Help us better tailor our content and Tugboat Logic services to you by filling out this survey. And as a bonus we will be entering all survey participants into a draw to win 1 of 3 $100 visa gift cards!

We're excited to announce that we'll be joining the One Trust family! Together we'll help companies get certified, build trust, and win deals. Find out more about it here on the Helm or check out our official press release. Feel free to leave a comment or question regarding the big news.

Security news for September 3 2021: Tugboat's CPO delves into an often mismanaged part of infosec

isaac_noko
isaac_noko Tugboat Employee Tugboat Team
edited September 3 in This Week in Security News

Here are some of the most notable headlines and articles for the week of: September 3, 2021.

Risk assessment needs a redo

Tugboat Logic’s Chief Product Officer @patrick_murray explores the current state of risk assessment and its serious need for an upgrade. Risk assessment may be a fundamental concept but it is not being done very well, often or many times at all. Read Patrick’s article in Security Magazine to learn his three keys for better approach. 


CISA adds single-factor authentication to the list of bad practices

As tedious as two factor authentication can seem it is best practice. CISA has confirmed this and added the use of single-factor authentication for remote or administrative access systems to their Bad Practices list of exceptionally risky cybersecurity practices. 


Panel concludes that the U.S. Cybersecurity Mirrors 9/11 Terror Vulnerability

Scholars and former 9/11 Commission members on Thursday urged House lawmakers to prioritize and boost funding for the Cybersecurity and Infrastructure Security Agency and other parts of the federal government focused on preventing attacks. The panelists focused on emerging and expanding threats DHS must manage, including domestic terrorism and cyberattacks.


And as always please comment down below and let us know your thoughts on this week's headlines. Or if you have any interesting infosec or cybersecurity-related news please share the links in the comments.