A lot of us want journalists and (other) self-proclaimed Cyber Security experts to stop calling DDoS attacks advanced and stop pretending they're (mostly) nothing but a freaking nuisance (Yes some critical services may be impacted at times, but that we need to design around). Continuing describing DDoS attacks as "extreme hacker attacks" is playing into the attackers hands, so please stop, and maybe talk about the breach of NetCompany and, by proxy, large chunks of the Danish state. Also start talking about solutions, including BCP38 (RFC2827) and what it really means - in layman's terms to not just pile on the doomsday scenarios.

Good thoughts from Martin Boller ... Getting hit with DDoS is unfortunate, but requiring that any company with a website should be able to withstand a DDoS attack (otherwise hax0r clickbait headlines), is like requiring that everyone with a car builds their own roads, in case the one they usually drive on gets blocked for some reason. It simply does not make sense - all it does is line the pockets of the companies that offer paid anti-DDoS services. There needs to be adequate ratio between risk and mitigation - just like with everything else we do related to cyber security.

The EU Cyber Resilience Act (CRA)—expected to come into force soon—will impose #cybersecurity requirements on a wide range of connected digital products. The CRA’s extraterritorial reach, coupled with its obligations on a multitude of #supplychain entities makes this piece of legislation one to watch. Learn more: https://bit.ly/4bKbmB1

Our third featured article in the recent special issue of the Chatham House Journal of Cyber Policy is by Mark W. Datysgeld There is a lack of a unified framework using the DNS for the sale of health-related products online. Mark explores the existing mechanisms to curb malicious use of the DNS as well as provide recommendations to improve the situation - read more here: https://lnkd.in/ePyX7EJv #DNS #healthproducts #online

Revealed: New Cyber Governance Code for Directors in the UK. The UK Government has called for Views to be expressed, see below There are five Areas that UK Directors will have to own when the proposed new Code is implemented.                 Full report = https://lnkd.in/dvCbKSUh

Will be interesting to see how this plays out as they’re suggesting that rapid detection and response may have helped minimize the impact to their business - as it should. More to come undoubtedly.

In today's increasingly digital world, protecting your personal information is critical. That’s why Ontario is introducing legislation that, if passed, would provide new tools to beef up cyber security and enhance privacy so people can safely participate in the digital economy. Learn more: https://lnkd.in/gR489--k

On November 30, we are reminded of the importance of National Computer Security Day as cyber security impacts various aspects of our lives, including our financial transactions and political choices. It is crucial to avoid a recurrence of the devastating MyDoom email virus that caused a whopping $38.5 billion in damages. Therefore, let us equip ourselves with knowledge on how to stay secure while using the internet.

In Australia, the National Cyber Security Centre now tells consumers: "passwords are passé — passphrases are longer and stronger" and points their citizens directly to the Electronic Frontier Foundation (EFF) DiceWare "long list," the exact list contained in our modern, updated version of DiceWare — GhentWare™ Links in first comment below 👇 #DiceWare #GhentWare #Passwords #Passphrases #Australia

We always see an increase in cyber attacks before and during the holidays, so a little reminder to make sure your systems are fully protected before you pack up for the holidays! https://lnkd.in/dKVmqv6t #dataprotection #dataprotectioneducation #becyberaware