Archive for November, 2010
The tech industry was all abuzz about Y2K and whether it would shut down computer systems running power grids, banks and their ATMs, water treatment plants, telephone companies, wireless services–you name it. I had relatives (well, ex-relatives I suppose now), who were withdrawing all their money from ...
If you’ve seen the movies “The Net” or “Firewall” you probably think that those kind of security events are just good stories for Hollywood. Think again. Cyber security events against critical infrastructure (electric power, financial systems, government websites, etc.) have been taking place far more frequently ...
ESG Recently Published a new Research Report titled "Cyber Supply Chain Security Vulnerabilities Within The U.S. Critical Infrastructure." The report can be downloaded here.
As part of the survey, we asked respondents whether the U.S. Federal Government should be more active with cyber security strategies and defenses. Most ...
“Most of the critical infrastructure organizations surveyed are not doing adequate security due diligence on the IT vendors that provide them with products and services”, said Jon Oltsik, ESG principal analyst and author of the report.
via Infosecurity (USA) - Critical infrastructure facilities provide substandard cyber supply chain security.
“A professional services person could put a logic bomb in, misconfigure systems, insert a USB drive and inject malicious code,” Jon Oltsik, senior principal analyst at Enterprise Strategy Group,
via Critical infrastructure lacking cyber supply chain security - SC Magazine US.
Internet security concerns were already high leading up to Cyber Monday. Now that leaked US State Department classified documents went public—an event which may have been possible due to post-9/11 changes promoting the sharing of information between government agencies—security is THE topic of the day. Coincidentally, ...
Once upon a time, there were two financial companies. One was deathly afraid of the DoJ and SEC, while the other simply scoffed: "if they come here, they can huff and puff all they want but they can't blow our house down--we have enough money to make anything right!"
The other ...
In 1998, then President Bill Clinton recognized that the United States was especially vulnerable to a cyber attack to its critical infrastructure. Clinton addressed Critical Infrastructure Protection (CIP) by issuing Presidential Directive 63 (PDD-63).
Soon after PDD-63, Deputy Defense Secretary John Harme cautioned the US Congress about ...
Contact:
Lauren Whitehouse, ESG
508-381-5180
Lauren.Whitehouse@esg-global.com
Report Identifies Security Weaknesses in
IT Procurement, Software Development and Inter-Organizational Sharing of IT Systems
Milford, MA— November 29, 2010 —The Enterprise Strategy Group (ESG), a leading IT industry analyst and consulting organization, today announced the availability of a new research report titled, Assessing Cyber Supply Chain Security Vulnerabilities Within ...
The primary objective of this ESG research study was to survey Critical Infrastructure and Key Resources (CIKR) organizations in order to qualify and quantify the current status of their existing security profiles as well as their awareness of and programs dealing with cyber supply chain security.
To assess cyber supply chain ...
