We have written numerous articles about the risks associated with legacy technologies from a cybersecurity perspective. It seems Colonial Pipeline got off easy in its recent ransomware cyberattack. The economic and national security impact would have been significant if an enemy state decided to corrupt Colonial's systems in such a manner so as to prevent … Continue reading The Colonial Pipeline Cyberattack Exposes A Significant Economic and National Security Risk
Much the way Marketers use technology to assemble personal profiles from disparate sources, sophisticated hackers are sourcing personal data from a variety of sources, including leveraging information collected in previous cyberbreaches. If early reports are correct the massive cyberbreach executed against Microsoft Exchange leveraged PII data captured in earlier cyberbreaches unrelated to Microsoft as well … Continue reading Hackers Are Taking A Page From Marketers’ Playbooks
"Be careful with me, I'm fragile. I'm easily broken." So go the lyrics to "Trip My Wire", but those words could just as easily describe the frail legacy technology infrastructure that underpins so many commercial processes from home and auto titling to financial trading systems, digital health records, government databases, customer databases and so on. … Continue reading A Better Tripwire Is Not The Answer
Early last week we wrote about SolarWinds and the potential for another leg to drop. SolarWinds has a long road to recovery. Cyberbreaches of that sort don't engender customer trust and often lead to significant customer churn. What other companies may be at risk of a cyberbreach? Tickers mentioned: AMZN, AVGO, CERN, EFX, EXPGF, FICO, … Continue reading SolarWinds Is One of Many Cyberbreaches to Come
Cyberbreaches do not receive enough attention. The last time we railed against a company related to a Cyberbreach was the Equifax (tkr: EFX), hack of 2017. That breach was disclosed in September 2017 despite the fact that the company had knowledge of the hack for months. EFX executives sold stock ahead of the disclosure. SolarWinds … Continue reading Is There Another Leg To Drop In The SolarWinds Cyberbreach?
Were I to go to market with an Enterprise Software product portfolio I would stress our CyberSecurity capability in all product marketing efforts. It doesn't matter what the core product offering is - CRM, HRMS, POS, Payroll - CyberSecurity must be baked into the offering. To make CybeSecurity an afterthought is to risk losing revenue … Continue reading CyberSecurity As A Competitive Differentiator
We have definitely entered a period of CyberSecurity fatigue. When Capital One's (tkr: COF), stock barely gets hit in the aftermath of a significant CyberBreach you know many investors - as Rhett Butler once said - "don't give a damn". CEO's need to "own" CyberSecurity and operate it like a line of business. Customer PII … Continue reading CyberSecurity Is Not Someone Else’s Problem
Fortune 500 real estate title insurer First American Financial Corp. (ticker: FAF) leaked hundreds of millions of documents related to mortgage transactions dating back to 2003. CEOs and Boards Need to Make CyberSecurity A Top Priority We have previously taken the position on our podcast and in this newsletter that CyberSecurity is a C-level/ Board-level … Continue reading CyberSecurity Should Be A CEO and Board-level Priority