3 Interesting Articles

The CISO Society and TalPoint Announce Partnership to Empower the InfoSec Community
TalPoint: The CISO Society, a leading community for CISOs, has announced a strategic partnership with TalPoint, a major talent marketplace for independent security professionals. This partnership will connect CISO Society members with TalPoint’s network of independent experts in security, privacy, risk, and compliance. Jason Cenamor, Founder of The CISO Society, highlighted the importance of this collaboration in providing resources for unique security challenges. TalPoint, through its vetted professionals, offers an agile, outcome-driven approach to tackling security challenges. Jordan MacAvoy, Founder and CEO of TalPoint, emphasized the importance of connecting their network of experts with The CISO Society’s security leaders. This strategic alliance aims to tackle the industry’s workforce challenges and advance the work of security teams in the evolving cybersecurity landscape.

Former Uber CISO Speaks Out, After 6 Years, on Data Breach, SolarWinds
Dark Reading: In a recent turn of events, Joe Sullivan, the former Chief Information Security Officer (CISO) of Uber, was sentenced to probation following his conviction on charges related to failing to report a 2016 cybersecurity breach. The sentencing, which took place on May 4, saw Sullivan avoiding prison time, contrary to the 15 months sought by prosecutors. Despite the intense legal battle and scrutiny, Sullivan was only required to serve three years of probation, complete 200 hours of community service, and pay a $50,000 fine. Having remained silent for over six years due to legal constraints, Sullivan is now ready to speak about his experiences. He is scheduled to present at the Black Hat Europe 2023 conference on December 7th. In his talk, Sullivan will explore the challenges and complexities he faced in the realm of corporate cybersecurity and the legal system. The session is anticipated to shed light on the evolving landscape of cybersecurity law and the critical role of transparency in corporate governance.

Emergency rooms in at least 3 states diverting patients after ransomware attack
NBC News: Hospitals in Oklahoma, New Mexico, and Texas are diverting patients from their emergency rooms due to a severe ransomware attack on Ardent Health Services, the parent company overseeing 30 hospitals in the U.S. The cyberattack has led Ardent to suspend many of its computerized services, including clinical programs and the use of Epic Systems, a patient health care records tracker. As a precaution, non-urgent procedures are being rescheduled and some emergency patients are being directed to other hospitals. The attack highlights the disruptive nature of ransomware, where attackers encrypt a company’s systems and demand ransom for a solution, a practice the FBI advises against complying with due to the lack of guarantee for a fix and the encouragement it provides for future attacks.

2 Stats You Should Know

52% of organizations still rely on manual SaaS cybersecurity audits and 60% have limited to no ability to monitor SaaS-to-SaaS connections. (source)

The earliest known use of the word “hacker” in connection with computers was in a 1963 article in The Tech, MIT’s student paper. (source)

1 More Thing

Want to learn more about ethical hacking? Ethical Hacking involves discovering vulnerabilities in computer systems or networks and devising protective strategies against these weaknesses. If you’re searching for top-notch books to enhance your hacking prowess, below are highly recommended books:

1. Hacking: The Art of Exploitation, 2nd Edition (Jon Erickson)
2. Penetration Testing: A Hands-On Introduction to Hacking (Georgia Weidman)
3. The Hacker Playbook 3 (Peter Kim)
4. The Web Application Hacker′s Handbook (Dafydd Stuttard)
5. The Shellcoder’s Handbook (Chris Anley)