Understanding the DHS US-CERT Alert on SAP Cybersecurity. From Onapsis. On May 11, 2016, the first-ever US-CERT Alert for cybersecurity of SAP business applications was released by the Department of Homeland Security (DHS) to forewarn the cybersecurity community about the significance and implications of an SAP vulnerability, which was patched by SAP over five years ago, that is being leveraged to exploit SAP systems of many large-scale global enterprises.
- Pentagon chief sees problems with cybersecurity market . From NDIA. – The private sector in the United States is underinvesting in network protection and hindering the growth of the cybersecurity market, Secretary of Defense Ashton Carter told reporters on May 11. The Pentagon chief expressed his concerns after conferring with other government officials and members of the commercial technology industry during a meeting of the President’s National Security Telecommunications Advisory Committee. The confab took place at Intel’s corporate headquarters in Santa Clara, California, in the heart of Silicon Valley.
- Carter says cyber warfare on DAESH can set model. From TRTWorld. Cyber attack techniques used by the US-led coalition against DAESH could also be used by other countries, US Defense Secretary Ashton Carter said on Wednesday. Speaking in California, Carter told reporters that the US-led coalition used electronic techniques to disrupt and degrade the terrorist organization’s ability to organize and said an unspecified number of other countries could do the same in other conflicts.
TalkTalk profits halve after cyber attack. From BBC. Telephone and broadband provider Talktalk saw profits more than halve following a hack attack on its systems last October. Profits fell to £14m compared with £32m a year earlier.That fall is partly due to the costs of last year’s serious cyber attack, which cost the company £42m. Dido Harding, TalkTalk chief executive told the BBC: “We have significantly increased our spending on security. We take this extremely seriously.”
Tabletop exercises a useful tool in cybersecurity testing. From FCW. A senior Defense Department official said tabletop exercises are among the most useful tools for cybersecurity testing, evaluation and training. Peter Christensen, director of the DOD Test Resource Management Center’s National Cyber Range (NCR), said the approach has been highly successful in his experience. Tabletop exercises bring people together to talk through how they would respond to simulated scenarios.