On Tuesday, Jan. 12, at 11 a.m. PST/2 p.m. EST/7 p.m. GMT, @eWEEKNews will host its 94th month-to-month #eWEEKChat. The matter might be, “What’s Up in Next-Gen Security.” It might be moderated by Chris Preimesberger, eWEEK’s editor of options and evaluation.
Some fast details:
Topic: “What’s Up in Next-Gen Security”
Date/time: Tuesday, Jan. 12, 11 a.m. PST/2 p.m. EST/7 p.m. GMT
Tweetchat deal with: You can use #eWEEKChat to comply with/take part through Twitter itself, nevertheless it’s simpler and extra environment friendly to make use of the real-time chat room hyperlink at CrowdChat. Instructions are on that web page; log in on the prime proper, use your Twitter deal with to register, and the chat begins promptly at 11am PT. The web page will come alive at the moment with the reside dialogue. You can take part or just watch the dialogue as it’s created. Special due to John Furrier of SiliconAngle.com for creating the CrowdChat app.
Chat room real-time hyperlink: Use https://www.crowdchat.net/eweekchat. Sign in and use #eweekchat for the identifier.
Expert visitors: to be introduced
What, actually, are tendencies in next-gen safety?
What are safety groups doing to fortify their programs within the wake of final yr’s FireEye and SolarWinds knowledge breaches?
It’s totally potential that the U.S. authorities has undergone—and continues to be present process—the harshest, most doubtlessly devastating cyber breach within the brief historical past of digital data.
Reuters broke the story in mid-December that international entities—the National Security Agency and FBI have recognized them because the Russian hacking group APT29, also referred to as Dark Halo or Cozy Bear (brand pictured)—had infiltrated a number of federal IT programs, together with the Pentagon, National Institutes of Health, Homeland Security and State Department. This has been confirmed by extremely regarded safety corporations that embody CrowdStrike, FireEye, Volexity and Microsoft, for starters.
This was not a cyberattack per se. The perpetrators didn’t smash into these super-important programs; they slid into them on the tails of regular software program updates that a whole lot of IT managers activated themselves. The focused replace was from SolarWinds, which is getting a whole lot of grief for these points; nonetheless, the very fact is that anybody of a whole lot of comparable purposes utilized by the federal government may have been utilized in the identical method. The hackers inserted malicious code into SolarWinds Orion software program updates that had been pushed out to just about 18,000 prospects. Now untold terabytes of stolen knowledge may nicely be within the fingers of U.S. enemies.
So what’s the response going to be from SecOps professionals, whether or not they use SolarWinds or another software program? Let’s focus on this on Tuesday.
Innovation in knowledge safety land
Yes, we all know: It is not possible to have too many good concepts within the cybersecurity enterprise. But we nonetheless have to hold them coming, as a result of…