In 2000, I wrote: “If McDonald’s offered three free Big Macs for a DNA sample, there would be lines around the block.” Burger King in Brazil is almost there, offering discounts in exchange for a facial scan. From a marketing video: “At the end of the year, it’s Friday every day, and the hangover kicks […]
Cyber News
IT professionals have developed a sophisticated understanding of the enterprise attack surface – what it is, how to quantify it and how to manage it. The process is simple: begin by thoroughly assessing the attack surface, encompassing the entire IT environment. Identify all potential entry and exit points where unauthorized access could occur. Strengthen these […]
Cyber News
A decryptor for the Tortilla variant of the Babuk ransomware has been released by Cisco Talos, allowing victims targeted by the malware to regain access to their files. The cybersecurity firm said the threat intelligence it shared with Dutch law enforcement authorities made it possible to arrest the threat actor behind the operations. The encryption […]
Cyber News
The U.S. Federal Trade Commission (FTC) on Tuesday prohibited data broker Outlogic, which was previously known as X-Mode Social, from sharing or selling any sensitive location data with third-parties. The ban is part of a settlement over allegations that the company “sold precise location data that could be used to track people’s visits to sensitive […]
Cyber News
Microsoft has addressed a total of 48 security flaws spanning its software as part of its Patch Tuesday updates for January 2024. Of the 48 bugs, two are rated Critical and 46 are rated Important in severity. There is no evidence that any of the issues are publicly known or under active attack at the […]
Cyber News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added six security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. This includes CVE-2023-27524 (CVSS score: 8.9), a high-severity vulnerability impacting the Apache Superset open-source data visualization software that could enable remote code execution. It was fixed in version 2.1. Details […]
Cyber NewsWhy You Can’t Ignore FedRAMP Compliance: Understanding Its Significance in the Cloud Era In today’s digital age, where cloud computing plays a pivotal role in government operations, understanding and adhering to the Federal Risk and Authorization Management Program (FedRAMP) is more crucial than ever. This article delves into why FedRAMP compliance cannot be ignored by […]
FedRAMP ComplianceSimplify Your FedRAMP Certification: Streamlining the Path to Compliance Achieving Federal Risk and Authorization Management Program (FedRAMP) certification is a goal for many cloud service providers (CSPs) looking to do business with the U.S. federal government. However, the road to FedRAMP certification can seem daunting, layered with complex requirements and rigorous assessments. This article aims […]
FedRAMP ComplianceHow to Become FedRAMP Authorized: A Step-by-Step Guide for Cloud Service Providers Achieving FedRAMP (Federal Risk and Authorization Management Program) authorization is a significant milestone for any cloud service provider (CSP) aspiring to work with U.S. federal agencies. This authorization not only opens doors to lucrative government contracts but also signals a CSP’s commitment to […]
FedRAMP Compliance