2021, Government and Security - Information Management Today

US CISA orders federal agencies to fix Log4Shell by December 24th

Security Affairs

DECEMBER 14, 2021

US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. Conduct a security review to determine if there is a security concern or compromise.

Libraries

Libraries Cybersecurity Security Risk

CISA Issues New Cybersecurity Directive for Federal Agencies

Hunton Privacy

NOVEMBER 9, 2021

On November 3, 2021, the Cybersecurity and Infrastructure Security Agency (“CISA”) announced Directive 22-01 – Reducing the Significant Risk of Known Exploited Vulnerabilities (the “Directive”), establishing a CISA-managed catalog of vulnerabilities and compelling federal agencies to remediate such vulnerabilities on government information systems.

Cybersecurity

Cybersecurity Compliance Risk Government

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities , FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog. Pierluigi Paganini.

CMS

CMS IT Authentication Libraries

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

HackDHS bug bounty program accepts reports of Log4j-related flaws in DHS systems

Security Affairs

DECEMBER 23, 2021

The Department of Homeland Security (DHS) announced that white hat hackers can now report the impact of the Log4J on its systems as part of the ‘ Hack DHS ‘ bug bounty program. — Secretary Alejandro Mayorkas (@SecMayorkas) December 21, 2021. Below is the announcement of DHS Secretary Alejandro N. Pierluigi Paganini.

Cybersecurity

Cybersecurity Security Government IT

CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog

Security Affairs

APRIL 12, 2022

Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-23176 flaw in WatchGuard Firebox and XTM appliances to its Known Exploited Vulnerabilities Catalog. government has announced that it had dismantled the Cyclops Blink botnet operated by the Russia-linked Sandworm APT group. Recently, the U.S.

IT

IT Cybersecurity Ransomware Access

Trends and Predictions for 2022 – More of the Same?

Thales Cloud Protection & Licensing

JANUARY 5, 2022

Wed, 01/05/2022 - 05:12. Are we going to see more of the same as we did in 2021? During the latest Thales Security Sessions podcast , hosted by Neira Jones, I had the pleasure to discuss what we can expect in 2022 with Andy Green, CISO at Gemserv, and how the many changes have impacted the security landscape.

Phishing

Phishing Digital transformation Communications Cybersecurity

Five Hot Security and Privacy Topics You Need To Understand in 2022

Thales Cloud Protection & Licensing

JANUARY 26, 2022

Five Hot Security and Privacy Topics You Need To Understand in 2022. Thu, 01/27/2022 - 06:13. Throughout 2021 Thales hosted several webinars whose purpose was to raise awareness on trending topics around cybersecurity and privacy. Schrems II and the Security of International Data Flows. Privacy Shield Framework.

Privacy

Privacy Security Encryption Cloud

What Is DMARC Email Security Technology?

eSecurity Planet

JUNE 1, 2023

email domain providers and many corporate and government entities. The standard enables email security solutions and internet service providers (ISPs) to filter in “good” emails and improve their ability to filter out “bad” emails. government as part of the Department of Homeland Security (DHS) 18-01 binding operational directive.

Security

Security Authentication Phishing Marketing

Creating Records At Home, Part III: Various Devices

The Texas Record

JUNE 1, 2021

Records created and stored outside the business network are in contravention of the government records accessibility requirement —this negatively affects that government’s ability to perform regular business operations efficiently. What is the risk? See “ How Does Records Management Benefit Us, Anyway?

Records Management

Records Management File names Risk Government

Why Public Agencies Are Struggling to Implement Zero Trust

Thales Cloud Protection & Licensing

MARCH 15, 2022

Tue, 03/15/2022 - 10:01. On May 12, 2021, the White House released an Executive Order (E.O.) The directive’s third section, entitled “Modernizing Federal Government Cybersecurity,” requires Federal Civilian Executive Branch (FCEB) agencies to begin moving to a zero trust architecture (ZTA). on improving U.S. cybersecurity.

Cybersecurity

Cybersecurity Government Access Cloud

What it Takes to Achieve Saudi Arabia’s Vision 2030

Thales Cloud Protection & Licensing

JANUARY 21, 2021

Thu, 01/21/2021 - 09:49. And, the KSA recognizes their digital transformation will require reinforcing and supporting cybersecurity to protect the Kingdom’s vital interests, national security, critical infrastructures, high-priority sectors, and government services and practices. Data security policies need to keep pace.

IT

IT Digital transformation Cybersecurity Cloud

Identity Proofing: The New Foundation for Every Digital Identity

Thales Cloud Protection & Licensing

NOVEMBER 30, 2021

Tue, 11/30/2021 - 06:01. During the Thales Trusted Access Summit 2021, I discussed how advances in identity proofing such as biometrics and smartphone technologies are enabling organizations to deliver KYC effectively by offering a quick, frictionless, and secure identity proofing environment. Setting the scene.

Authentication

Authentication Privacy Compliance Retail

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Thales Cloud Protection & Licensing

APRIL 1, 2021

Thu, 04/01/2021 - 14:04. Today’s remote working environment relies heavily on the collaborative sharing of information, challenging organizations to maintain the security of confidential data and regulatory compliance while driving employee productivity. The DKE solution uses two keys to protect highly-sensitive data.

Encryption

Encryption Compliance Cloud GDPR

Data Encryption Shields the Energy Sector Against Emerging Threats

Thales Cloud Protection & Licensing

JANUARY 13, 2021

Wed, 01/13/2021 - 09:42. Security of CNI is a national security issue. Additionally, the vulnerabilities of the energy sector are of particular concern to national security due to its enabling function across all CNI systems. Data Encryption Shields the Energy Sector Against Emerging Threats. A recent U.S.

Encryption

Encryption Energy and Utilities Compliance Marketing

Why Should You Opt for a Cloud-Based Identity and Access Management Solution?

Thales Cloud Protection & Licensing

JUNE 30, 2021

Thu, 07/01/2021 - 06:36. When considering this solution, the questions to ask are, what is the security perimeter that modern businesses need to defend? Identity is the new security perimeter. Now, security teams are shifting to protect access to data across a “constellation” of entry points.

Cloud

Cloud Access Authentication Digital transformation

Why Should You Opt for a Cloud-Based Identity and Access Management Solution?

Thales Cloud Protection & Licensing

JUNE 30, 2021

Thu, 07/01/2021 - 06:36. When considering this solution, the questions to ask are, what is the security perimeter that modern businesses need to defend? Identity is the new security perimeter. Now, security teams are shifting to protect access to data across a “constellation” of entry points.

Cloud

Cloud Access Authentication Digital transformation

Records Inventory 101:

ARMA International

APRIL 11, 2022

Among these management issues are insufficient documentation of official acts, incorrect use of recordkeeping technologies, poor filing systems and maintenance standards, poor management of non-record items, insufficient identification of vital records, and insufficient records security policies. Is the DOD 9/30/2010 or 10/01/2010?

Records Management

Records Management Archiving Government IT

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

On 16 November 2021, the French data protection supervisory authority (the “CNIL”) published a practical guide (“Guide”) on Data Protection Officers (“DPOs”). The CNIL notes that nearly 30,000 DPOs have been appointed in France, covering over 80,000 organizations. 4) a glossary of terms used in the Guide.

GDPR

GDPR Compliance Personal data Communications

Focus on Good Hygiene to Protect Yourself Against Digital Pandemics

Thales Cloud Protection & Licensing

JANUARY 19, 2021

Tue, 01/19/2021 - 10:28. By now everyone in the security world has heard of the chaos surrounding the SolarWinds breach and the ensuing mess that has erupted. With so many companies and government agencies affected, I’m sure we will continue to hear about the story and damage for many months to come. Staying Safe.

Encryption

Encryption Access Ransomware Digital transformation

Luna HSM 7 Certified for eIDAS Protection

Thales Cloud Protection & Licensing

JANUARY 4, 2021

Mon, 01/04/2021 - 08:02. Thales Luna Hardware Security Module (HSM) v.7.7.0, For the secure execution of their operations and services, TSPs deploy and maintain the required HSMs to be used as qualified devices for electronic signature creation. Luna HSM 7 Certified for eIDAS Protection. Encryption.

Compliance

Compliance Authentication Encryption Marketing

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Security Affairs

AUGUST 10, 2020

Registry Domain ID: D180106494-CNIC Registrar WHOIS Server: whois.namesilo.com Registrar URL: [link] Updated Date: 2020-03-31T03:01:23.0Z Registry Expiry Date: 2021-03-26T23:59:59.0Z The news site was blocked in March 2020 under the category “fake news”, after being openly critical against military violence and government corruption.

Military

Military Communications Access Risk

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, has founded securepairs.org , a group of infosec experts who are volunteering their free time to fight for the digital right to repair in local legislation. ” So should analyzing a device’s firmware for security flaws be considered illegal?

Manufacturing

Manufacturing Agriculture IT Access

Information Management Today

US CISA orders federal agencies to fix Log4Shell by December 24th

CISA Issues New Cybersecurity Directive for Federal Agencies

Webinars

Trending Sources

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Webinars

HackDHS bug bounty program accepts reports of Log4j-related flaws in DHS systems

CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog

Trends and Predictions for 2022 – More of the Same?

Five Hot Security and Privacy Topics You Need To Understand in 2022

What Is DMARC Email Security Technology?

Creating Records At Home, Part III: Various Devices

Why Public Agencies Are Struggling to Implement Zero Trust

What it Takes to Achieve Saudi Arabia’s Vision 2030

Identity Proofing: The New Foundation for Every Digital Identity

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Data Encryption Shields the Energy Sector Against Emerging Threats

Why Should You Opt for a Cloud-Based Identity and Access Management Solution?

Why Should You Opt for a Cloud-Based Identity and Access Management Solution?

Records Inventory 101:

France: The CNIL publishes a practical guide on Data Protection Officers

Focus on Good Hygiene to Protect Yourself Against Digital Pandemics

Luna HSM 7 Certified for eIDAS Protection

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

The Hacker Mind Podcast: The Right To Repair

Stay Connected