Category Archives: Information Security News

Y2K … Two Decades Later

– Why didn’t I use the title “Y2K at Twenty” for this column to match “The FS-ISAC at Twenty” that was posted on BlogInfoSec on January 6, 2020? Good question … easy answer. Because The New York Times commandeered “Y2K @ 20” for their online presentations. I will get to one of…

The FS-ISAC at Twenty

– The FS-ISAC (Financial Services Information Sharing and Analysis Center) was launched in October 1999 by Treasury Secretary Lawrence Summers. It was the first such entity. Many subsequent ISACs have used the FS-ISAC as their model. The idea for ISACs was part of the 1998 PDD (Presidential Decision…

“All for One and One for All”

– … So chanted the Three Musketeers. One of my main issues with cybersecurity risk management is that organizations seek to secure their own systems, data and networks, hoping that attackers will move on and attack more vulnerable victims. I have heard this notion explicitly stated by senior…

Schneider Targeted Yet Again

– In an April 30, 2019 article by Danny Palmer with the title “Cybersecurity: The key lessons of the Triton malware cyberattack you need to learn,” available at https://www.zdnet.com/article/cybersecurity-the-key-lessons-of-the-triton-malware-cyberattack-you-need-to-learn/ the reporter describes…

Global Cybersecurity Agreement?

– First off, I strongly believe that, in order to make any headway at all with respect to creating a more trustworthy and secure Internet, there must be global sponsorship of efforts to improve cybersecurity, generally-accepted cybersecurity policy and standards, and international institutions to…