InfoSecSherpa Newsletter — 29 June 2021
- Top Pentagon cyber official investigated over disclosure concerns
(Stars and Stripes, 29 June 2021)
The Pentagon official who has been overseeing its new cybersecurity initiative for defense contractors has been placed on leave in connection with a suspected unauthorized disclosure of classified information from a military intelligence agency, according to an official document.
- U.S. DoD approves two (ISC)² certifications as requirements for cybersecurity staff
(Help Net Security, 29 June 2021)
(ISC)² announced that its healthcare security and cloud security certifications have been approved by the U.S. Department of Defense (DoD) as prerequisites of employment for certain security workforce categories.
- Changes in Connecticut’s Data Privacy Laws — But Not As Drastic As It Could Have Been
(JD Supra — Mintz, 28 June 2021)
At the close of Connecticut’s 2021 legislative session, a pair of data protection/cybersecurity related bills made their way to Governor Ned Lamont’s desk, while a CCPA-like omnibus privacy law falling one floor vote short. Oddly, the last-minute proposal (after other proposals in the House and Senate) were found in a 122-page budget bill and ended up being stripped away.
- Alaska CISO Leaves Post for Department of Homeland Security
(Government Technology, 28 June 2021)
Mark Breunig, Alaska’s chief information security officer, quietly left the position last month to take on a new role as a cybersecurity adviser for the U.S. Department of Homeland Security.
- China Cybersecurity and Data Protection: What to know about China’s Data Security Law
(Lexology — Herbert Smith Freehills LLP, 29 June 2021)
China’s new Data Security Law will come into effect on 1 September 2021. It will have a profound impact on data security practices in China, as well as on those foreign organisations and persons processing data from China. In this e-bulletin we highlight the key provisions of the law and set out our observations.
- Survey finds massive gap in awareness of cyberattacks
(ZD Net, 29 June 2021)
The company surveyed more than 2,000 professionals last month, discovering that almost 25% had never heard about the ransomware attack on Colonial Pipeline that caused gas shortages along the East Coast.
- Air Force cyber leadership visits UTSA National Security Collaboration Center
(UTSA Today, 29 June 2021)
Lt. Gen. Timothy D. Haugh, 16th Air Force (Air Forces Cyber) commander, recently met with government, academia, and industry partners to witness innovation aimed to protect our nation’s cybersecurity during a visit to the UTSA National Security Collaboration Center.
- UK Singapore statement on launch of negotiations on a Digital Economy Agreement
(Mirage News, 29 June 2021)
The UK and Singapore are pleased to announce the launch of negotiations on a UK-Singapore Digital Economy Agreement (DEA).
- Cabinet Office increases cyber spending by almost 500 per cent
(Computing UK, 29 June 2021)
The Cabinet Office has spent more than £300,000 on cyber training courses for its staff over the last two years.
- Massive Carnival Cruise Leak Exposes Employee and Customer Data
(Tech Co, 29 June 2021)
Carnival Cruise has been a victim of a massive data leak, exposing customer and employee information alike.