Author: Blog

To get a roundup of TechCrunch’s biggest and most important stories delivered to your inbox every day at 3 p.m. PDT, subscribe here.

Written by Tonya Riley
Jun 23, 2021 | CYBERSCOOP

Kara Nortman Contributor

• Bring CISOs into the C-suite to bake cybersecurity into company culture
• Data is the world’s most valuable (and vulnerable) resource

As a Battery Ventures associate in 1999, I used to spend my nights highlighting actual magazines called Red Herring, InfoWorld and The Industry Standard, plus my personal favorites StorageWorld and Mass High Tech (because the other VC associates rarely scanned these).

When having trouble with a product or service, where does the modern user turn? Most likely, social networks. Therefore, in addition to traditional technical support, many companies have a special team whose job it is to track public brand mentions (particularly on Twitter or Facebook). However, such mentions are of interest not only to the companies in question, but to scammers as well.

The US National Security Agency (NSA) has announced it will fund the development of a knowledge base of defensive countermeasures for the most common techniques used by malicious threat actors.

The notorious Clop ransomware operation appears to be back in business, just days after Ukrainian police arrested six alleged members of the gang.

Amazon Simple Storage Service (Amazon S3) launched 15 years ago in March 2006, and became the first generally available service from Amazon Web Services (AWS). AWS marked the fifteenth anniversary with AWS Pi Week—a week of in-depth streams and live events. During AWS Pi Week, AWS leaders and experts reviewed the history of AWS and Amazon S3, and some of the key decisions involved in building and evolving S3.

The proliferation of 3-pointers and the (alleged) death of the midrange game often dominate the NBA conversation this time of year. But there’s a small part of the court that might be just as important yet doesn’t get much attention: inside the paint but outside the restricted area. That very specific battleground could very well decide the 2021 Eastern Conference finals.

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Antiquated infrastructure in the United States is not confined to crumbling roads and bridges. Recent events have shown that connected devices in our cell towers, pipelines, water treatment facilities and power grids remain continually exposed and vulnerable to exploitation.

Security compliance is precisely three things: incredibly boring, time consuming, and entirely necessary to run a business in the modern age. Compliance isn’t going away, but startups like Drata are making it slightly easier to bear.

In 2015, police departments worldwide started finding ATMs compromised with advanced new “shimming” devices made to steal data from chip card transactions. Authorities in the United States and abroad had seized many of these shimmers, but for years couldn’t decrypt the data on the devices. This is a story of ingenuity and happenstance, and how one former Secret Service agent helped crack a code that revealed the contours of a global organized crime ring.

Following the last year, one word we can all identify with is resilience. Despite different backgrounds, locations, perspectives and roles, one common thing that unites us all is the need to adapt and respond to change.    

Jason Lee joined Zoom in June 2020 to become the videoconferencing platform’s CISO. The company was midway through a 90-day security plan launched to address security and privacy issues exacerbated by Zoom’s meteoritic growth amid the COVID-19 pandemic and mass shift to remote working. Lee was tasked with overseeing strategies to drive the organization toward a cybersecurity and privacy posture more in scope with its rapidly advancing customer base, features offering and use requirements, all under increasing public scrutiny.

Israeli cloud security startup Mitiga has raised $25 million in a Series A round of funding as it moves to “completely change” the traditional incident response market.