Derrick Coston, CISA, CISSP, GIAC

-

I have always had my issues with Sales Teams.  CNBC reports that Cyber Security Vendors are driving the hacking new cycle.  Its a shame  because those of us who are consultants and trying to ensure that organizations and people stay aware of the Cyber threat landscape, we have some exploiting it.  This article is interesting because as I try to find important information to share with those in my sphere of influence.  My only concern with this article is that it states that “breaches that actually cause damage are relatively rare. As a result, vendors often try to make a big deal out of minor breaches that don’t expose important company or customer information.”  I disagree with this because they fail to address the actual breaches that were made public.  Privacy Rights.org showed that in 2018, there were 828 documented breaches totaling over 1,371,001,709 confidential data records that were breached or exposed.  This number is higher because were were a large number or breaches where the record count was unknown, which is a different issue and concern that I have.  Statistics can be manipulated and hopefully those who are concerned with cyber security, they analyze the type of breaches, conduct a through risk assessment and identify try threats and vulnerabilities in their environment and apply the appropriate controls to mitigate the risk that could impact their environments.



source https://derrick-coston.com/2019/03/20/derrick-coston-cisa-cissp-giac-4/

Comments

Post a Comment

Popular posts from this blog

Derrick Coston, CISA, CISSP, GIAC

-
It’s amazing to see on a weekly basis, that organizations are still not taking steps in teh right direction to protect information that it has on its customers and employees.  Kacy Zurkus identified a troubling gap in her article “ Nearly Half of US Orgs Not Ready for CCDA ”   Despite how there was a push by organizations, about a year or so ago, to be compliant with the EU General Data Protection Regulation (GDPR), there now appears to be a less push or concern.  Is it because of the ability to enforce compliance.  Well Politico has identified an alarming fact in their article “ How one country blocks the world on data privacy ”  The GDPR is the world’s toughest standard for data privacy. But nearly a year later, its chief enforcer has yet to take a single action against major tech firms like Facebook and Google.  I applaud the State of California for their efforts, however, will the state be able to use its power to enforce compliance?  On paper...
Read more

Derrick Coston, Cyber Security Consultant. I am looking forward to seeing all of the new products and services at this Year’s RSA conference. Looking forward to speak with Madiant. They released its 2019 MANDIANT M-TRENDS REPORT which has some great information regarding APT37, APT38, APT39 AND APT40.

-
Madiant M-Trends Report source https://derrick-coston.com/2019/03/05/derrick-coston-cyber-security-consultant-i-am-looking-forward-to-seeing-all-of-the-new-products-and-services-at-this-years-rsa-conference-looking-forward-to-speak-with-madiant-they-released-i/
Read more