Betanews: Building cyber resilience in an age of AI https://betanews.com/2023/08/25/building-cyber-resilience-in-an-age-of-ai/ #ArtificialIntelligence #CyberResilience #Article #AI

🔥⏲️ Fudge Sunday "Cyber Ground" A look at the past, present, and future of cyber insurance and cyber risk

#cyberresilience #cyberrecovery #cyberinsurance #cyberriskmanagement #cyberthreatintelligence #cyberattack #cybercrime #mergersandacquisitions #sxsw #panelpicker #sxswpanelpicker #sxsw2024 #artificialintelligence #ai #aiforgood #aiforall #aiandbusiness #platformengineering #watsonx #devx #developerexperience #newsletter #newsletters

https://fudge.org/archive/cyber-ground/

Embracing #cyberresilience isn't just smart, it's a game-changer for your #business! 🚀 When it comes to upgrading your corporate #IT infrastructure, which #security aspects should be on your radar? Find out ⬇️
https://kas.pr/p7dc

#technology #InformationSecurity #cybersecurity

«Pour faire de la cybersécurité, on a besoin de l’intelligence artificielle. On a besoin de solutions d’apprentissage pour apprendre automatiquement quelles sont les menaces, les vulnérabilités, comprendre les attaques, automatiser les processus de réponse. Le revers, c’est que l’intelligence artificielle est elle-même vulnérable aux attaque.» Frédéric Cuppens, directeur du nouvel Institut multidisciplinaire en #cybersécurité et #cyberrésilience de Montréal
https://www.ledevoir.com/societe/791296/un-nouvel-institut-de-cybersecurite-voit-le-jour-a-montreal
#IA

Open Source, robuste, cette solution "must have" fait partie de l'une de mes favorites et que je recommande chaudement:

" L'incontournable Proxmox Server Solutions "se déclinant sur 3 catégories:

- Virtual Environment ==> https://lnkd.in/e_famvMM

- Backup Server ==> https://lnkd.in/e5sgYJRs

- Mail Gateway ==> https://lnkd.in/gggdXVtC

Essayer, c'est l'adopter !!!

A très vite, et bon amusement

#environment #opensource #cyberresilience #blueteam #cybersecurity #cyber #mail

RT @IoTACproject
📢 Online Roundtable "Compliance and Beyond: Understanding the Impact of the New EU Cyber Resilience Act"
We are happy to announce the speakers 👉 https://iotac.eu/iot-day-roundtable-2023/
🗓️ 17. April 2023, 14:00 CET
#cyberresilience #CRA #cybersecurity #iotsecurity

There's a bogus statistic that's been floating around for a long time stating that 2/3 SMBs go out of business after a #cybersecurity breach. While that particular stat is false, it's 100% true that SMBs are disproportionately impacted by security incidents. Here's a clip from the 2022 Information Risk Insights Study from @cyentiainst and CISA.
***
On the surface, the absolute costs of a typical or extreme loss event for large organizations exceed those of small companies by more than 10X. That’s certainly worth incorporating into enterprise cyber-risk assessments. But some simple math yields another important finding lurking just under the surface. A $10B enterprise hit with the typical (geomean) loss amount for that size tier of $516K can expect a cost that represents 0.00516% of annual revenues. A small shop that brings in $100K per year could lose nearly its entire annual earnings in a typical loss event ($88K)!

Diving even deeper into the topic of relative impact, Figure 8 plots historical event losses as a percentage of annual revenue. There, we see that the reported losses for two-thirds of all publicly known security incidents fall below 1% of revenue (and most of those far below that mark). A little over a quarter of incidents fall in the span between 1% and 100%, while 6% actually exceed the organization’s yearly income. What’s more, some events exceed revenue by 100X!

The colors applied to Figure 8 bring us back to the discussion of the relative impact of cyber events on small vs. larger organizations. Gartner defines a small business as one having less than $50M in annual revenue. So, that’s the distinction that appears here in red. It’s clear that the majority of loss events involving midsize and large firms (in blue) fall below 1% of their income, while the higher ratios on the right side of the spectrum are almost entirely populated by small businesses. Here’s a sobering stat: SMBs were the primary victim in 89% of all cyber loss events that exceeded 10% of revenue.

Get full report: https://www.cyentia.com/iris-2022/

#smb #smbsecurity #smallbusiness #cyberrisk #cyberresilience #databreach #databreaches

ADM. Michael Rogers USN (Ret.) writes on Nexus about the need for CISOs to consider ramping down spending on new technologies and focus instead on strategies that result in sustaining the business in the event of a penetration. #cyberresilience Read more here: https://nexusconnect.io/articles/aim-for-a-sustainable-security-strategy-that-brings-resilience

@theking I think that the more substantial and nearer-term threat will be from numerous lower grade AI-assisted malware attacks on various components of our modern world, rather than from some theoretical grand attack on our civilization as a whole. (And the experience we will gain in defending against the former will help inoculate us against the latter.)

EDIT: See also this #PCAST meeting on #Cyberresilience from last year: https://youtu.be/QkfXUNwyOxw?t=8666 . (A formal PCAST report on this topic should be finalized before the end of this year.)

Klaas Knot, Chair of the Financial Stability Board, FSB Chair’s letter to G20 Finance Ministers and Central Bank Governors, February 20, 2023

— Available here: https://www.fsb.org/wp-content/uploads/P200223-1.pdf

#cryptoassets #digitalassets #cryptocurrencies #stablecoins #DLT #smartcontracts #tokenization #DeFi #regulation #financialstability #operationalresilience #thirdpartyrisk #cyberrisk #cybersecurity #cyberresilience #remittances #digitalpayments #crossborderpayments #FinancialStabilityBoard #FSB #centralbanks

Commissioner Christy Goldsmith Romero, Adjusting the Sails for Cyber and Climate Resilience, Commodity Futures Trading Commission, February 10, 2023

— Available here: https://www.cftc.gov/PressRoom/SpeechesTestimony/oparomero6

#cyberrisk #cyberresilience #climaterisk #thirdpartyrisk #SOC2 #audit #internalcontrol #riskmanagement #operationalrisk #operationalresilience #financialservices #banking #regulation #CFTC #futures #swaps

Commissioner Christy Goldsmith Romero, Adjusting the Sails for Cyber and Climate Resilience, Commodity Futures Trading Commission, February 10, 2023

— Available here: https://www.cftc.gov/PressRoom/SpeechesTestimony/oparomero6

#cyberrisk #cyberresilience #climaterisk #thirdpartyrisk #SOC2 #audit #internalcontrol #riskmanagement #operationalrisk #operationalresilience #financialservices #banking #regulation #CFTC #futures #swaps

Steven Maijoor, Executive Board Member of Supervision at De Nederlandsche Bank (DNB), The human life of cyber resilience, February 8, 2023

— Available here: https://www.dnb.nl/en/general-news/speech-2023/speech-steven-maijoor-the-human-life-of-cyber-resilience/

#cyberrisk #cybersecurity #redteaming #regulation #supervision #thirdpartyrisk #operationalresilience #cyberresilience #financialservices #banking #centralbanks #DNB #Netherlands #Eurosystem #Europe

#infosec Buzzwords that'll probably keep us busy for the next year, I must agree with the article : #cyberResilience #XDR #passwordless #SBOM
(two of which I'm more than happy to explore further 😉)

https://www.techtarget.com/searchsecurity/opinion/6-cybersecurity-buzzwords-to-know-in-2023

Referenced link: http://cs.co/90053XumD
Originally posted by Duo Security / @duosec@twitter.com: https://twitter.com/duosec/status/1615755905915551773#m

#DYK that #MFA can be targeted during a #cyberattack 😲📱❗️ Luckily, we've got some tips for improving your own #cyberresilience by strengthening your MFA: http://cs.co/90053XumD

Cyentia Institute is hosting a Year-in-Review webinar on Jan 19, during which we'll each take a turn to share our favorite findings from our 2022 #cybersecurity publications. It's a great way to gain insights from a ton of research in a short amount of time AND meet some of the team you may not know. Register below.

https://us02web.zoom.us/webinar/register/9016732996687/WN_FHnATAyWTzG_lsjH3PkbLQ

#infosec #informationsecurity #cyberrisk #cyberresilience

Happy New Year! All about partners. Global Cyber Alliance's Philip Reitinger shares updates on the organization's Internet Integrity and Capacity & Resilience programs to address challenges of internet infrastructure, privacy & safety. https://www.govinfosecurity.com/governments-should-give-incentives-for-collaboration-a-20819 #cyberresilience

Post quantum crypto (PQC) agility. Cool! This will be fun to deal with. #cryptography #cyberresilience #thinkahead

https://www.darkreading.com/attacks-breaches/quantum-cryptography-apocalypse-a-timeline-and-action-plan

"crypto" will be blamed

---
RT @coveware
The World Economic Forum’s Cyber Resilience in the Oil and Gas Industry: Playbook for Boards and Corporate Officers Provides a New Blueprint to Secure Critical Infrastructure https://buff.ly/3AL8IrT
#CyberSecurity #CyberResilience #cybersecuritytips
https://twitter.com/coveware/status/1426275367468376069

RT @MicroFocusSec@twitter.com

Have you visited the #MIcroFocus Fortify virtual booth at the #GlobalAppSec Conference yet? Today is your last day! Be sure to pop in and chat with our #AppSec pros. The exhibit hall is free. http://ms.spr.ly/6019TLind #CyberResilience #DevSecOps @owasp@twitter.com

🐦🔗: https://twitter.com/MicroFocusSec/status/1319345278168727556