Formula 1 managers are concerned about hackers breaking into Formula 1 cars because the racecar’s are equipped with an onboard computer. Any resource that has connectivity to the Internet and can be remotely managed, can be assessed by nefarious individuals. Imaging the danger a driver could potentially face if a hacker were to take control of his racecar. Not only can the hackers harm the driver, they can impact the race in favor of themselves or the interests of others. The

It is certainly negligent if a firm does not have an information security management program to manage their risk, but even worse if they have a program and do not regulate third party vendors. Third party vendors are the achilles heal to companies as attacks can root from a third party and innocently pass to your enterprise. It is paramount to implement a strategy into third party’s security programs and be prepared to walk away if the firm does not want to comply. This may

The extramarital-affair online dating website Ashley Madison has been hacked, and the hacking group taking credit has threatened to release full details for the site's subscribers, which reportedly number more than 37 million across 46 countries, unless the service shuts down. The war on the United States has begun. There might be some individuals that would applaud these hackers efforts in taking down such an inappropriate site, however, the judgment does not fall on the han

Corrections Victoria has suffered a data breach exposing the information of prisoners. The breach has raised concerns that the information — including some prisoners’ bank details and names and addresses of family contacts — could be used to stand over or threaten inmates and their families. This breach identifies how terrible prison systems are maintained that an inmate, without any black hat training, can hack and expose information. We don't blame the prison for not having

The FBI is investigating the latest in a string of major cyber-attacks in the healthcare sector. UCLA Health confirms that information on 4.5 million individuals may have been exposed when hackers breached its network in an attack that appears to have begun last September. UCLA Health says in a July 17 statement that it appears that "criminal hackers" accessed parts of the organization's computer network that contain personal and medical information. Cyber attacks have plague

St Elizabeth Medical Center was fined by HHS over $200,000 for leakage of data and not encrypting technology resources. Healthcare is a very long in the tooth industry due to their lack of budget, resistance to change and prehistoric leadership. Healthcare companies should look to change the face of their efforts by adding a Chief Security Officer, separating IT from Security and actually creating a designated budget for security that matures annually based on advanced threat

A new report by Deloitte shows how important cyber security risks really are at the board room level, as the nation's top financial executives expressed their concerns about how security risks could impact their companies' bottom lines. FINALLY this important aspect of the business is making its' way up to the Board room. It only took billions of dollars to be exfiltrated globally to raise the eyebrows of decision makers. Having a separate information security department is p

Early this month the SEC Division of Investment Management issued an investment Management Guidance Update on cybersecurity. The guidance identifies several measures investment advisors and investment managers should consider implementing as they continue to build their cyber security strategy. Some requirments include: A designated information security professional handling all cyber matters. Periodic risk assessments that evaluate data classification, data storage and trans

While CSO's can secure businesses and remediate risk, all risks cannot be remediated at the same time. So while strategies are being deeveloped to align the business with regulatory requirements, cyber insurance is required to protect the business in the event a breach were to take place. The Knox and ECBM leaders are myoptically focused in securing the assets of a business and have joined to extend quality value-needed services that make a differnce. ECBM Insurance Brokers a

NetDocuments, a leading cloud-based document and email management service (DMS), today announced it has received the International Organization for Standardization (ISO) 27001 Certification confirming NetDocuments meets or exceeds international standards for data privacy, security, and information governance practices. In this Information Security space, it is quite refreshing to see some good news from a company looking to secure its assets. For those whom are unaware, ISO 2