1 min read
New FFIEC IT Management Booklet: What your Board Needs to Know
Gone are the days where the Board of Directors at a financial institution could assign the responsibility of Information Security (now called...
One of the biggest changes proposed by the new NIST Digital Identity Guidelines is getting rid of mandatory password changes. This would mean no longer changing your password every 90 days, which I agree with and most users will welcome with open arms.
This, along with a few other interesting twists make this well worth a read.
If you don't want to read the whole document, Chester Wisniewski over at Sophos did a great job of summarizing the key points here:
https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/
1 min read
What you need to know about Petya / Not Petya Malware
Chris Bedel : Jun 28, 2017
You've probably heard about the the latest outbreak of the 'Petya' ransomware. Like WannaCry, this is a worm-enabled ransomware, so it can spread...
1 min read
FFIEC Cyber Tool Needs Urgent Revamp
Chris Bedel : Jan 20, 2016
The Federal Financial Institutions Examination Council's new Cybersecurity Assessment Tool needs to be redesigned - and the sooner, the better. The...