CINS Army Brief
Don't Put All Your Security Eggs in One Basket
Our Take
Anti-virus and EDR are critical components in a layered security approach, but no article has ever done a better job than this one to illustrate the need for visibility on the network, independent of the device itself.
Only 13% of medical devices support endpoint protection agents
https://www.helpnetsecurity.com/2024/03/14/medical-devices-cybersecurity-concerns
This is our CINS Army Brief for March 2024, curating the most interesting cyber news from the previous month. Learn more and subscribe here.
- Senate Bill Aims to Incentivize Cybersecurity in Healthcare Industry
https://www.pymnts.com/cybersecurity/2024/senate-bill-aims-to-incentivize-cybersecurity-in-healthcare-industry - Cybersecurity plans should center on resilience
https://mitsloan.mit.edu/ideas-made-to-matter/cybersecurity-plans-should-center-resilience - The cybersecurity skills shortage: A CISO perspective
https://www.csoonline.com/article/2074581/the-cybersecurity-skills-shortage-a-ciso-perspective.html - Banks balance cloud, cyber priorities with AI eagerness
https://www.ciodive.com/news/cloud-cyber-data-banks-finance-generative-ai-broadridge/711169 - Possibility of a Billion-Dollar Systemic Cyber Event ‘Is Real’
https://www.insurancejournal.com/news/national/2024/03/22/766108.htm - FBI: U.S. lost record $12.5 billion to online crime in 2023
https://www.bleepingcomputer.com/news/security/fbi-us-lost-record-125-billion-to-online-crime-in-2023 - New bill would create payment incentives for the health sector to meet cyber standards
https://www.nextgov.com/cybersecurity/2024/03/new-bill-would-create-payment-incentives-health-sector-meet-cyber-standards/395175 - Living Off The Land Attacks: The Stealthy Threat Lurking In Cyberspace
https://www.forbes.com/sites/forbestechcouncil/2024/03/22/living-off-the-land-attacks-the-stealthy-threat-lurking-in-cyberspace/?sh=579e519d376c - Navigating developer fatigue in the cybersecurity battlefield: The risks and AI-powered solutions
https://www.fastcompany.com/91065964/navigating-developer-fatigue-in-the-cybersecurity-battlefield-the-risks-and-ai-powered-solutions - No easy solutions to the ransomware threat despite takedowns
https://www.csoonline.com/article/2067614/no-easy-solutions-to-the-ransomware-threat-despite-takedowns.html - Hackers Found a Way to Open Any of 3 Million Hotel Keycard Locks in Seconds
https://www.wired.com/story/saflok-hotel-lock-unsaflok-hack-technique - Tax Hackers Blitz Small Business With Phishing Emails
https://www.darkreading.com/threat-intelligence/tax-cons-targeting-small-business-with-phishing-emails - Stalkerware usage surging, despite data privacy concerns
https://www.theregister.com/2024/03/20/stalkerware_usage_surging_despite_data - White House, EPA warn water sector of cybersecurity threats
https://cyberscoop.com/epa-water-threats-governors - Generative AI’s privacy problem
https://www.axios.com/2024/03/14/generative-ai-privacy-problem-chatgpt-openai - Privacy Beats Ransomware as Top Insurance Concern
https://www.darkreading.com/data-privacy/privacy-ransomware-top-2024-cyber-insurance - Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate
https://www.securityweek.com/threat-detection-report-cloud-attacks-soar-mac-threats-and-malvertising-escalate - FCC approves cybersecurity label for consumer devices
https://cyberscoop.com/fcc-cyber-trust-mark - ChatGPT vs. Gemini: Which Is Better for 10 Common Infosec Tasks?
https://www.darkreading.com/cybersecurity-operations/chatgpt-vs-gemini-which-is-better-for-10-common-infosec-tasks - Attackers abuse cloud accounts to spawn thousands of crypto CDN nodes
https://www.csoonline.com/article/1313497/attackers-abuse-cloud-accounts-to-spawn-thousands-of-crypto-cdn-nodes.html - Cyber risks cross organizational lines
https://www.businessinsurance.com/article/20240312/NEWS06/912363173/Cyber-risks-cross-organizational-lines - Hackers impersonate U.S. government agencies in BEC attacks
https://www.bleepingcomputer.com/news/security/hackers-impersonate-us-government-agencies-in-bec-attacks - 30 years of the CISO role – how things have changed since Steve Katz
https://www.csoonline.com/article/1310847/30-years-of-the-ciso-role-how-things-have-changed-since-steve-katz.html - Advancing Cybersecurity In Digital Education
https://www.forbes.com/sites/davidbalaban/2024/03/01/advancing-cybersecurity-in-digital-education/?sh=2f475f2e13b2
