Cybersecurity Headlines MITRE's danger list, CISO liability insurance, BianLian changes tack
10 snips
Nov 22, 2024 Discover the latest top 25 dangerous software vulnerabilities highlighted by MITRE, emphasizing threats like cross-site scripting. Explore the emergence of professional liability insurance for CISOs, a critical development for risk management. Learn about a Russian-affiliated hacking group's shift to data exfiltration, illustrated by a significant breach impacting a French hospital. Additionally, discuss unaddressed security flaws in Ubuntu and innovations like a secure smartphone for at-risk individuals, alongside insights from Japan on managing digital legacies.
AI Snips
Chapters
Transcript
Episode notes
Address Software Vulnerabilities
- Review MITRE's Common Weakness Enumeration Top 25 list.
- Prioritize these weaknesses in your development and procurement processes.
CISO Liability Insurance
- CISOs now have access to professional liability insurance.
- This protects them from personal liability, as they may not be covered by D&O policies.
BianLian's New Tactics
- BianLian ransomware group has shifted to exfiltration-only extortion.
- They now steal data via FTP instead of using ransomware, keeping systems intact.