Ed Zaleski’s Post

Discover key insights from Conrad Maiorino, Cyber Mission Engineer at Zscaler, on securing systems like #CJADC2 as part of the United States Department of Defense's #zerotrust initiative. Watch the interview with Francis Rose from Fed Gov Today at Sea-Air-Space 2024 to learn how leveraging industry practices can help the department achieve its goals sooner than 2027: https://ow.ly/jy1830sCv9J #SAS2024

In a recent AI/Cyber Security Think Tank conference I was invited to chair in Copenhagen, when asked, a room full of CIO's and CISO's from some of the biggest companies in the region, who had a full understanding of DNS, only 10% of the paying attendees raised their hand. If we then watch the belwo video by Dr Paul Mockapetris, the Internet Hall of Fame inductee and original author of DNS and listen to his wise words: ''Over 95% of all Cyberattacks, Malware, and Bots rely on DNS.'' That means this group, which in our experience is indicative of the majority of CISO's and CIO's, 90% of them unknowingly are exposed to DNS Tampering, Abuse, and Attacks. Furthermore, CISA issued an Emergency Directive when they published M-19-01 in January 2019 on DNS Tampering and Abuse. This Emergency Directive followed numerous Fedearal Agencies suffereing, you guessed it, DNS Attacks. So there you have it, DNS is used extensively for attacks and DNS servers are exposed and insecure because 90% of C Suite leaders in the Technology and Security fields DO NOT manage or secure this area as they DO NOT know about it... This article is a call to arms. We are happy to educate, we are happy to share, we are happy to assist. However, please, if you are in the 10% group please share your knowledge, it is critical. If you are in the 90% group, please either start to learn or start to listen. Either way, you and the organization will greatly benefit and be far more secure if you do. #WhitethornShield #DNS #PKI Paul Mockapetris #InternetSecurity #CISA FBI Cyber Division Federal Bureau of Investigation (FBI)

How to deploy WPA3 for enhanced wireless security Read more on the link below. #defense #sbir #military #jointwerx #cmmc #cyber #cybersecurity @jointwerx @blackhaysgroup #GovernmentContracts #InfoSec #CyberDefense #NationalSecurity #DigitalTransformation #PublicSector #Startups #TechInnovation

💡The cyber threat ecosystem evolves with malware-as-a-service Now, cybercriminals and nation-states are expanding their attack suites by bringing in larger pools of "talent" and leveraging the efficiencies of SaaS. This will enable them to manipulate data and execute novel physical effects. Military officials sounded the alarm on the increasing use of these tools. #CyberSecurity #Malware #DataManipulation This was my story for #SIGNALMedia https://lnkd.in/g2z8Xg93

The upcoming #INDOPACOM wargame, part of Exercise Keen Edge 2024, marks a pivotal moment in military #cybersecurity. This exercise will test the #zerotrust network security approach, a strategy emphasizing that any network device could be compromised and prioritizing individual user authentication. INDOPACOM's implementation of zero-trust in the Mission Partner Environment is a significant step, enabling secure data sharing among U.S. allies while controlling access to sensitive information. This approach is crucial in today's landscape of sophisticated cyber threats. This exercise will not only test zero-trust's efficacy in real-time scenarios but also encourage its adoption among military partners, ensuring more robust and collaborative defense mechanisms. https://lnkd.in/ge-brCKw #devsecops #DoD #agile #datasecurity

DriveLock is now part of the Bosch CyberCompare provider directory  We are pleased to announce that we have been newly added to the Bosch CyberCompare #provider directory. The independent purchasing partner for #cybersecurity structures the provider selection and thus helps companies to find the right #provider for their own requirements. Learn more about the Bosch CyberCompare provider directory here ⬇ #CyberCompare #cybercrime #cybersecurity #provider #vendor

United States Department of the Air Force will use QuSecure ’s #QuProtect™, the industry’s first #endtoend #PQC software-based solution uniquely designed to #protect #encrypted #communications and #data with #quantum-resilience using quantum #secure channels. The U.S. Government’s #urgency to move toward a quantum #safe future has been established with the recent actions taken by US Congress and the The White House . The Endless Frontiers #Act established a Technology and Innovation Directorate at the National Science Foundation (NSF) to use $100 billion in federal funds over five years to research #emerging #technologies including #quantum #computing, and specifically mentions the need for PQC. Additionally, in December 2022 President Biden signed into law the Quantum Computing Cybersecurity Preparedness Act, which requires the Office of Management and Budget to prioritize #federal #agencies’ #migration to IT systems using #postquantum cryptography. QuSecure’s QuProtect #software enables organizations to leverage #quantum-#resilient technology and is currently available to #test and #deploy, helping to #prevent today’s #cyberattacks, while future-proofing #networks and preparing for quantum #cyberthreats. It provides quantum-resilient #cryptography, anytime, #anywhere and on any device including #network, #cloud, #IoT (Internet of Things), #edgedevices, and #satellite communications. Using QuProtect, organizations can implement PQC on the network without removing #existing encryption so #installation is fast and #risk is #minimal. QuProtect software uses an end-to-end quantum-security-as-a-service architecture that addresses the digital ecosystem’s most #vulnerable aspects, uniquely #combining #zerotrust, next-generation post-quantum-cryptography, crypto #agility, quantum-#strength #keys, high #availability, easy deployment, and #active #defense into a #comprehensive and #interoperable cybersecurity suite. The end-to-end approach is designed to protect the entire #information lifecycle as data is #communicated, #used and #stored.

Join the forefront of digital persona protection at the DP3 Summit. A first-of-its-kind event uniting DoD & Civilian Agency leaders with industry experts to address the critical challenge of securing digital personas. Learn from top experts in the field how to combat deep fakes and disinformation. It's more than security; it's safeguarding our national identity. https://lnkd.in/e4SxcMNb

DAY 2 at #AISS2023 Kickstarted our plenary sessions with 'Cyber Resiliency: of Enterprises & National Economies.' Gracing the panel, Major General Manjeet Singh, Joint Secretary #NSCS, said, "We have a huge dependency on cyberspace, be it the economy or national security. It is moving our lives," and drew our attention to the dependence we have on cyberspace. He further mentioned that the threat landscape today ranges from individual, state, and non-state actors. We are in cyber warfare every day. Everyone has to contribute to the protection. We have an equal responsibility to safeguard cyberspace. #DSCI #PlenarySession

Chinese threat actor engaged in multi-year DNS resolver probing effort Read more on the link below. #defense #sbir #military #jointwerx #cmmc #cyber #cybersecurity @jointwerx @blackhaysgroup #GovernmentContracts #InfoSec #CyberDefense #NationalSecurity #DigitalTransformation #PublicSector #Startups #TechInnovation