-
Businesses slow-walk classified data-sharing efforts with feds
Costs, skepticism dampen participation in Enhanced Cybersecurity Services initiative
-
Nation's power grid under constant cyberattack, but Congress lax
Utilities' cyber defense efforts said to be rapped by legislators, Congressional report finds
-
Telecom seeks critical infrastructure status for IT vendors
Experts say it doesn't matter if IT is classified because requirements will be passed on to them by the utility, telecom or defense manufacturer
-
Executive order on cybersecurity coming, but is it only a 'down payment on legislation'?
Based on leaked versions of the order, the White House is expected to put DHS in charge of organizing an cyberthreats information-sharing network
-
Employees put critical infrastructure security at risk
Sweeping change needed to boost critical infrastructure security handcuffed by lack of cooperation between IT, grid operations workers
Get exclusive access to CSO, invitation only events, reports & analysis. 
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
