Whether or not Congress enacts cyberthreat intelligence sharing legislation, the IT security community is moving forward with its own information sharing initiatives, MS-ISAC Chairman William Pelgrin says.
Here are some questions we'd like to ask the former systems administrator at the National Security Agency to learn more about the motivation behind his leak of the U.S. government's top-secret information collection programs.
Cyberthreats, including distributed-denial-of-service attacks, are growing worldwide. So FS-ISAC is expanding its information sharing efforts internationally to help financial institutions counter the threats, says Bill Nelson, the organization's president.
DDoS attacks on U.S. banks will continue, and community institutions may well be the next major targets. Rodney Joffe of Neustar offer tips for how smaller institutions can assess and mitigate DDoS risks.
In an interview about DDoS threats and defenses, Joffe discusses:
Why community banks must consider...
Robert Bigman, former CISO at the CIA, says many government agencies and other organizations have yet to take adequate steps to prevent rogue systems administrators from accessing sensitive information on systems they manage.
To prevent leaks, the National Security Agency is considering a number of measures, including reducing the number of systems administrators it employs, Director Keith Alexander tells a House committee.
The OCC's DDoS risk warnings to community banks may indicate more regulatory scrutiny is on the way. Banks should prepare for more oversight of their cyber-attack reporting and threat mitigation practices.
When it comes to breach prevention, many organizations are improving their own security posture, but neglecting that of their strategic partners.
It's a wide gap that far too few organizations even recognize, says Tom Kellermann, vice president of cybersecurity at Trend Micro.