InfoSec Compliance & AI Governance For over 20 years, DISC InfoSec has been a trusted voice for cybersecurity professionals—sharing practical insights, compliance strategies, and AI governance guidance to help you stay informed, connected, and secure in a rapidly evolving landscape.
Apr 01 2019
Every day, big companies are still getting breached despite their security products. F-Secure’s Mikko Hypponen warns that companies that say ‘use our technology and you will not have a breach’ actually make it much harder for clients to think about and be ready for a breach.
Source: Just Having A Security Product Doesn’t Make You Secure
Mar 30 2019
A 20-year-old security researcher publicly disclosed details and proof-of-concept exploits for two zero-day vulnerabilities in Microsoft web browsers.
Source: Expert disclosed two Zero-Day flaws in Microsoft browsers
Mar 29 2019
Better hardware security key support means our post-password future is one step closer to reality.
Source: Google’s most secure logon system now works on Firefox and Edge, not just Chrome
Subscribe to DISC InfoSec blog by Email
Mar 29 2019
Mar 28 2019
2FA is an important step in preventing your account from being accessed by unauthorized users — here’s how to enable 2FA on your accounts across the web.
Source: How to set up two-factor authentication on all your online accounts
Mar 28 2019
Stay out of the phishing net with these actionable tips – here’s how you can detect and prevent phishing attacks.
Source: The ABCs of Detecting and Preventing Phishing
Mar 23 2019
Mar 19 2019
But one simple thing could help stop the vast majority of these attacks, say researchers.
Source: These are the top ten security vulnerabilities most exploited by hackers | ZDNet
Mar 17 2019
Risk Management Framework for Information Systems and Organizations:
A System Life Cycle Approach for Security and Privacy
NIST 800-37r2
Subscribe to DISC InfoSec blog by Email
Mar 11 2019
ESET suspects that tens or hundreds of thousands of users have been infected already.
Source: Chinese hacking group backdoors products from three Asian gaming companies | ZDNet
Cyber Security Espionage Titles
Mar 09 2019
When collaborating on a document with several people, leaving comments is an essential part of the process. You can print the document along with comments, but what if you want you print just the comments? You can do that.
Source: How to Print Comments Only in Word
Mar 09 2019
Hot on the heels of disclosing a critical zero-day vulnerability in Chrome that was being exploited in the wild by attackers, Google has now uncovered another critical zero-day that is being used alongside it to take over Windows machines.
Source: Google Says Upgrade To Windows 10 After Critical Flaws Found In Chrome And Windows 7
Mar 07 2019
Does your organization need NIST, CSC, ISO, or FAIR frameworks? Here’s how to start making sense of security frameworks.
Source: How to choose the right cybersecurity framework
Mar 06 2019
Firefox gets another new feature from the Tor Uplift project started in 2016.
Source: Firefox to add Tor Browser anti-fingerprinting technique called letterboxing | ZDNet
Mar 05 2019
It didn’t require an account PIN to switch carriers. Everybody uses 0000, it said, making it easier for customers… and phone hijackers.
Source: Comcast security nightmare: default ‘0000’ PIN on everybody’s account
Mar 04 2019
IT Governance Ltd, the world’s one-stop shop for ISO27001 information, books, toolkits, training and consultancy for ISO27001 Information Security Management, has now sold 1,034 copies of its ISO27001 ISMS Documentation Toolkit.
“We estimate that between 5% and 10% of all ISO27001-certified organisations worldwide have drawn on the comprehensive, best practice templates contained in our ISO27001 Toolkit,” commented Alan Calder, CEO of IT Governance.
Mar 04 2019
The workforce and skills gap in cybersecurity continues to plague organizations.
Source: RSAC 2019: 58% of Orgs Have Unfilled Cyber Positions | Threatpost
