How Fast to Disclose a Breach?

What are the rules (or regulations) that state how fast to disclose and where? SC Magazine has an article on the new rule by the SEC that says a public company should make a disclosure. SEC’s 4-day breach disclosure rule hits opposition in Congress One of the problems was that there was an attacker that … Read more

Windows11 — Upgrade Soon?

Windows10 arrived not that long ago… According to Microsoft’s site learn.microsoft.com 1507 was the first version and it had an initial release at 2015-07-29 so about 8 years ago it was released, and now the last version  22H2 will have a last service date of  2025, Oct 14th 22H2 General Availability Channel 2022-10-18 2023-05-23 19045.3031 … Read more

Ransomware Risk Close to 0%?

How can ransomware risk be close to 0%? I made a video on Rumble and Anchor (Spotify) Rumble Video: The video is using information from the NIST document NISTIR 8374 RANSOMWARE RISK MANAGEMENT:A CYBERSECURITY FRAMEWORK PROFILE Ransomware Risk Management Fundamentals  NIST document Cybersecurity disinformation – Platform disinformation –   If done right the ransomware risk … Read more

Ransomware Risk Management Fundamentals

Looking across the Internet for new stories and new events in this holiday season I look at the fundamentals, thus found the NIST Cybersecurity framework profile:Ransomware Risk Management Specifically the NIST.IR.8374 document From this document I have  grabbed 3 basic items which everyone should be aware of in the image as well as in text … Read more

OpenSSL fix NOT Critical but High vul

So the latest OpenSSL version in the 3.0 release has a fix which is version 3.0.7 which will address a critical vulnerability in the 3.x versions.  (so if you are using 2.x you are ok for now).  OpenSSL is the open source implementation of SSL and TLS secure communication protocols. MalwareBytes Blog had a post … Read more