The Federal Financial Institutions Examination Council (FFIEC) has just published a revision to its IT Examination Handbook on business continuity planning (BCP) this February. It replaces the document published in 2003. Of particular interest to us is its new Appendix…
Uncategorized
North Korea Did it!
by cavallal • • 0 Comments
Well, after so much speculation the FBI Director James Comey unveiled information on Wednesday that he said provides a “very clear indication” that North Korea perpetrated the massive cyber attack against Sony. Newsweek reported the story Now, with the announcement of sanctions…
Uncategorized
Do we need antivirus in Linux?
by cavallal • • 0 Comments
The most common answer to the age old question is probably no. We as a community of security practitioners may have to update our position on this one given the latest findings in terms of Turla. A stealth trojan that…
data breach, security
Department of Justice Cybersecurity Unit will be created
by cavallal • • 0 Comments
The US Department of justice is creating a dedicated Cybersecurity Unit within the Criminal Division. Assistant Attorney General Leslie R. Caldwell explained The Cybersecurity Unit will work hand-in-hand with law enforcement and will also work with private sector partners and…
data breach, hacking, security
Wiper threat update
by cavallal • • 0 Comments
Today the FBI released FBI Liaison Alert System #A-000044-mw. In the release they describe the workings of the malware. It attacks the MBR and all data files. After infection the infected systems to connect to one of three random, one…
compliance, data breach, security
Black Friday Hackers – Not All Threats are Equal
by cavallal • • 0 Comments
With the biggest sales event of the year coming to US retailers this week, there is also increased concern about the possibility of additional data breach incidents. This week and next week, many organizations are consumed with keeping the lights…