Archive for 'Incident Response' Category
Autopsy of the SolarWinds Hack Update
A Timeline Update as of 02/22/21 An update to our Newest Employee’s FIRST Technical Article Another interim post-mortem review . . . . A Note About Updates: We have decided to leave the original article as it was originally posted and to update this post with any changes that have been made. You can see […]
The Problem with Cybersecurity Insurance
The cybersecurity industry faces challenges, and some of them may involve your business… An article review. In a world where threats to your organization’s electronic assets are constantly emerging and evolving a cybersecurity insurance policy can help mitigate risk…but what kind of risk does the cybersecurity insurance industry face? A new article in the Harvard […]
Autopsy of the SolarWinds Hack
A Timeline as of 01/24/2021 Our Newest Employee’s FIRST Technical Article Another interim post-mortem review . . . . A Note About Updates: We are leaving this article as is, but for any updates to the timeline, check the Autopsy of the SolarWinds Hack Timeline Update article! – Vigilize Introduction: As the managing […]
The One Test
The One Test… …Is there a Test that Covers 9/11’s of the Battle? Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Twenty years ago two geek-friends and I debated the following question: “Is there an Audit Test that covers 9/11’s of the battle?” This […]
Incident Response on Steroids!
Turning Letters into Lemonade . . . Could Marketing Messages be Pre-Planned Into Response? Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Something I just noticed: I now know what Yandex is. And I would not have known about this interesting browser had it […]
SolarWinds Incident
infotex does not use SolarWinds… We are protecting our Clients! Another blog post meant to inspire thought about IT Governance . . . . To all infotex managed security service Clients: As recently reported by major news outlets there is currently an ongoing attack on SolarWinds Orion network monitoring software builds released between March and June […]
US Treasury Warns Against Paying Ransomware Gangs
Ransomware payments sent to countries under sanctions could result in fines… An article review. Whether or not to pay the organization behind a ransomware attack has been a hotly debated subject for many years, but a new advisory issued by the Treasury Department’s Office of Foreign Assets Control (OFAC) warns those who do pay up […]
Intelligence Agencies Release Joint Cybersecurity Advisory
Intelligence agencies from five nations contributed to the new advisory… An article review. For the first time, the cybersecurity divisions of the nations in the “Five Eyes” alliance (The United States, United Kingdom, Canada, Australia and New Zealand) have released a joint advisory concerning incident response. The report, available here, does not provide a complete […]
Data Breach Laws: A State-by-State Framework
What you need to know for compliance coast-to-coast. Back in February we posted an article summarizing state data breach laws, but only as they applied to schools. This time around, we’re taking a look at the state data breach laws concerning businesses, including banks. While compiling this list we found many similarities between each state’s […]
Incident Response for Directors Webinar Movie
Back by popular demand! You are ready to bring your board on-board . . . the incident response process. Incident Response for Directors is the movie meant to play directly to your Directors. It is the “movie within a movie” from the webinar, called Teaching Incident Response to your Board meant for ISO’s . . […]