Building cyber resilience in always-on industrial environments - https://t.co/eeOckEG26a - @sattlert #ICS #Warehouse #Monitoring #RiskManagement #SupplyChain #CyberReseilience #SecurityControl #Strategy #CISO #netsec #InfoSecurity #ITsecurity #CyberSecurityNews #SecurityNews

#CISO|s must demonstrate that #InfoSec processes reduce risk in measurable ways

Malicious campaign by threat actor Storm-0558 may be more impactful than originally thought https://t.co/irfj7SdhUE #Microsoft #CyberSecurity

Only a few #MOVEit data-theft victims are likely to pay. Nevertheless, #Cl0p is still expected to amass an impressive $75-100 million solely from these payments, given the substantial ransom demands https://t.co/bvfu9g48eZ #InfoSec

As #ransomware affiliates are paid less frequently, they have adapted their strategies to compensate for the shifting dynamics of cyber extortion https://t.co/BFBNglmEkn #InfoSec

"[...] #security teams are in the spotlight when things go wrong, but not celebrated when attacks aren’t successful" https://t.co/G3xmyzVYSR #InfoSec

Great guidance on how to protect against #AiTM / #MFA #phishing attacks in combination with Microsoft protections https://t.co/jcZJF6m2PN via @JeffreyAppel7 #InfoSec

Nothing exemplifies a complete failure to understand the point of science like demanding to settle a scientific issue through the medium of emotionally persuasive public shouting

#CyberInsurance companies are faced with the challenge of quantifying the risk and measuring the cascading impact of a cyber attack https://t.co/sbKrP9Rtd1 via @wef #InfoSec

Lean approach for #ThreatModeling with #ChatGPT and #STRIDE https://t.co/UqMBZEKAtR #InfoSec

For many #CISO|s stress comes from “the lack of authority to implement best practices across the company and the lack of visibility at the top on some of the issues that keep them up at night.” https://t.co/IvLOdS7foA #InfoSec

Google's newly launched .zip #TLD simplifies the creation of extremely convincing #phishing URLs https://t.co/lHQW2qg5PG #InfoSec

The Australia government's Cyber Security Centre publishes an MFA maturity level, which government agencies are audited against. This is a fantastic way to assess your own org's MFA maturity and relevant to everyone as they are based on NIST with a few variations. ⬇️

Today I had the opportunity to speak about #ActiveDirectory #security at @wiwo #Cyberprotection Day

We seem to have the problem contained...

👏

#Cybersecurity needs to follow the aviation industry's shift from a blame culture to a "just" culture https://t.co/NJiHdLCV58 via @TheRegister

There are many #ActiveDirectory objects and groups that need to be considered #TierZero in every #Windows environment https://t.co/GfihBg8QaW #cybersecurity

.@CISAgov, @BSI_Bund and others have published joint guidance urging manufacturers to take the necessary steps to ship digital products that are #securebydesign and #securebydefault https://t.co/oJy6F89sdM #cybersecurity #productsecurity

System of Trust: #MITRE Framework for #SupplyChain Security https://t.co/zqXNqyyS9j https://t.co/qO7LOg6xB5 #InfoSec