Looking across the Internet for new stories and new events in this holiday season I look at the fundamentals, thus found the NIST Cybersecurity framework profile:Ransomware Risk Management Specifically the NIST.IR.8374 document From this document I have grabbed 3 basic items which everyone should be aware of in the image as well as in text … Read more
So the latest OpenSSL version in the 3.0 release has a fix which is version 3.0.7 which will address a critical vulnerability in the 3.x versions. (so if you are using 2.x you are ok for now). OpenSSL is the open source implementation of SSL and TLS secure communication protocols. MalwareBytes Blog had a post … Read more
First of All, PCI 4.0 will not remove the previous version (3.2.1) it will enhance the PCI standard (this information is from the “At a Glance” document at www.pcisecuritystandards.org) What is New in PCI DSS v4.0?There were many changes incorporated into the latest version of the Standard. Below are examples of someof those changes. For … Read more
Yes take a look at the latest CISA(Cybersecurity Infrastructure Security Agency) Infographic: Goto CISA webpage for fullsize infographic if you want. CISA is trying to convince you into creating segmentation in different pieces of your network. We need to go through this process to make sure you understand why this method is a good … Read more
In Other Words – instead of assuming a risk profile, and assess risks – assume it will happen to you (it is just a matter of time). Now what? In fact it may be a good exercise to think about the ramifications of a failure in cybersecurity. The idea is to create a scenario … Read more
