Government, Information Security and Technology

Fairfax County, Va., CISO Michael Dent on Leadership

Lohrman on Security

MAY 18, 2025

Whats on the minds of top local government chief information security officers? In this interview, Michael Dent shares current security and technology priorities, career tips and more.

CISO

CISO Government Information Security Technology

Rhysida Ransomware gang claims the hack of the Government of Peru

Security Affairs

MAY 3, 2025

The Rhysida Ransomware gang claims the hack of the Government of Peru, the gang breached Gob.pe, the Single Digital Platform of the Peruvian State. The Rhysida ransomware gang claims responsibility for hacking the Government of Peru, breaching Gob.pe, which is the country’s official digital platform.

Government

Government Ransomware Hacking Healthcare

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The cyber spies stole information belonging to targeted individuals that was subject to U.S. The security breach poses a major national security risk.

Government

Government Telecommunications Surveillance Risk

Information Security Manual (ISM)

Security Boulevard

JANUARY 20, 2025

What is the Information Security Manual (ISM)? The Information Security Manual (ISM) is a cybersecurity framework developed by the Australian Signals Directorate (ASD) to help organizations protect their IT and operational technology systems, applications, and data from cyber threats.

Information Security

Information Security Healthcare Cyber threats Government

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

The Last Watchdog

JUNE 12, 2023

Information privacy and information security are two different things. Related: Tapping hidden pools of security talent Information privacy is the ability to control who (or what) can view or access information that is collected about you or your customers.

Information Security

Information Security Data breaches CISO Encryption

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Jane Frankland

JUNE 8, 2025

The modern enterprise C-suite is undergoing a seismic shift—not over profits or market share, but over who leads technology, shapes strategy, and ultimately defines the future of the business. For decades, the Chief Information Officer (CIO) was the central authority on IT, overseeing infrastructure, systems, and digital initiatives.

CISO

CISO Digital transformation Technology Risk

Russia-linked APT28 targets western logistics entities and technology firms

Security Affairs

MAY 21, 2025

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing an elevated threat to supply chains Russia-linked cyberespionage group APT28 intensifies its operations against Western logistics and technology companies moving supplies into Ukraine, US CISA warns. ” reads the joint alert.

Technology

Technology Malware Phishing Government

Information Security Manual (ISM)

Centraleyes

JANUARY 20, 2025

What is the Information Security Manual (ISM)? The Information Security Manual (ISM) is a cybersecurity framework developed by the Australian Signals Directorate (ASD) to help organizations protect their IT and operational technology systems, applications, and data from cyber threats.

Information Security

Information Security Cyber threats Government Small Business

Sepio Systems: Cybersecurity Expert Joseph Steinberg Joins Advisory Board

Joseph Steinberg

NOVEMBER 17, 2021

He is also the inventor of several information-security technologies widely used today; his work is cited in over 500 published patents. His opinions are also frequently cited in books, law journals, security publications, and general interest periodicals.

Cybersecurity

Cybersecurity Artificial Intelligence Government Information Security

Newsweek Expert Forum Welcomes Cyber Security Expert Joseph Steinberg

Joseph Steinberg

JUNE 23, 2021

Steinberg, who serves as a cybersecurity expert witness, a cybersecurity advisor to both businesses and governments, and a popular columnist, has led organizations within the cybersecurity industry for over two decades. magazines, and, today, as the author of the independent column, Joseph Steinberg – Totally Candid. About Newsweek.

Artificial Intelligence

Artificial Intelligence CISO Technology Information Security

CISA’s 11-Month extension ensures continuity of MITRE’s CVE Program

Security Affairs

APRIL 16, 2025

funded CVE program, a core cybersecurity tool for tracking vulnerabilities, faces funding expiry Wednesday, risking disruption to global security. government funding for MITRE s CVE program , a key global cybersecurity resource for cataloging vulnerabilities, is set to expire Wednesday, risking disruption. MITREs U.S.-funded

Government

Government Risk Cybersecurity Media

Russia warns financial sector organizations of IT service provider LANIT compromise

Security Affairs

FEBRUARY 25, 2025

” NKTsKI recommends organizations to strengthen monitoring of threats and information security events in systems provided by LANIT. LANIT Group (Laboratory of New Information Technologies) is one of Russia’s largest IT service and software providers. In May 2024, U.S. ” said U.S.

Telecommunications

Telecommunications Software Healthcare Technology

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

To mitigate risks, businesses will invest in modern, privacy-enhancing technologies (PETs), such as trusted execution environments (TEEs) and fully homomorphic encryption (FHE). state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan. EU AI Act) demand proactive adaptation.

Cybersecurity

Cybersecurity CISO Risk Government

Speakers Censored at AISA Conference in Melbourne

Schneier on Security

OCTOBER 8, 2019

Two speakers were censored at the Australian Information Security Association's annual conference this week in Melbourne. Thomas Drake , former NSA employee and whistleblower, was scheduled to give a talk on the golden age of surveillance, both government and corporate. Both were put on the program months ago.

Government

Government Surveillance Information Security Technology

How boards can manage digital governance in the age of AI

BH Consulting

MARCH 26, 2025

If there is one statistic that sums up the increasing pace of technological change, it might well be this. In a presentation titled Digital governance for boards and senior executives: AI, cybersecurity, and privacy , she called on her extensive experience advising boards on these areas. Where should they focus their attention?

Government

Government Artificial Intelligence Risk Digital transformation

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” reads the report published by Microsoft Threat Intelligence. “Microsoft assesses with medium confidence that Storm-2372 aligns with Russian interests, victimology, and tradecraft.”

Phishing

Phishing Authentication Telecommunications Accountability

Government of Bermuda blames Russian threat actors for the cyber attack

Security Affairs

SEPTEMBER 23, 2023

The Government of Bermuda believes that the recent cyberattack against its IT infrastructure was launched by Russian threat actors. This week a cyber attack hit the Government of Bermuda causing the interruption of internet/email and phone services. The attack impacted all the government departments. ” said Burt.

Cyber Attacks

Cyber Attacks Government Internet Internet

Cyber Security Expert Joseph Steinberg To Continue Serving On Newsweek Expert Forum In 2023

Joseph Steinberg

JANUARY 10, 2023

Steinberg, who serves professionally as a cybersecurity expert witness , a cybersecurity advisor to both businesses and governments, and a popular columnist covering related fields, has led organizations within the cybersecurity industry for over two decades. About Newsweek. www.newsweek.com.

Artificial Intelligence

Artificial Intelligence CISO Technology Cybersecurity

Cyber Security Expert Joseph Steinberg To Serve On Newsweek Expert Forum In 2022

Joseph Steinberg

JANUARY 4, 2022

Steinberg, who serves professionally as a cybersecurity expert witness , a cybersecurity advisor to both businesses and governments, and a popular columnist, has led organizations within the cybersecurity industry for over two decades. A prolific inventor of cybersecurity technology, Steinberg is also cited in over 500 US patent filings.

Artificial Intelligence

Artificial Intelligence CISO Technology Cybersecurity

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Security Affairs

DECEMBER 3, 2024

Founded in 1985, ENGlobal Corporation designs automated control systems for commercial and government sectors, reporting $6 million in Q3 revenue and $18.4 Securities and Exchange Commission (SEC), the company discovered the attack on November 25. million year-to-date. According to the FORM 8-K report filed with the U.S.

Ransomware

Ransomware Encryption Technology Cybersecurity

U.S. CISA: hackers breached a state government organization

Security Affairs

FEBRUARY 16, 2024

CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former employee. The government experts conducted an incident response assessment of the state government organization after its documents were posted on the dark web.

Government

Government VPN Accountability Authentication

International Association of Chiefs of Police (IACP) Appoints CyberSecurity Expert Witness Joseph Steinberg To Computer Crime & Digital Evidence Committee

Joseph Steinberg

DECEMBER 11, 2023

Veteran cybersecurity expert witness executive will help strengthen law enforcement capabilities to prevent, investigate, and prosecute information-age crimes. His opinions are frequently cited in books, law journals, security publications, and general interest periodicals; his cybersecurity-related inventions appear in over 500 U.S.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Information Security

Experts warn of ransomware attacks against government organizations of small states

Security Affairs

MAY 31, 2022

Cyber Research Labs observed a rise in ransomware attacks in the second quarter of 2022, some of them with a severe impact on the victims, such as the attack that hit the Costa Rican government that caused a nationwide crisis. The experts warn of ransomware attacks against government organizations. ” continues Cyble. .

Government

Government Ransomware Cybercrime Banking

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures.

Telecommunications

Telecommunications Government Mobile Cyber threats

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Technologies that were figments of the imagination a dozen years ago, if they were conceived of at all, quickly become mainstream — think generative artificial intelligence (GenAI) or blockchain. As they do, they create more security vulnerabilities and inherent business, changing the nature of cybersecurity careers.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Hacking Cyber threats Mobile

Managed detection and response in 2024

SecureList

FEBRUARY 20, 2025

Kaspersky Managed Detection and Response service (MDR) provides round-the-clock monitoring and threat detection, based on Kaspersky technologies and expertise. in government, 17.8% For organizations with in-house security operations teams, internal processes and technologies must be equipped to handle the modern threat landscape.

Social Engineering

Social Engineering Phishing Government Threat Detection

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. government neutralized the Volt Typhoon botnet taking over its C2 and deleting the bot from infected devices.

VPN

VPN Government Malware Firewall

LinkedIn Adds Verified Emails, Profile Creation Dates

Krebs on Security

NOVEMBER 4, 2022

” In late September 2022, KrebsOnSecurity warned about the proliferation of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. . “These warnings will also give you the choice to report the content without letting the sender know.”

Scams

Scams Artificial Intelligence Cryptocurrency Accountability

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

Spanish Police arrested an unnamed hacker who allegedly breached tens of government institutions in Spain and the US. Spanish National Police arrested a hacker responsible for multiple cyberattacks on government institutions in Spain and the U.S. Targe including the U.S. Army, UN, NATO, and other agencies.

Cybercrime

Cybercrime Government Data breaches Information Security

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Mobile

Mobile Telecommunications Data breaches Hacking

U.S. cannabis dispensary STIIIZY disclosed a data breach

Security Affairs

JANUARY 11, 2025

.” According to the notice, the security breach compromised information contained on government-issued identification cards, including drivers licenses and medical cannabis cards, as well as information related to transactions with our dispensaries.

Data breaches

Data breaches Retail Cybercrime Government

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

The spyware’s deployment relied on Cellebrite’s unlocking process, combining two invasive technologies to compromise the journalists digital privacy comprehensively. Evidence, including the spywares installation during BIA interviews, attributes these surveillance campaigns with high confidence to the BIA and Serbian government.

Spyware

Spyware Surveillance Technology Mobile

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Security Affairs

APRIL 13, 2025

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,China)

Hacking

Hacking Manufacturing Education Government

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Security Affairs

MARCH 28, 2024

In 2023, the researchers observed 36 zero-day vulnerabilities exploited in the wild targeting enterprise-specific technologies, while 61 vulnerabilities affected end-user platforms and products such as mobile devices, operating systems, browsers, and other applications. ” continues the report.

Government

Government Surveillance Cybercrime Ransomware

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

The role of a Chief Information Security Officer (CISO) is undeniably complex, yet incredibly rewarding. Similarly, SolarWinds and its Chief Information Security Officer faced fraud and internal control failure charges from the SEC. underscores the heightened emphasis on governance.

CISO

CISO Government CSO Artificial Intelligence

US adds Tencent to the list of companies supporting Chinese military

Security Affairs

JANUARY 7, 2025

US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and entertainment conglomerate Tencent to its “Chinese military company” list under the Section 1260 requirement.

Technology

Technology Government Marketing Hacking

Fairfax County, Va., CISO Michael Dent on Leadership

Security Boulevard

MAY 18, 2025

Whats on the minds of top local government chief information security officers? In this interview, Michael Dent shares current security and technology priorities, career tips and more. CISO Michael Dent on Leadership appeared first on Security Boulevard. The post Fairfax County, Va.,

CISO

CISO Government Information Security Technology

NIST SP 800-171 Rev 2 vs Rev 3: What’s The Difference?

Security Boulevard

MARCH 14, 2025

Government cybersecurity and information security frameworks are a constant work in progress.

Government

Government Information Security Technology Cybersecurity

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. About the essayist: Don Boian is the Chief Information Security Officer at Hound Labs, Inc.,

Cybersecurity

Cybersecurity Cybercrime Education Government

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. “The threat actors accessed and downloaded some personal information from previously used Port systems for employee, contractor, and parking data.

Data breaches

Data breaches Ransomware Cyber Attacks Healthcare

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

Joseph Steinberg

JULY 13, 2022

Not all of the elements within Lockdown Mode are completely new – some have been available and enabled by users (including me) for years – but, Lockdown mode does dramatically simplify the process of enabling better security on Apple devices. Flip phones are not totally immune from government surveillance and action either.).

Cybersecurity

Cybersecurity Artificial Intelligence Government Social Engineering

The Only Thing Surprising About The Crippling Ransomware Attack On A Major US Fuel Pipeline Is That Anyone Is Surprised That The Attack Succeeded

Joseph Steinberg

MAY 12, 2021

Over the ensuing years, experts have repeatedly pointed out that not only were many of the technology systems being deployed to improve the efficiency of fuel distribution infrastructure management introducing dangerous vulnerabilities, but that a cyber-attack against the operator of a fuel pipeline was eventually going to both occur and succeed.

Energy and Utilities

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks

Fake CISO Profiles on LinkedIn Target Fortune 500s

Krebs on Security

SEPTEMBER 30, 2022

Someone has recently created a large number of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. If you were confused at this point, you might ask Google who it thinks is the current Chief Information Security Officer of Chevron.

CISO

CISO Cybercrime Accountability Information Security

Fairfax County, Va., CISO Michael Dent on Leadership

Rhysida Ransomware gang claims the hack of the Government of Peru

Trending Sources

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Information Security Manual (ISM)

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Russia-linked APT28 targets western logistics entities and technology firms

Information Security Manual (ISM)

Sepio Systems: Cybersecurity Expert Joseph Steinberg Joins Advisory Board

Newsweek Expert Forum Welcomes Cyber Security Expert Joseph Steinberg

CISA’s 11-Month extension ensures continuity of MITRE’s CVE Program

Russia warns financial sector organizations of IT service provider LANIT compromise

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Speakers Censored at AISA Conference in Melbourne

How boards can manage digital governance in the age of AI

Storm-2372 used the device code phishing technique since August 2024

Government of Bermuda blames Russian threat actors for the cyber attack

Cyber Security Expert Joseph Steinberg To Continue Serving On Newsweek Expert Forum In 2023

Cyber Security Expert Joseph Steinberg To Serve On Newsweek Expert Forum In 2022

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

U.S. CISA: hackers breached a state government organization

International Association of Chiefs of Police (IACP) Appoints CyberSecurity Expert Witness Joseph Steinberg To Computer Crime & Digital Evidence Committee

Experts warn of ransomware attacks against government organizations of small states

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Top 9 Trends In Cybersecurity Careers for 2025

New Leak Shows Business Side of China’s APT Menace

Managed detection and response in 2024

China’s Volt Typhoon botnet has re-emerged

LinkedIn Adds Verified Emails, Profile Creation Dates

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

U.S. cannabis dispensary STIIIZY disclosed a data breach

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

US adds Tencent to the list of companies supporting Chinese military

Fairfax County, Va., CISO Michael Dent on Leadership

NIST SP 800-171 Rev 2 vs Rev 3: What’s The Difference?

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Port of Seattle ‘s August data breach impacted 90,000 people

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

The Only Thing Surprising About The Crippling Ransomware Attack On A Major US Fuel Pipeline Is That Anyone Is Surprised That The Attack Succeeded

Fake CISO Profiles on LinkedIn Target Fortune 500s

Stay Connected