Definition, Energy and Utilities and Risk - Information Management Today

FERC, NERC joint report on cyber incident response at electric utilities

Security Affairs

SEPTEMBER 21, 2020

The US FERC and NERC published a study on cyber incident response at electric utilities that also includes recovery best practices. Federal Energy Regulatory Commission (FERC) and the North American Electricity Reliability Corporation (NERC) released a study on cyber incident response and recovery best practices for electric utilities.

Energy and Utilities

Energy and Utilities Compliance Communications Cybersecurity

Business ID Theft Soars Amid COVID Closures

Krebs on Security

JULY 27, 2020

. “The ferocity of cyber criminals to take advantage of COVID-19 uncertainties by preying on small businesses is disturbing,” said Andrew LaMarca , who leads the global high-risk and fraud team at Dun & Bradstreet. For the past several months, Milwaukee, Wisc. ” PHANTOM OFFICES.

Energy and Utilities

Energy and Utilities Computer and Electronics Insurance Risk

NIST Updates Cybersecurity Framework

Data Matters

APRIL 18, 2018

The new version focuses substantially more on supply chain risks and management than the prior iteration, and also stresses the importance of focusing on: effective internal communications among technical and non-technical personnel, threat intelligence and information sharing, as well as increased collaboration with relevant outside parties.

Cybersecurity

Cybersecurity Energy and Utilities Risk Communications

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Do You Have the Right Stuff to Transition to Information Governance?

ARMA International

DECEMBER 23, 2019

That’s no coincidence because the tenets of records management are encompassed within IG (along with legal, privacy, risk/compliance, security, technology, etc.). all of which require the same disciplines we utilize when managing our records. savings in time and costs vs. investment required) and business risk assessments (e.g.,

Information governance

Information governance Government Records Management Energy and Utilities

FERC Proposes to Accept Updated CIP Standards and Calls for New Cybersecurity Controls

Hunton Privacy

JULY 21, 2015

On July 16, 2015, the Federal Energy Regulatory Commission (“FERC”) issued a new Notice of Proposed Rulemaking (“NOPR”) addressing the critical infrastructure protection (“CIP”) reliability standards. Utilities that violate them are potentially subject to substantial financial penalties. They are mandatory and enforceable.

Energy and Utilities

Energy and Utilities Cybersecurity Communications Risk

Insight-driven decisions are required to operate digital energy grids - and keep my EV charged

CGI

MARCH 1, 2020

Insight-driven decisions are required to operate digital energy grids - and keep my EV charged. Last summer, I had an experience that made me realize how, in the future, utility network operators will need to work based on data they get from assets they may or may not own. Decarbonization is challenging network operators.

Energy and Utilities

Energy and Utilities Artificial Intelligence Risk IT

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Only 2 definitely haven’t had data breached. GB Impact Energy Services Source New Engineering Canada Yes 52,707 Lancaster County Sheriff’s Office Source New Public USA Yes 52,567 Maximum Research Source New Professional services USA Yes 52 GB Terago Source New Telecoms Canada Yes 45 GB Zivilgeometer Source New Engineering Austria Yes 41.83

Data Privacy

Data Privacy Manufacturing Privacy Security

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

Only 3 definitely haven’t had data breached. Publicly disclosed data breaches and cyber attacks: full list This week, we’ve found 83,463,951 records known to be compromised, and 210 organisations suffering a newly disclosed incident. 138 of them are known to have had data exfiltrated or exposed. Source (New) Manufacturing Canada Yes 1.2

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

Only 5 definitely haven’t had data breached. Italian data protection authority fines Enel €79 million Italy’s data protection regulator, the Garante per la Protezione dei Dati Personali, has fined the country’s largest utility company, Enel, more than €79 million for misusing customer data for telemarketing.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. And again, smart meters were positioned squarely as making the environment more friendly by knowing how and when energy is being used by individual customers. Environmental effects caused by pollution.

Energy and Utilities

Energy and Utilities Computer and Electronics IT Communications

The State of Blockchain Applications in Cybersecurity

eSecurity Planet

JULY 28, 2021

For advantages, private blockchains are more scalable and energy-efficient with suggested use cases of banking and supply chain management. Though nodes can be vulnerable, by definition, a blockchain network contains enough nodes that the compromise of a single, or even a fraction of, the network wouldn’t impact the veracity of the blocks.

Blockchain

Blockchain Cybersecurity Energy and Utilities IoT

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. Kim Zetter’s book, Countdown to Zero Day, is perhaps the definitive book on the subject. But is that balance right? Van Norman: Absolutely.

Energy and Utilities

Energy and Utilities Manufacturing Risk IT

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

IT Governance

JANUARY 30, 2024

Only 1 definitely hasn’t had data breached. Source (New) Legal Canada Yes 1 TB Double Eagle Development Source (New) Real estate USA Yes 904,980 Southern Water Source 1 ; source 2 ; source 3 (New) Utilities UK Yes 750 GB BuidlersTribe Source (New) Professional services Singapore Yes More than 661,000 Dillard’s Inc. noyb survey: 74.4%

Data Privacy

Data Privacy Retail Privacy Manufacturing

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

Only 5 definitely haven’t had data breached. Publicly disclosed data breaches and cyber attacks: full list The past two weeks, we’ve found 2,038,302,060 records known to be compromised, and 797 organisations suffering a newly disclosed incident. 711 of them are known to have had data exfiltrated, exposed or breached.

Data Privacy

Data Privacy Insurance Manufacturing Retail

Game Theory: Why System Security Is Like Poker, Not Chess

ForAllSecure

MAY 18, 2020

When you capture someone else’s exploit and use it (or patch it), you’ve used their energy against them. If you can better use an adversary’s energy and time for your own benefit, you have a higher chance of succeeding. There is value in offense and you get some utility such as access, intelligence, or control.

Energy and Utilities

Energy and Utilities Security Risk Paper

Game Theory: Why System Security Is Like Poker, Not Chess

ForAllSecure

MAY 18, 2020

When you capture someone else’s exploit and use it (or patch it), you’ve used their energy against them. If you can better use an adversary’s energy and time for your own benefit, you have a higher chance of succeeding. There is value in offense and you get some utility such as access, intelligence, or control.

Energy and Utilities

Energy and Utilities Security Risk Paper

GAME THEORY: WHY SYSTEM SECURITY IS LIKE POKER, NOT CHESS

ForAllSecure

MAY 18, 2020

When you capture someone else’s exploit and use it (or patch it), you’ve used their energy against them. If you can better use an adversary’s energy and time for your own benefit, you have a higher chance of succeeding. There is value in offense and you get some utility such as access, intelligence, or control.

Energy and Utilities

Energy and Utilities Security Risk Paper

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

Only 4 definitely haven’t had data breached. Source (New) Energy India Yes 280,000 National Student Clearinghouse Source 1 ; source 2 (Update) Non-profit USA Yes 271,496 PCTEL Source (New) Telecoms USA Yes 267.45 144 of them are known to have had data exfiltrated or exposed. Organisation name Sector Location Data exfiltrated?

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Information Management Today

FERC, NERC joint report on cyber incident response at electric utilities

Business ID Theft Soars Amid COVID Closures

Webinars

Trending Sources

NIST Updates Cybersecurity Framework

Webinars

Do You Have the Right Stuff to Transition to Information Governance?

FERC Proposes to Accept Updated CIP Standards and Calls for New Cybersecurity Controls

Insight-driven decisions are required to operate digital energy grids - and keep my EV charged

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

The Hacker Mind Podcast: Reverse Engineering Smart Meters

The State of Blockchain Applications in Cybersecurity

The Hacker Mind Podcast: Hacking Industrial Control Systems

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

Game Theory: Why System Security Is Like Poker, Not Chess

Game Theory: Why System Security Is Like Poker, Not Chess

GAME THEORY: WHY SYSTEM SECURITY IS LIKE POKER, NOT CHESS

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Stay Connected