How to Bury a Major Breach Notification

Posted: 03/07/2017 | Leave a Comment

The RSA report detailed the threat from a malware operation the company dubbed “Kingslayer.” According to RSA, the attackers compromised the Web site of a company that sells software to help Windows system administrators better parse and understand Windows event logs. RSA said the site hosting the event log management software was only compromised for two weeks – from April 9, 2015 to April 25, 2015 – but that the intrusion was likely far more severe than the short duration of the inDatatrusion suggests.

https://krebsonsecurity.com/2017/02/how-to-bury-a-major-breach-notification/

The DoD Cybersecurity Policy Chart

This chart captures the tremendous breadth of applicable policies, some of which many cybersecurity professionals may not even be aware, in a helpful organizational scheme.

View the Policy Chart

CSIAC Journal - Cyber-As-Zoo: Multidisciplinary Cyber Struggle

This issue of the CSIAC Journal contains five articles that offer some perspectives to address the often-heard phrase "Cyber Is Hard", usually associated with gnashing of teeth and exasperated sighs.

Read the Journal

CSIAC Journal - Insider Threat and the Malicious Insider Threat

This issue of the CSIAC Journal presents five articles which represent different perspectives on Insider Threat and approaches to understand and remediate that threat.

Read the Journal

CSIAC Reference Document - Recent Developments in Cyberlaw: 2018

CSIAC SME and member of the American Bar Association’s Information Security Committee, Richard “Rick” Aldrich, gives a snapshot of the recent developments in cyberlaw, policy, standards, court cases and industry legal frameworks. These slides focus on emerging issues such as cloud data storage, the scope of 3rd-party doctrine, encryption, warrants for electronic searches, and artificial intelligence.

Read the Document