Aggressive nation-states are increasingly leveraging cyberattacks as tools to advance their foreign policy objectives. In this case, Iran sponsored Pay2Key Ransomware-as-a-Service (RaaS) is offering an increase in profit sharing (80%) to affiliates…
I have an issue with this! No disrespect to the original poster creator, who is the sheer levels of complexity and advocating the need for multiple tools to work together, but cybersecurity will continue to disappoint, be ever more expensive, and…
AI Slop will fuel the next wave of social engineering cybercrime attacks. Simple Math: Rise of AI Slop (rapid ability to generate believable content)xCybercriminals seeking to commit fraud= Enormous Rise in Social Engineering Victimization The ease,…
Isn’t it about time the cybersecurity industry shifts towards positive reinforcement cybersecurity training? We must consider that there might be better ways to change cybersecurity behaviors than threatening or boring the workers? In the end, do we…
A coalition of banking industry associations, including SIFA, the American Bankers Association (ABA), Bank Policy Institute (BPI), and several other lobbying groups have made a disgraceful appeal to the SEC to eliminate the rule requiring public…
I was recently asked what my favorite cybersecurity speaking venue has been. Although not the largest keynote audience by sheer numbers, speaking at the Sphere 2022 conference sticks out as a unique experience with its 360° stage! I had such a great…
With daring military attacks, kinetic warfare is shifting the balance of power in regions across the globe, upending the perception of power projection. Powerful nations are reeling from the impacts of bold assaults and seeking additional methods to…
During exercises at CognectCon2025 a number of cyberattack scenarios were discussed that highlighted the risks of cyber attackers leveraging cognitive vulnerabilities to cause major impacts to nation critical infrastructures.This video is a short…
In the ever-evolving landscape of cybersecurity, organizations face a constant struggle: how to best allocate limited resources to maximize their defensive posture. No one has enough budget, personnel, or tools to defend against every conceivable…
My article on Help Net Security highlighting how the banking industry is leveraging their powerful lobbying groups to try and undermine the U.S. Securities and Exchange Commission 4-day cybersecurity reporting rule, which has been in place for over…
Banking industry lobbyists are pressuring the SEC to gut the four-day breach disclosure rule — an essential safeguard for shareholders and potential victims. Their arguments are misleading, self-serving, and designed to protect profits over public…
Russia is one of the most aggressive nations when it comes to state coordinated cyberattacks — and Ukraine has been at the center of their crosshairs for 3 years. This report, provided the State Service of Special Communications and Information…
As cryptocurrency becomes more popular and the adoption rises, we see a related increase in the number of cybercrimes, fraud, and malware schemes. Criminals like to hunt and plunder where there is money! If you hold cryptocurrency or are using Web3…
Another big healthcare sector data breach, impacting 480 thousand Catholic Health patients. Their 3rd party vendor Serviceaide is the root cause of this exposure.This is the latest in many healthcare data breaches this year! Year-to-Date we are at a…
Very excited to share that I’m now offering cyber security leadership coaching!With over 35 years of experience, I have become an outspoken advocate, mentor, and respected authority in the field of cybersecurity.I can work with you on…✅…