NSA details 25 tech vulnerabilities
A National Security Agency advisory provides Common Vulnerabilities and Exposures (CVEs) known to be recently leveraged, or scanned-for, by Chinese hackers, along with steps to fix them. Affected products include virtual private networks, networking gateways, and email software, among others.
FSB encourages use of cyber incident response and recovery toolkit
The Financial Stability Board published a toolkit of effective practices for financial institutions’ cyber incident response and recovery. The FSB encourages authorities and organizations to use the toolkit to enhance their cyber incident response and recovery activities.
How to build a 'human firewall' at your firm
The unprecedented shift to remote work necessitated by the pandemic has created a sea change in the assumptions of how and where we work. Security consultant Aamir Lakhani outlines four areas in which to educate workers: multifactor authentication; how to identify attacks, including ensuring others in the home are knowledgeable; password security; and upgrading home networks with a security application.