Exercises and Manufacturing - Information Management Today

Medical Device Cyberthreat Modeling: Top Considerations

Data Breach Today

APRIL 5, 2024

Besides not doing cyberthreat modeling at all, some the biggest mistakes medical device manufacturers can make are starting the modeling process too late in the development phase or using it simply as a "paper weight exercise," said threat modeling expert Adam Shostack of Shostack & Associates.

Manufacturing

Manufacturing Paper IT

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

It’s advisable for them to externally verify the information contained in emails and exercise caution when clicking links or opening attachments. User Table Schema | Source: Cybernews As a huge number of emails were leaked, platform users could potentially experience a surge in spam and phishing emails. Are the leaked passwords crackable?

Passwords

Passwords Healthcare Manufacturing Access

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

Then they analyzed the connections made to this server to identify potential targets and discovered that over 91% of the inbound connections were from Taiwan, and there appeared to be a preference for Ruckus-manufactured edge devices. ” continues the report. “We identified one node in the PRC at IP address 101.39.202[.]142

Military

Military Manufacturing Government Access

Webinars

Going Beyond Chatbots: Connecting AI to Your Tools, Systems, & Data

Automation, Evolved: Your New Playbook for Smarter Knowledge Work

MORE WEBINARS

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

Security Affairs

FEBRUARY 12, 2023

An internal audit of surveillance equipment in Australian government and agency offices revealed the presence of more than 900 built systems manufactured by Chinese companies Hikvision and Dahua. The decision of the Australian government is aligned with similar decisions taken by the US and UK governments.

Manufacturing

Manufacturing Government Risk Communications

3 approaches for proactive responses to supply chain impacts in manufacturing

CGI

APRIL 17, 2020

3 approaches for proactive responses to supply chain impacts in manufacturing. Since the COVID-19 outbreak began in the key global manufacturing hub of Wuhan, China, the impacts on the broader industry have been growing exponentially. Unloaded cargo ships also caused supply shortfalls for global manufacturers.

Manufacturing

Manufacturing Artificial Intelligence Marketing IT

Security Affairs newsletter Round 421 by Pierluigi Paganini – International edition

Security Affairs

MAY 27, 2023

New Buhti ransomware operation uses rebranded LockBit and Babuk payloads New PowerExchange Backdoor linked to an Iranian APT group Dark Frost Botnet targets the gaming sector with powerful DDoS New CosmicEnergy ICS malware threatens energy grid assets D-Link fixes two critical flaws in D-View 8 network management suite Zyxel firewall and VPN devices (..)

Security

Security Ransomware Manufacturing Cybersecurity

Healthcare Info Security: Podcast Episode with Marianne Kolbasuk McGee

Adam Shostack

JANUARY 2, 2025

Adam highlights some of the biggest mistakes that medical device manufacturers can make, such as delaying threat modeling until late in the development phase or treating it merely as a "paper weight exercise." Check out the full episode here!

Security

Security Manufacturing Paper IT

Vladimir Putin ‘s computers still run Windows XP, Media reports

Security Affairs

DECEMBER 30, 2019

Astra Linux is a Debian-based distro developed in Russia by the Scientific/Manufacturing Enterprise Rusbitech RusBITech about ten years ago. The exercises aimed at testing and ensuring the integrity and the security of Russia’s Internet infrastructure, so-called RuNet.

Government

Government Communications Military Manufacturing

Vulnerabilities in Weapons Systems

Schneier on Security

JUNE 8, 2021

Although sensitive military systems rely on domestically manufactured chips as part of the Trusted Foundry program, many military systems contain the same foreign chips and code that commercial systems do: just like everyone around the world uses the same mobile phones, networking equipment, and computer operating systems.

Military

Military Cybersecurity Communications Manufacturing

Weekly podcast: TSB, hotel locks and NATO exercise

IT Governance

APRIL 27, 2018

This week, we discuss TSB’s chaotic system upgrade, a security flaw in electronic hotel locks and a major NATO cyber security exercise. According to CCDCOE, the exercise is running from 23 to 27 April. Hello and welcome to the IT Governance podcast for Friday, 27 April 2018. Here are this week’s stories.

Military

Military Information Security Manufacturing Access

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

35 TB of data exfiltrated from Henry Schein, plus ALPHV/BlackCat re-encrypted the newly restored files As we first reported last month , the US healthcare solutions provider Henry Schein announced on 15 October that it had suffered a cyber attack that caused disruption to its manufacturing and distribution businesses.

Data Privacy

Data Privacy Privacy Manufacturing Security

News Alert: Budget pressures drive prioritizing of OT cybersecurity projects, says Radiflow

The Last Watchdog

JUNE 20, 2023

Farrow-Lesnianski “The OT cyber security industry is maturing and better serving the needs of our critical infrastructure, manufacturing, and defense organizations by working collaboratively to deliver better solutions,” said Jules Farrow-Lesnianski, Co-Founder & CEO of Awen Collective.

Cybersecurity

Cybersecurity Risk Manufacturing Analytics

ENISA 2023 Threat Landscape Report: Key Findings and Recommendations

Thales Cloud Protection & Licensing

DECEMBER 4, 2023

The report also highlights that ransomware attacks are becoming more targeted, with attackers focusing on high-value targets with particular emphasis on the Industrial and Manufacturing sectors. Create, maintain, and exercise an incident response plan that is regularly tested.

Manufacturing

Manufacturing Cybersecurity Phishing Encryption

Artificial Intelligence: 6 Step Solution Decomposition Process

Bill Schmarzo - Dell EMC

MARCH 5, 2018

We will use this “increase customer retention/reduce customer attrition” business initiative for the rest of this exercise. sales, finance, marketing, logistics, manufacturing) as well as external constituents like partners, suppliers, and don’t forget, the customers! The results of this exercise might look like Figure 7.

Artificial Intelligence

Artificial Intelligence Analytics Big data Mining

Username (and password) free login with security keys

Imperial Violet

AUGUST 9, 2019

Of course, there are other manufacturers who make security keys and, if it advertises “CTAP2” support, there's a good chance that it'll work too. In practical terms, web sites exercise this capability via WebAuthn , the same API that handles the traditional security key flow. But those Yubikeys certainly do.

Passwords

Passwords Security Encryption Authentication

How to Prepare for the Metaverse

AIIM

MARCH 29, 2022

As metaverse technology stacks expand and become more available, cheaper, and connected, the conception of use cases across all sectors becomes a contagious exercise. The impact of the metaverse on our businesses and lives will likely be greater than that of the internet. Of course, not every use case will materialize immediately.

Blockchain

Blockchain Manufacturing Retail Privacy

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

The Last Watchdog

NOVEMBER 28, 2018

State-of-the-art telepresence gear, supplied by Merit Network , funnels everything from capture-the-flag exercises to full course work and certification testing to earn 42 different professional designations. Ford and for its giant furniture manufacturing companies. Merit Network, by the way, is quite unique.

Cybersecurity

Cybersecurity Systems administration Military Manufacturing

Big California Privacy News: Legislative and Enforcement Updates

Data Matters

SEPTEMBER 6, 2022

Targets of OAG investigations included several entities in the healthcare space (HIPAA exemption), a financial services firm (GLBA exemption) and a medical device manufacturer (B2B exemption). The examples provided show the OAG has been investigating businesses whose data we would expect to be largely exempt from CCPA.

Privacy

Privacy B2B Sales Compliance

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

4) non-discrimination for exercising the above rights (including denial of goods or services, charging different prices for goods and services, providing (or suggesting) a different level or quality of goods or services or considering the exercise of consumer rights as a basis for suspicion of criminal wrongdoing or unlawful conduct).

Privacy

Privacy Insurance Security Data breaches

Examples of sustainability in business

IBM Big Data Hub

DECEMBER 15, 2023

Some examples of supply chain sustainability include recycling programs for packaging, exercising fair labor practices and responsibly sourcing materials from the local community. The company even reduces waste through recycling returns and other sustainable materials during the manufacturing phase.

Manufacturing

Manufacturing Education Communications Marketing

What is Employee Monitoring? Full Guide to Getting It Right

eSecurity Planet

OCTOBER 21, 2022

Fitbit and similar technology can be used to track employees’ exercise routines, with some companies even offering rewards like extra days off for good behavior. Healthy employees tend to be sharper and more productive; so the benefits in encouraging healthy activity can be great for a business.

IT

IT Computer and Electronics Access Manufacturing

Simplifying the path to Data Intelligence: A perspective from Roberto Maranca at Schneider Electric

Collibra

JANUARY 27, 2021

Then it is down to steadfast repetition of basic messages with an eye to anchor them into concepts that are familiar: so in a manufacturing environment to talk about “data as a product” really resonates and it reinforces the learning. Yammer), or grabbing internal learning opportunities with webinars and training sessions. .

Digital transformation

Digital transformation Data Privacy GDPR Manufacturing

EUROPE: New privacy rules for connected vehicles in Europe?

DLA Piper Privacy Matters

MAY 5, 2020

This would cause the risk that there are insufficient functionalities or options offered to exercise the control necessary for affected individuals to avail themselves of their data protection and privacy rights. car manufacturers, services providers) which provide the means for processing personal data for such personal or household purpose.

Privacy

Privacy Personal data GDPR Insurance

Europe Leads the Cybersecurity Regulation Dance

Thales Cloud Protection & Licensing

MARCH 1, 2023

In addition to making manufacturers more accountable by requiring them to offer security assistance and software updates to fix discovered flaws, this will give consumers appropriate knowledge about the cybersecurity of the items they use and purchase.

Cybersecurity

Cybersecurity Compliance GDPR Manufacturing

German DSK Issues GDPR Fining Methodology Guidelines

Data Matters

DECEMBER 9, 2019

fine against a furniture manufacturer in Denmark and a kr. The involvement of an entity is triggered when it exercises ‘decisive influence’. For example, a parent company is presumed to exercise decisive control over its wholly owned subsidiary. This includes a fine of €400,000 against a public housing company in France, a €14.5m

GDPR

GDPR Personal data Privacy Manufacturing

German DSK Issues GDPR Fining Methodology Guidelines

Data Matters

DECEMBER 9, 2019

fine against a furniture manufacturer in Denmark and a kr. The involvement of an entity is triggered when it exercises ‘decisive influence’. For example, a parent company is presumed to exercise decisive control over its wholly owned subsidiary. This includes a fine of €400,000 against a public housing company in France, a €14.5m

GDPR

GDPR Personal data Privacy Manufacturing

Certificate pinning is great in stone soup

Adam Shostack

JANUARY 2, 2025

So I'm not going to point to a specific talk I saw recently, in which someone talked about pen testing IoT devices, and stated, repeatedly, that the devices, and device manufacturers, should implement certificate pinning. The interplay of mitigations and bypasses that gets you there is a fine exercise if you've never worked through it.)

IoT

IoT Manufacturing Sales Communications

Process Excellence: A transformational lever to extreme automation

IBM Big Data Hub

APRIL 20, 2023

A Process Mining exercise drawing data from enterprise SAP has helped measure KPI performance and define the transformation roadmap.

Mining

Mining Financial Services Digital transformation Retail

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

The Data Strategy proposed the establishment of nine common European data spaces for data sharing and pooling, including health, mobility, manufacturing, financial services, energy, and agriculture. The EC’s Data Strategy sets out a vision of common European data spaces, a Single Market for data.

Government

Government Personal data Marketing Artificial Intelligence

France: the CNIL has released its annual dawn raid Program for 2023: four national priorities and one priority coming from the EDPB!

DLA Piper Privacy Matters

MARCH 20, 2023

Tracking of users by mobile applications Phone manufacturers enable applications publishers to track users for advertising, statistical or technical purposes (e.g., The CNIL will verify the conditions of appointment and modalities of exercise of the DPO function. Apple IDFA, IDFV and Google AAID).

Computer and Electronics

Computer and Electronics IT File names Access

Vulnerabilities Equities Process and Threat Modeling

Adam Shostack

JANUARY 2, 2025

The Vulnerabilities Equities Process (VEP) is how the US Government decides if they'll disclose a vulnerability to the manufacturer for fixing. These are the "major factors" that senior government officials are supposed to consider in exercising their judgement. The second question relates to there being four equities to be considered.

Government

Government Manufacturing Security Cybersecurity

Getting ready for artificial general intelligence with examples

IBM Big Data Hub

APRIL 18, 2024

It might create interactive simulations, personalized exercises and even gamified learning experiences to keep students engaged and motivated. The student practices with personalized exercises that cater to their specific knowledge gaps and the AGI provides feedback and encouragement throughout the process. Mastering a topic?

Artificial Intelligence

Artificial Intelligence Marketing e-Delivery Manufacturing

Be a part of OpenText World Europe 2024 in Munich

OpenText Information Management

APRIL 1, 2024

Mark will be joined by OpenText customer Carsten Trapp, CIO of manufacturer Carl Zeiss, who will discuss his company’s partnership with OpenText to support their SAP S/4HANA transformation and compliance initiatives. Wondering what’s new in our products?

IoT

IoT Digital transformation Cloud Manufacturing

Weekly Vulnerability Recap – November 6, 2023 – Windows Drivers and Exchange Flaws

eSecurity Planet

NOVEMBER 6, 2023

EoP exploit for AMD driver (PDFWKRNL.sys) on HVCI-enabled Windows 11 The fix: To address this issue, thorough action is required: Driver Patching: Developers and manufacturers of affected drivers must deliver patches and upgrades as soon as possible to address the reported vulnerabilities.

Ransomware

Ransomware Authentication Cybersecurity Access

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Enforcement Uber fined €10 million for GDPR breaches The Dutch data protection authority, Autoriteit Persoonsgegevens, has fined Uber €10 million for failing to be transparent about its data retention practices and making it difficult for drivers to exercise their data privacy rights.

Data Privacy

Data Privacy Privacy Insurance Security

Election Results: Key Developments for Federal Privacy and Data Security Legislation

Hunton Privacy

NOVEMBER 12, 2012

Representative Mary Bono Mack (R-CA) has chaired the Energy & Commerce Committee’s Subcommittee on Commerce, Manufacturing and Trade for the past two years and has been a strong proponent of data security and breach notice legislation. However, Representative Bono Mack lost her re-election bid. Representative John Conyers, Jr. (D-MI)

Privacy

Privacy Security Financial Services Manufacturing

Time and tide waits for no man – IoT in Insurance

CGI

MAY 27, 2016

Behavioural based health and wellness - For life insurance, the level of exercise completed could influence the premiums offered. Context aware - as above, but the context could be whether a building is secure and being occupied.

Insurance

Insurance IoT Marketing Manufacturing

AI and the Evolution of Social Media

Schneier on Security

MARCH 19, 2024

While many of us have gotten pretty good at scrolling past the ads in Amazon and Google results pages, it will be much harder to determine whether an AI chatbot is mentioning a product because it’s a good answer to your question or because the AI developer got a kickback from the manufacturer. #2:

Artificial Intelligence

Artificial Intelligence Marketing Risk Government

Treating cybersecurity like workplace safety

CGI

APRIL 19, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Conduct unannounced phishing exercises to test how susceptible your organization is to an attack (and train your employees to spot fake email messages!).

Cybersecurity

Cybersecurity Digital transformation Manufacturing Government

Treating cybersecurity like workplace safety

CGI

JULY 5, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Conduct unannounced phishing exercises to test how susceptible your organization is to an attack (and train your employees to spot fake email messages!).

Cybersecurity

Cybersecurity Digital transformation Manufacturing Government

Revolutionizing the consumer goods industry with integrated business planning

IBM Big Data Hub

APRIL 14, 2023

For Al Rabie —a prominent juice manufacturing company in the Middle East—their reality was no different. The system calculated the base budget data based on trend as a starting point for the budgeting exercise, with multiple versions provided for better control and movements.

Analytics

Analytics Sales Marketing Manufacturing

Wings for This Man: Celebrating the Tuskegee Airmen

Unwritten Record

FEBRUARY 6, 2024

The country needed to quickly increase the number of soldiers in the military while also increasing the production of wartime goods and manufacturing. Other parts of their training are also depicted, such as flight simulation and exercise.

Military

Military Government Manufacturing Education

Private cloud use cases: 6 ways private cloud brings value to enterprise business

IBM Big Data Hub

MARCH 28, 2024

Enterprise organizations in industries that need to meet strict regulatory compliance standards or comply with data sovereignty laws (manufacturing, energy, oil and gas) frequently choose private cloud environments when they need to meet strict regulatory standards. All the major public cloud providers (e.g.,

Cloud

Cloud Energy and Utilities Compliance Privacy

Treating cybersecurity like workplace safety

CGI

MAY 15, 2018

When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Conduct unannounced phishing exercises to test how susceptible your organization is to an attack (and train your employees to spot fake email messages!).

Cybersecurity

Cybersecurity Digital transformation Government Manufacturing

Medical Device Cyberthreat Modeling: Top Considerations

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Webinars

Trending Sources

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Webinars

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

3 approaches for proactive responses to supply chain impacts in manufacturing

Security Affairs newsletter Round 421 by Pierluigi Paganini – International edition

Healthcare Info Security: Podcast Episode with Marianne Kolbasuk McGee

Vladimir Putin ‘s computers still run Windows XP, Media reports

Vulnerabilities in Weapons Systems

Weekly podcast: TSB, hotel locks and NATO exercise

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

News Alert: Budget pressures drive prioritizing of OT cybersecurity projects, says Radiflow

ENISA 2023 Threat Landscape Report: Key Findings and Recommendations

Artificial Intelligence: 6 Step Solution Decomposition Process

Username (and password) free login with security keys

How to Prepare for the Metaverse

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

Big California Privacy News: Legislative and Enforcement Updates

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Examples of sustainability in business

What is Employee Monitoring? Full Guide to Getting It Right

Simplifying the path to Data Intelligence: A perspective from Roberto Maranca at Schneider Electric

EUROPE: New privacy rules for connected vehicles in Europe?

Europe Leads the Cybersecurity Regulation Dance

German DSK Issues GDPR Fining Methodology Guidelines

German DSK Issues GDPR Fining Methodology Guidelines

Certificate pinning is great in stone soup

Process Excellence: A transformational lever to extreme automation

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

France: the CNIL has released its annual dawn raid Program for 2023: four national priorities and one priority coming from the EDPB!

Vulnerabilities Equities Process and Threat Modeling

Getting ready for artificial general intelligence with examples

Be a part of OpenText World Europe 2024 in Munich

Weekly Vulnerability Recap – November 6, 2023 – Windows Drivers and Exchange Flaws

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

Election Results: Key Developments for Federal Privacy and Data Security Legislation

Time and tide waits for no man – IoT in Insurance

AI and the Evolution of Social Media

Treating cybersecurity like workplace safety

Treating cybersecurity like workplace safety

Revolutionizing the consumer goods industry with integrated business planning

Wings for This Man: Celebrating the Tuskegee Airmen

Private cloud use cases: 6 ways private cloud brings value to enterprise business

Treating cybersecurity like workplace safety

Stay Connected