“Say it ain’t so.” While that phrase may be a myth uttered by a young boy who tearfully confronted Shoeless Joe Jackson, the outfielder allegedly involved in the 1919 White Sox scandal, I’d like to borrow it for a new era we can now add to major league baseball’s most notorious moments—the hacking of MLB.Read More
Ever since Target CEO Gregg Steinhafel was fired from the 2014 holiday season cyberattack, “cyberblame” is running rampant, and it’s spreading right up the proverbial food chain, from the CISO to the C-suite, even to the board level. Steinhafel may have been among the first high-profile CEOs to take the fall for a breach, but undoubtedly, as cyberattacks increase, it won’t be the last. More executive heads will roll.Read More
I recently returned from the RSA Conference, an information security event held in San Francisco at the Moscone Center. Spanning several days, it is touted as the largest enterprise security event in the world.Read More
No doubt, there is an overall sense of pessimism surrounding our ability to fight cybercrime. There are those that believe we will never be able to get ahead of the perpetrators and secure our systems. This is an understandable viewpoint, considering the massive data breaches that have taken place in virtually every industry sector, from healthcare to oil and gas, to retail and the financial industry. Many organizations have already made the mental shift from trying to prevent an attack, to accepting “the inevitable” and focusing their attention on mitigation and how to reduce the financial and reputational damage after an attack has taken place. You see this manifest in the huge uptick in the purchase of cyber insurance and a burgeoning legal industry with new specializations in cybercrime.Read More
According to former president Ronald Reagan,“the nine most terrifying words in the English language are, I’m from the government, and I'm here to help.” Perhaps we should modify that to the 12 most terrifying words—“I’m from the government and I’m here to help…protect your data.”
In just the last few months, we have seen the administration become more entrenched in the cybersecurity arena through a wide swath of actions, from proposed legislation and executive orders to the creation of more government agencies.