incident response

Pierluigi Paganini November 17, 2021
CISA releases incident response plans for federal agencies

CISA released the Federal Government Cybersecurity Incident Response Playbooks for the federal civilian executive branch agencies. The Cybersecurity and Infrastructure Security Agency (CISA) has released new cybersecurity response plans for federal civilian executive branch (FCEB) agencies (” Federal Government Cybersecurity Incident and Vulnerability Response Playbooks“). The documents aim at developing a standard set of operational procedures […]

Pierluigi Paganini November 15, 2021
ENISA – The need for Incident Response Capabilities in the health sector

ENISA analyzed the current state of development of sectoral CSIRT capabilities in the health sector since the implementation of the NIS Directive. The European Union Agency for Cybersecurity (ENISA) published an analysis of the current state of development of sectoral CSIRT capabilities in the health sector since the implementation of the NIS Directive. An attack […]

Pierluigi Paganini April 04, 2018
Panera Bread left millions of customer records exposed online for months

The website belonging to the Panera Bread restaurant chain, Panerabread.com, exposed personal information in plain text for months. The company has more than 2,100 retail locations in the United States and Canada, its customers could order food online for pickup in stores or for delivery. Panera Bread exposed the data at least for eight months after […]

Pierluigi Paganini September 16, 2017
Equifax- or the new gold standard for “how not to do Incident Response”!

The cybersecurity expert Stuart Peck, Director of Cyber Security Strategy, ZeroDayLab, shared its view on the Equifax data breach. For those of you living under a rock this week, Equifax suffered a major breach in their security, which led to over 143 million records being stolen by attackers. The information held by Equifax is highly […]

Pierluigi Paganini February 19, 2017
New York state cyber security rules will be effective on March 1st

The New York state announced that a set of cyber security regulations that will take effect on March 1st to tackle cyber threats. On Thursday, the New York state announced that a cyber security regulation will take effect on March 1st. The regulations will require financial institutions and insurers to meet minimum cyber security standards and […]

Pierluigi Paganini August 30, 2016
Saudi government facilities hit by cyber attacks, Saudi cyber experts convened

Saudi government facilities have been hit cyber attacks, the Government is investigating with the support of Saudi cyber experts. Saudi government facilities have been targeted by major cyber attacks, in response, the Government has convened a group of cyber experts to examine the events. According to the Saudi Press Agency, Saudi cyber experts held urgent talks […]

Pierluigi Paganini January 17, 2016
Cyber defence is a profitable “Hamster Wheel”

Lights and shadows of the cyber defence market that will reach 170 billion in 2020 becoming vital to the global economy. Cyber defence industry is making money. In 2015, the market will reach 75 billion and in 2020 it will grow to around 170 billion. For some countries like the US, Israel, India and Europe, […]

Pierluigi Paganini March 06, 2015
Cleaning up the Cyber Mess: Adopting Cyber Hygiene principles

The increasing number of cyber incidents along with a significant improvement of TTP adopted by threat actors requests the adoption of a cyber hygiene. The rate of data breaches are increasing drastically throughout the year. Cyber-attacks could cause severe disruption to a company’s business functions or operational supply chain, impact reputation, compromise customer information or […]

Pierluigi Paganini November 06, 2014
Can cybercrime use the services of the regular companies?

The attacks from humans against the humans as the preliminary phase of a bigger cyber attack will become harder to mitigate, let’s see how the cybercrime works. Standard incident response requires finding out the real extend of the incident. This is why we have all the monitoring tools where we can find any matching patterns. […]

Pierluigi Paganini March 29, 2014
Reading the Global Threat Intelligence Report (GTIR)

The Global Threat Intelligence Report (GTIR) addresses the security challenges of organizations globally analyzing 3 billion worldwide attacks occurred in 2013. The NTT Innovation Institute has released the new Global Threat Intelligence Report (GTIR), a document structured to raise awareness of the rapidly evolving global threat landscape. The GTIR was based on threat intelligence and attack data from […]