With cybersecurity in the news so much, it can be difficult to stay updated. Read about the latest ransomware attempts to target disgruntled employees, the SEC files charges for companies not adhering to cybersecurity disclosures and more in this collection of articles.
Thanks for checking out our biweekly digest of articles for Identity Management Professionals. Click here to view the healthcare-focused digest.
Peruse our resources for webinars, case studies, infographics, and educational videos. Subscribe to our Identity Management biweekly and/or our Healthcare Cybersecurity and IAM digest, delivered biweekly on Tuesdays at 8 PM ET.
6 Intriguing Articles for Identity Access and Management Professionals
Mistakes Made Prior to Cybersecurity Breaches: Incidence Response Planning via Idenhaus
An IRP determines who is responsible both during and after an incident. Too often we find organizations who have not properly implemented a plan for cybersecurity breaches… until after they encounter one.
NIST Updates Cyber Resiliency Guide to Account for Increasingly Sophisticated Threats via NextGov
In a draft update to its flagship cyber resiliency publication, experts from the National Institute of Standards and Technology offer a next-gen strategy for protecting critical information technology systems from their inside out. NSA
Phishing Campaign Leverages Legit DocuSign Email Notifications via SC Media Magazine
Rather than spoofing DocuSign notifications, phishing scammers are now signing up for free accounts with the cloud-based documenting signature service and compromising the accounts of others as a way to trick email recipients into clicking on malicious links.
Wanted: Disgruntled Employees to Deploy Ransomware via Krebson Security
Criminal hackers will try almost anything to get inside a profitable enterprise and secure a million-dollar payday from a ransomware infection, including emailing employees directly and asking them to unleash the malware inside their employer’s network.
What Is Cyber Command’s Role in Combating Ransomware? via Lawfare Blog
The crux of the issue is how to define an appropriate mission—if any at all—for employing military authorities, capabilities and resources against ransomware gangs, which are typically criminal organizations rather than nation-state adversaries.
SEC Charges Another Company for Misleading Cybersecurity Disclosure via JDSUPRA
The SEC announced settled charges against Pearson plc, an NYSE-listed, educational publishing and services company based in London, for failure to disclose a cybersecurity breach.
To receive the top Cybersecurity articles for Identity Management Professionals in your inbox every two weeks (Tuesdays 8 PM EST), subscribe to our Identity Management biweekly and/or our Healthcare Cybersecurity and IAM Digest.
Follow @Idenhaus on Twitter and subscribe to our YouTube channel.
By going to work quickly to solve the most challenging cybersecurity and identity management problems, Idenhaus takes the pain out of securing corporate information and assets for companies that aspire to maximize their potential in this digital age. Click here to contact us.