Dedicated to Information Security
Cart 0

News

NSA: no zero days were used in any high profile breaches over last 24 months

Cyber Hygiene Incident Response NSA

NSA: no zero days were used in any high profile breaches over last 24 months

“The fundamental problem we faced in every one of those incidents was poor cyber hygiene,” Dukes explained. By Chris Bing SEPTEMBER 15, 2016 5:00 PM BIO Over the last 24 months, the National Security Agency has been involved in incident response and mitigation efforts for “all the high profile incidents you’ve read about in the Washington Post and New York Times,” said Curtis Dukes, deputy national manager of security systems within the NSA.  The one common characteristic shared between these incidents, said Dukes, was hackers were using relatively simply techniques — like spear phishing, water-holing and USB drive delivery — rather than zero day...

Read more →


Email and file encryption service Virtru, built by ex-NSA engineer, raises $29 million

Email Encryption Email Revoke Button Security Startups

Email and file encryption service Virtru, built by ex-NSA engineer, raises $29 million

Talk about being at the right place and at the right time. Following revelations of government spying, data breaches, malicious hacking, identity theft and other online threats, the email and file encryption application Virtru has now grown to over 4,000 customers and has closed on $29 million in Series A funding, the company announced this morning. The round was led by Bessemer Venture Partners, and included New Enterprise Associates (NEA), Soros Fund Management (chaired by billionaire George Soros, also head of the rights-focused Open Society Foundations, which pushes for accountable and tolerant democracies), as well as Haystack Partners, Quadrant Capital Advisors, and Blue Delta Capital. Along with...

Read more →


State of Colorado get 2fa Grant from NIST..

2FA State of Colorado Yubico

State of Colorado get 2fa Grant from NIST..

Grants to Foster More Secure Online Access to Online Government and Health Care Services  August 25, 2016 Facebook Google Plus Twitter  GAITHERSBURG, Md.—The U.S. Commerce Department's National Institute of Standards and Technology (NIST) has awarded six pilot grants totaling more than $15 million to foster more secure access to online services provided by states and health care providers. The grants support the goals of the National Strategy for Trusted Identities in Cyberspace (NSTIC), which seeks to improve online identity for individuals and organizations. Through a series of NSTIC pilot grants initiated in 2012, NIST has supported the development of trusted identities that are privacy-enhancing, secure...

Read more →


Why Should You Re-evaluate Your Security Vendor?

Why Should You Re-evaluate Your Security Vendor?

The purpose of this e-book is to help you reach better decisions regarding your security strategy and choice of security vendor with the goal of making network security simpler, better and more affordable. As an introduction to this e-book we would like to go over the “why” you need to re-evaluate your security vendor, before we get into the “how”. The solution’s roadmap is of strategic importance because it may require not just a technical analysis, but a rethinking of the overall network and security architecture for the business. Three forces are impacting the way we do business today: Globalization,...

Read more →


NIST Releases Baldrige-Based Tool for Cybersecurity Excellence

Bladridge-Based Tool for Cyber Security Cybersecurity Framework NIST

NIST Releases Baldrige-Based Tool for Cybersecurity Excellence

Comments Sought on Draft Guide to Enhance Cybersecurity Framework  September 15, 2016 WASHINGTON, D.C.— The U.S. Commerce Department(link is external)’s National Institute of Standards and Technology (NIST) released today the draft Baldrige Cybersecurity Excellence Builder, a self-assessment tool to help organizations better understand the effectiveness of their cybersecurity risk management efforts. NIST is requesting public comments on the draft document, which blends the best of two globally recognized and widely used NIST resources: the organizational performance evaluation strategies from the Baldrige Performance Excellence Program and the risk management mechanisms of the Cybersecurity Framework. Deputy Secretary of Commerce Bruce Andrews announced the release of the draft document today...

Read more →