- Categories:
- Financial Services
- Governance
- Healthcare
- Incident Response
- Industrial Control Systems
- LEO In The News
- NASA Framework
- News
- Software Security
- Training
- vCISO
- Webinar
Show all
-
Infosecurity Magazine Online Summit – North America
Join LEO Cyber Security’s CTO Andrew Hay on Wednesday, September 12th, 2018 at 12:00 PM EDT (17:00:00 UTC) for an exciting free Infosecurity Magazine Online Summit session entitled A Breach Too Far: Why Data Breaches are Getting Worse. Overview Despite increased information security budgets, better awareness and improved Board buy-in, data breaches continue to hit … Continue reading Infosecurity Magazine Online Summit – North America READ MORE >
-
Business Email Compromise and the Importance of Being Earnest
By Justin Silbert. Business Email Compromise (BEC), along with all cyber crime, is continuing to thrive. The FBI is now estimating that the cost of BEC has reached $12 billion since October 2013 and the losses continue to grow. When talking about financial cyber crimes, BEC is one of the simplest and most effective scams. … Continue reading Business Email Compromise and the Importance of Being Earnest READ MORE >
-
Insurance Occurrence Assurance?
You may have seen our friend Brian Krebs’ post regarding the lawsuit filed last month in the Western District of Virginia after $2.4 million was stolen from The National Bank of Blacksburg from two separate breaches over an eight-month period. Though the breaches are concerning, the real story is that the financial institution suing its insurance … Continue reading Insurance Occurrence Assurance? READ MORE >
-
Free SANS Webinar: I Before R Except After IOC
Join LEO Cyber Security’s CTO Andrew Hay on Wednesday, July 25th, 2018 at 10:30 AM EDT (14:30:00 UTC) for an exciting free SANS Institute Webinar entitled “I” Before “R” Except After IOC. Using actual investigations and research, this session will help attendees better understand the true value of an individual IOC, how to quantify and utilize … Continue reading Free SANS Webinar: I Before R Except After IOC READ MORE >
-
Cyber Security ROI: It may happen sooner than you think
By Seth Jaffe. You’ve heard it before. Companies are slow to invest in cyber security because they see few returns.[1] But that is likely to change, and it may occur sooner than we expected. Let’s first set the context. An executive recently made the comment to me that “cyber security is just another cost of … Continue reading Cyber Security ROI: It may happen sooner than you think READ MORE >
-
Security Practices for IEC 61131-3 PLC Programming Languages Part 2: Ladder Logic
By Isiah Jones & Brian Foster Within the industrial control systems (ICS), automation, operational technology (OT), cyber-physical systems (CPS), industrial internet of things (IIoT) and instrumentation communities many of the devices with some form of computing and logical capabilities rely on 5 primary programming languages specific to programmable logic controllers (PLCs) that are defined in … Continue reading Security Practices for IEC 61131-3 PLC Programming Languages Part 2: Ladder Logic READ MORE >
-
Security Practices for IEC 61131-3 PLC Programming Languages Part 1: SFC
By Isiah Jones, Director & Principal ICS Cyber Security Engineering & Brian Foster, Senior ICS Cyber Security Engineer Within the industrial control systems (ICS), automation, operational technology (OT), cyber-physical systems (CPS), industrial internet of things (IIoT) and instrumentation communities many of the devices with some form of computing and logical capabilities rely on 5 primary … Continue reading Security Practices for IEC 61131-3 PLC Programming Languages Part 1: SFC READ MORE >
-
Alabama Requires Entities to Safeguard Sensitive Information
By Seth Jaffe. Alabama recently became the 50th state to pass a data breach notification law, but in doing so, the state upped the ante by including security obligations generally found in industry-specific cyber security laws. I’ve written about the Eight Principles of Cyber Security Laws in a prior blog post. Alabama adopted seven of … Continue reading Alabama Requires Entities to Safeguard Sensitive Information READ MORE >
-
Upcoming LEO Red Team/Blue Team Training in Houston
Join LEO Cyber Security on Wednesday, July 11, 2018 from 8:00 AM to 6:00 PM (CDT) for our highly interactive Red Team/Blue Team Training in Houston, TX, taught by “Hacking Exposed: ICS” author, Clint Bodungen. What is Red Team/Blue Team Training? Security aware and knowledgeable users serve as the “front line” of your overall security … Continue reading Upcoming LEO Red Team/Blue Team Training in Houston READ MORE >
-
The 8 Principles of Cyber Security Laws
By Seth Jaffe. The United States has yet to promulgate a comprehensive federal cyber security law aimed at improving the cyber hygiene of companies serving its citizens. But a collation of industry-specific laws (both federal and state), proposed bills, guidance documents, and cyber strategies yields a fair indication of where our nation is headed. This … Continue reading The 8 Principles of Cyber Security Laws READ MORE >
read moreLEO Cyber Security provides the content on this blog as commentary on current issues. Your review of this content does not establish an attorney-client relationship, nor should the content be considered legal advice, which depends on the facts of each situation. LEO makes NO WARRANTIES OR REPRESENTATIONS OF ANY SORT with respect to the content of the blog, including any warranties or representations as to the accuracy or completeness of any of the information, facts, or opinions contained herein.
