The Treasury Department’s Federal Insurance Office and the Cybersecurity and Infrastructure Security Agency should consider the danger of creating counterproductive incentives while examining the need for a federal cyber insurance program, according to the Government Accountability Office. “CISA and FIO should jointly assess the extent to which risks to critical infrastructure from catastrophic cyber incidents… Continue reading GAO: Potential Federal Cyber Insurance Program Should Avoid Moral Hazard
Tag: cybersecurity
APCIA Offers Cybersecurity and Data Security Best Practices for Businesses
With ransomware attacks increasing in both frequency and severity, APCIA and its Cyber Insurance Subcommittee have developed a paper that outlines cybersecurity and data security best practices for businesses. “Prevention is a business’ best defense against a ransomware attack and this paper provides a range of data security hygiene steps that businesses and individuals can… Continue reading APCIA Offers Cybersecurity and Data Security Best Practices for Businesses
Biden’s Russia Cyber Warning Confuses Ill-Prepared Businesses
A day after US President Joe Biden issued a stark warning that a Russian cyberattack “is coming,” members of his administration convened a three-hour conference call with approximately 13,000 people representing businesses, government agencies, and other organizations to discuss the potential threat. The discussion highlighted the difficulties the Biden administration faces in protecting the country… Continue reading Biden’s Russia Cyber Warning Confuses Ill-Prepared Businesses
Ransomware Continues Despite Slowdown of High-Profile Attacks
There hasn’t been a massive attack like the one last May that resulted in gasoline shortages in the months since President Joe Biden warned Russia’s Vladimir Putin that he needed to crack down on ransomware gangs in his country. But it’s a small consolation for Ken Trzaska. Trzaska is the president of Lewis & Clark… Continue reading Ransomware Continues Despite Slowdown of High-Profile Attacks
TSA Issues Directives to Rail Sector to Strengthen Cybersecurity
The Transportation Security Administration (TSA) issued two security directives on Thursday, requiring rail and rail transit groups to take steps to strengthen cybersecurity in the sector, including reporting cyber incidents to the federal government. The security directives require higher-risk freight rail, passenger rail, and rail transit organizations to report cybersecurity incidents to the Cybersecurity and… Continue reading TSA Issues Directives to Rail Sector to Strengthen Cybersecurity
More than One Million WordPress Users Impacted by GoDaddy Breach
A data breach exposed customer information including email addresses, account numbers, and passwords for more than one million GoDaddy users, the company revealed last Monday in a regulatory filing with the Securities and Exchange Commission (SEC). The breach affected users of WordPress, a web-based content management system used by bloggers and websites, according to the… Continue reading More than One Million WordPress Users Impacted by GoDaddy Breach
Mid-Sized Businesses 490% More Likely to Be Hit with a Security Breach Today Than in 2019
According to Coro’s cross-industry mid-market security study, mid-sized businesses are up to 490 percent more likely than they were in 2019 to experience a security breach by the end of 2021. Mid-sized businesses are now subjected to cyberattacks on a par with their enterprise counterparts. Nonetheless, unlike large corporations, these smaller businesses lack the budgets,… Continue reading Mid-Sized Businesses 490% More Likely to Be Hit with a Security Breach Today Than in 2019
New White House Cybersecurity Directive Puts Spotlight on Aging Computers
Many of the cybersecurity gaps outlined in a new White House directive that calls on federal agencies to patch hundreds of online vulnerabilities stem from the government’s aging computer systems, current and former federal tech chiefs, lawmakers and industry analysts say. But ongoing efforts to upgrade these systems tend to get bogged down by budget… Continue reading New White House Cybersecurity Directive Puts Spotlight on Aging Computers
Administration to Order Federal Agencies to Fix Hundreds of Cyber Flaws
The Biden administration on Wednesday is expected to issue a sweeping new order mandating that nearly all federal agencies patch hundreds of cybersecurity vulnerabilities that are considered major risks for damaging intrusions into government computer systems, officials said. The new requirement is one of the most wide-reaching cybersecurity mandates ever imposed on the federal government.… Continue reading Administration to Order Federal Agencies to Fix Hundreds of Cyber Flaws
Biden Cyber Officials Back Breach Incident Reporting Mandate
The head of the U.S. cybersecurity enforcement agency “is a huge supporter” of bipartisan legislation to mandate that operators of critical infrastructure report data breaches to the government. Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said she backs draft legislation from the Senate Homeland Security and Governmental Affairs Committee to require certain… Continue reading Biden Cyber Officials Back Breach Incident Reporting Mandate