InfoSecSherpa: Your Guide Up a Mountain of Information!
  1. Apple failed to disclose security incident affecting 128 million users in 2015
    (Security Magazine, 12 May 2021)
    Evidence shows Apple managers chose to not disclose this security incident.
  2. Pending Data Protection and Security Laws At-A-Glance: APAC
    (Cyber Security Hub, 12 May 2021)
    This is an overview of 3 soon-to-be-enacted regulations that will change the APAC data privacy legal landscape.
  3. 328 security weaknesses found in Australian local government systems
    (IT Pro, 12 May 2021)
    A report has been submitted to Parliament underlining the weaknesses of the computer environments in local government entities.
  4. U.S. Department of Labor Weighs in on Cybersecurity for…

Your Guide Up a Mountain of Information!
  1. Germany sees cybercrime jump as work shifts online in pandemic
    (Euractiv, 11 May 2021)
    Germany’s shift towards digitalisation due to the coronavirus pandemic has come with a significant rise in cybercrime, according to a report by the country’s Federal Criminal Police Office (BKA).
  2. COVID-19 Vaccine Passport Programs: Privacy and Security Considerations
    (National Law Journal, 11 May 2021)
    In late March, the European Commission announced its plan for a COVID-19 Digital Green Certificate framework (“the framework”) to facilitate “safe free movement of citizens within the EU during the COVID-19 pandemic”.
  3. Information security platform forges international relations (BDaily News, 11 May 2021)…

Your Guide Up a Mountain of Information!
  1. Ransomware gangs get more aggressive against law enforcement
    (Fairfield Citizen, 09 May 2021)
    Police departments big and small have been plagued for years by foreign hackers breaking into networks and causing varying level of mischief, from disabling email systems to more serious problems with 911 centers temporarily knocked offline. In some cases important case files have gone missing.
  2. Starting from 2022, Google Play Store wants developers to be more transparent when it comes to collecting users data (Digital World Information, May 2021) From the next year, Google will first show the complete details about what kind of data Google collects…

Your Guide Up a Mountain of Information!
  1. US and UK Issue Joint Alert on Russian Cyber Activity
    (Gov Info Security, 08 May 2021)
    U.S. and U.K. cyber, law enforcement and intelligence agencies issued a joint advisory Friday offering detailed information on how to defend against the activities of the Russian Foreign Intelligence Service, or SVR, in the wake of the 2020 SolarWinds attacks.
  2. DOE elevates energy security to National Security (Philippine Information Agency, 08 May 2021) The Department of Energy (DOE) held a joint briefing on 03 May for the National Security Council (NSC), National Intelligence Coordinating Agency (NICA), and the Office of the Civil Defense —…

Your Guide Up a Mountain of Information!
  1. New TsuNAME Flaw Could Let Attackers Take Down Authoritative DNS Servers
    (The Hacker News, 07 May 2021)
    The flaw, called ‘TsuNAME,’ was discovered by researchers from SIDN Labs and InternetNZ, which manage the national top-level internet domains ‘.nl’ and ‘.nz’ for the Netherlands and New Zealand, respectively.
  2. NCSC, CISA publish new information on Russia’s Cozy Bear
    (Computer Weekly, 07 May 2021)
    New intelligence from UK and US cyber agencies suggests that APT29, or Cozy Bear, has been switching up its tactics.
  3. Twitter’s Tip Jar May Send Your Address To Recipients: How To Avoid It (Screen Rant, 07 May 2021) Using…

Your Guide Up a Mountain of Information!
  1. Government of Canada investing to position Canada as a global leader in cyber security
    (Cision, 06 May 2021)
    $80-million investment will support cyber security research and development, commercialization, and skills and talent development.
  2. The need for privacy in vaccine passport policies
    (Med City News, 06 May 2021)
    Let’s be careful and deliberate about what we decide to do with vaccine passports. Considerable consequences to individual freedoms — as well as both societal and public health — are at stake.
  3. Unbreakable invisible ink encryption could help secure paper records (Engineering & Technology, 06 May 2021) An uncrackable combination of invisible ink…

InfoSecSherpa: Your Guide Up a Mountain of Information!
  1. Peloton users’ private account data was left exposed
    (C|Net, 05 May 2021)
    Peloton users’ private data, including birthday, location, gender, weight and workout statistics, was exposed to the public due to a leaky application programming interface.
  2. NIST Seeks Feedback on Guide to Implementing HIPAA Security Rule
    (Health IT Security, 05 May 2021)
    Industry stakeholders are being urged to comment on proposed changes to the NIST HIPAA Security Rule resource guide, including its uses and applications.
  3. 61% of cybersecurity teams are understaffed (Help Net Security, 05 May 2021) Only 31 percent say HR regularly understands their cybersecurity hiring needs. <<< THIS…


Your Guide Up a Mountain of Information!
  1. Let’s get emotional: The business case for the soft-skilled chief information security officer
    (Arabian Business, 04 May 2021)
    The emotionally intelligent CISO must ensure each team member is prepared to recognise the hallmarks within data that warrant further investigation, says Paul Baird.
  2. Biden on cyber security after 100 days: A good start, but now comes the hard part
    (Synopsys, 03 May 2021)
    Cyber security experts weigh in on what we’ve learned about President Biden’s cyber security strategy in his first 100 days in office.
  3. Cybersecurity Ignorance Is Dangerous (Foreign Policy, 03 May 2021) A new book gets the policy recommendations…


Your Guide Up a Mountain of Information!
  1. Toronto reveals potential cyber breach
    (Insurance Business Canada, 03 May 2021)
    The city of Toronto suffered a potential data breach related to a third-party file transfer software vendor — an incident that occurred way back in January.
  2. Andy Ellis, Operating Partner at YL Ventures, Inducted into CSO Hall of Fame
    (Street Insider, 03 May 2021)
    Andy Ellis (Andy Ellis), Operating Partner at YL Ventures, CEO at Duha and investor and advisor to several cybersecurity startups including Grip Security, Orca Security and Vulcan Cyber, has been inducted into the prestigious IDG CSO Hall of Fame.
  3. Security Executive Council welcomes five new…

(Originally written by the author on February 23, 2016.)

I attended a tech job fair last week. Not to actually job hunt, per se. I was there for professional networking reasons, since I recently started my own business. I was also there because I knew that a friend of mine would be in attendance, and it was an easy way to meet up with her.

Two things, by the way, that are important and that you should always make time for — — professional networking and reconnecting with friends or acquaintances.

Photo Source: WOC in Chat

When my friend and I spotted a company we…

InfoSecSherpa

#Librarian turned #InformationSecurity professional. Your guide up a mountain of information!

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store