Report Includes 19 Specific Recommendations for Government and Industry WASHINGTON – Today, the U.S. Department of Homeland Security (DHS) released the Cyber Safety Review Board’s (CSRB) first report, which includes 19 actionable recommendations for government and industry. The recommendations from the CSRB – an unprecedented public-private initiative that brings together government and industry leaders to…
Author: Dissent
Software Engineer Joshua Schulte Convicted In Biggest Theft Ever Of CIA Secrets
Joshua Schulte, who called himself “Bad Ass,” and who was also called “Voldemort” by colleagues in the C.I.A.’s Operations Support Branch, was convicted by a federal court jury in New York of sending the CIA’s “Vault 7” cyber-warfare tools to WikiLeaks in 2017. Larry Neumeister and Tom Hays of AP report: A former CIA software…
Hilton Garden Inn Cleveland Downtown warns of credit card data breach
Today’s reminder that malware on point-of-sale systems is still a thing. Danielle Cotterman reports: If you used a credit or debit card at Hilton Garden Inn Cleveland Downtown, you may want to double-check your bank statements. The hotel, located at 1100 Carnegie Avenue, is notifying customers that payment information may have been stolen from cards used…
200,000 Colorado Springs Utilities notified after unauthorized data access of subcontractor’s system
Ashley Eberhardt reports: Colorado Springs Utilities said in an email to customers that sensitive data stored by a subcontractor had been accessed by an “unauthorized party” in June. In the email sent out on Wednesday, Springs Utilities said they learned of the breach on July 6, and that the breach occurred on June 15, 2022….
Federal Court Dismisses Colonial Pipeline Cybersecurity Litigation
Kristin L. Bryan of Squire Patton Boggs writes: Recently a federal court dismissed cybersecurity litigation brought in the wake of the May 2021 Colonial Pipeline Ransomware attack. Ramon Dickerson et al. v. Colonial Pipeline Co. et al., No. 1:21-CV-02098 (N.D. Ga. Jun. 17, 2022). Based on the attenuated theories of liability Plaintiffs sought to advance in this…
FREE RESOURCE: K12 SIX Releases Essential Cyber Incident Response Runbook
HERNDON, Va., July 13, 2022–(BUSINESS WIRE)–The K12 Security Information Exchange (K12 SIX) is pleased to release the second product in its series of free cybersecurity aids for U.S. school districts, charter schools, and private school institutions: an incident response template and runbook to assist in preparation for a cyber-attack. Aligned to the NIST Incident Response Lifecycle—and developed with…