others and they are doing this to achieve scalability, protect identities and transactions, reduce operational costs, decrease uptime and encrypt the sensitive data generated and protection of the digital signatures in order to prevent data breaches is increasing the demand for effective encryption solutions. These factors are thereby leading to a surge in the demand for such solutions and bolstering the market growth over the forecast period.

The communications and technology industry to hold a considerable share over the forecast period. This is attributed to the increasing penetration of internet the rising…

Read More…

In Public preview, Double Key Encryption for Microsoft 365 uses two keys to protect your data, with one key in your control and the second in Microsoft’s control.

“To view the data, one must have access to both keys. Since Microsoft can access only one key, your data and key are unavailable to Microsoft, helping to ensure the privacy and security of your data,” said Alym Rayani Senior Director, Microsoft 365.

Regulations, particularly in the financial services sector, often contain specialized requirements for certain data, which specifies that an organisation must control their encryption key.

Double Key Encryption will help enterprises protect their mission-critical data – a small volume of their overall data.

The customers can host the Double Key Encryption service in a location of their choice (on-premises key management server or in the cloud).

Double Key Encryption puts them in control by providing the…

Read More…

Cloud misconfigurations are considered a data security risk by 95% of IT decision makers in the UK, according to a new study from Trend Micro. The findings highlight how human error is a major cause of organizations’ compliance problems and is obstructing their digital transformation.

Of those who regard cloud misconfiguration as a risk, 41% said it is a “great risk.” For those working in B2C, this rose to 57%, and in administrative or technical roles, 52%.

Nearly two-thirds (62%) of IT decision makers said they are extremely or very concerned about the legal and regulatory compliance implications of cloud threats like misconfiguration, and 27% stated they had experienced such an incident over the past year.

The most common forms of misconfiguration errors include leaving an unencrypted data store exposed to the public internet without any form of authentication required to access it, exposing data to all global users of the same cloud platform and leaving encryption keys and passwords in open repositories.

This provides cyber-criminals with opportunities to undertake nefarious activities such as stealing and ransoming data and installing malicious digital skimming…

Read More…

London, June 19, 2020 (GLOBE NEWSWIRE) — According to new market research report titled, “Artificial Intelligence (AI) in Cybersecurity Market by Technology (ML, NLP), Security (Endpoint, Cloud, Network), Application (DLP, UTM, Encryption, IAM, Antivirus, IDP), Industry (Retail, Government, Automotive, BFSI, IT, Healthcare, Education), Geography– Global Forecast to 2027”. The artificial intelligence in cybersecurity market is expected to grow at a CAGR of 23.6% from 2020 to 2027 to reach $46.3 billion by 2027.

Download Free Sample Report Now @ https://www.meticulousresearch.com/download-sample-report/cp_id=5101

Artificial intelligence in cybersecurity can simply be defined as the incorporation of AI technology to simplify complex processes of cybersecurity to make the system more reliable, secure, and independent. Emergence of disruptive digital technologies across different industry verticals, increasing demand for advanced cybersecurity solutions & privacy, increase in frequency & complexity of cyber threats, and consistent technological developments are the key factors driving the growth of the artificial intelligence in cybersecurity market. Moreover, the…

Read More…