Sign up to save your podcasts
Or
Share 43 - GPT-4 Exploits 87% of Vulns, New CISA Requirements, VPNs Under Attack, and NIST Issues Digital Identity Updates
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
43 - GPT-4 Exploits 87% of Vulns, New CISA Requirements, VPNs Under Attack, and NIST Issues Digital Identity Updates
Welcome to Episode 43 of Emagine The Future, our 4th of our "This Month in Cyber" series - April 2024 edition.
March Catchup (Things we missed):
- NIST Unveils New Consortium to Operate its National Vulnerability Database
https://www.infosecurity-magazine.com/news/nist-unveils-new-nvd-consortium/ - A New Roadmap for FedRAMP
https://www.fedramp.gov/2024-03-28-a-new-roadmap-for-fedramp/ - Review of the Summer 2023 Microsoft Exchange Online Intrusion
https://www.cisa.gov/sites/default/files/2024-04/CSRB_Review_of_the_Summer_2023_MEO_Intrusion_Final_508c.pdf.
Incidents & Breaches:
- Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services
https://thehackernews.com/2024/04/cisco-warns-of-global-surge-in-brute.html?&web_view=true. - GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories https://www.darkreading.com/threat-intelligence/gpt-4-can-exploit-most-vulns-just-by-reading-threat-advisories
Regulatory & Government:
- New CISA Cybersecurity Incident Reporting Requirements Proposed for Critical Infrastructure Companies https://www.nextgov.com/cybersecurity/2024/03/cisas-proposed-framework-cyber-incident-reporting-rules-includes-subpoena-power/395275/?oref=ngfcw_alert_nl&utm_source=Sailthru&utm_medium=email&utm_campaign=Nextgov/FCW%20Alert%20-%20March%2027%2C%202024&utm_term=newsletter_ng_alert
- Formal Update: https://www.federalregister.gov/documents/2024/04/04/2024-06526/cyber-incident-reporting-for-critical-infrastructure-act-circia-reporting-requirements
- NIST issues digital identity update allowing agencies to use synced passkeys , https://federalnewsnetwork.com/technology-main/2024/04/nist-issues-digital-identity-update-allowing-agencies-to-use-synced-passkeys/
Events That Occurred & Events < 60 Days Away:
- RSA Conference (May 6-9) - San Francisco
- 45th IEEE Symposium on Security and Privacy (May 20-22, 2024 Security and Privacy Workshops will be held on May 23, 202 San Francisco
- Gartner Security & Risk Management Summit (National Harbor, MD June 3-5)
- GRC Summit 2024 Baltimore, June 17 & 18
Subscribe on YouTube: https://www.youtube.com/@EITisCyber
Connect on LinkedIn:
https://www.linkedin.com/company/emagine-it-inc-/posts/
View all episodes
By Emagine ITWelcome to Episode 43 of Emagine The Future, our 4th of our "This Month in Cyber" series - April 2024 edition.
March Catchup (Things we missed):
- NIST Unveils New Consortium to Operate its National Vulnerability Database
https://www.infosecurity-magazine.com/news/nist-unveils-new-nvd-consortium/ - A New Roadmap for FedRAMP
https://www.fedramp.gov/2024-03-28-a-new-roadmap-for-fedramp/ - Review of the Summer 2023 Microsoft Exchange Online Intrusion
https://www.cisa.gov/sites/default/files/2024-04/CSRB_Review_of_the_Summer_2023_MEO_Intrusion_Final_508c.pdf.
Incidents & Breaches:
- Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services
https://thehackernews.com/2024/04/cisco-warns-of-global-surge-in-brute.html?&web_view=true. - GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories https://www.darkreading.com/threat-intelligence/gpt-4-can-exploit-most-vulns-just-by-reading-threat-advisories
Regulatory & Government:
- New CISA Cybersecurity Incident Reporting Requirements Proposed for Critical Infrastructure Companies https://www.nextgov.com/cybersecurity/2024/03/cisas-proposed-framework-cyber-incident-reporting-rules-includes-subpoena-power/395275/?oref=ngfcw_alert_nl&utm_source=Sailthru&utm_medium=email&utm_campaign=Nextgov/FCW%20Alert%20-%20March%2027%2C%202024&utm_term=newsletter_ng_alert
- Formal Update: https://www.federalregister.gov/documents/2024/04/04/2024-06526/cyber-incident-reporting-for-critical-infrastructure-act-circia-reporting-requirements
- NIST issues digital identity update allowing agencies to use synced passkeys , https://federalnewsnetwork.com/technology-main/2024/04/nist-issues-digital-identity-update-allowing-agencies-to-use-synced-passkeys/
Events That Occurred & Events < 60 Days Away:
- RSA Conference (May 6-9) - San Francisco
- 45th IEEE Symposium on Security and Privacy (May 20-22, 2024 Security and Privacy Workshops will be held on May 23, 202 San Francisco
- Gartner Security & Risk Management Summit (National Harbor, MD June 3-5)
- GRC Summit 2024 Baltimore, June 17 & 18
Subscribe on YouTube: https://www.youtube.com/@EITisCyber
Connect on LinkedIn:
https://www.linkedin.com/company/emagine-it-inc-/posts/