Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
Android’s new patch fixes a total of 23 vulnerabilities including 2 critical issues. The most serious of the vulnerabilities allows remote code execution through email, web browsing, and MMS. The patch also fixes a newly discovered vulnerability in the Stagefright library.
According to a Wall Street Journal report, a survey of 625 IT executives in the U.S., U.K., France, and Germany found that 48% think it is likely there will be a cyber-attack on critical infrastructure, including energy infrastructure, in the next 3 years that will result in the loss of life.
In The Fine Line 2016 Predictions, we predict that “2016 will be the year of online extortion.” This means that after years of seeing the effectiveness of ransomware and seeing events like the Ashley Madison hack by the Impact Team we expect attackers to redouble their efforts around online extortion.
In a recent study, 9 out of 10 corporate board members said that regulators should hold businesses liable for breaches if they haven’t taken reasonable steps to secure customer data.
The public preview of Cloud App Security v3.0 is available on our beta site and we welcome your feedback. Existing Cloud App Security customers will receive this new functionality at no cost when it is released in January.
The National Institute of Standards and Technology (NIST) is funding the creation of a heat map visualization tool that will show where cybersecurity jobs are open across the country. The first rendition should be out late next year.
More state and local organizations describe their cybersecurity programs as being in the early and middle stages of maturity. According to Larry Ponemon, founder of the Ponemon Institute, some believe this maturity reflects the length of time agencies have been engaged in security activities.
The Cybersecurity Information Sharing Act of 2015 (CISA) passed the Senate by a 74-21 vote. The bill’s passing by such an overwhelming majority is a crucial step towards the controversial CISA becoming law, with support from some security experts and to the chagrin of other privacy advocates.
Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd.