Most School Districts Lack Even a Single Dedicated Cyber Security Employee and Colleges Are Losing Theirs to Outside Recruitment: Report 

by

“Limited funds leaves (sic) K-12 districts struggling to make some cybersecurity investments or pay competitive cybersecurity salaries, (Amy) McLaughlin said. CoSN’s (K-12 professional association) most recent survey found a quarter of district respondents had a dedicated cybersecurity employee. Others might add cybersecurity to a staff members’ other duties or get part-time help from a virtual … Read more

Hacker Group Cites Target’s Cyber Insurance Limits in Ransom Demand 

by

“The Hive group claims to have breached the system and then obtained details of its cyber insurance policy to use in negotiations. ‘We are very well informed and precise in our operations, so we know that Wootton have cyber insurance that reaches £500k,’ the group wrote in the message to students and parents.” Source: Ransomware … Read more

New Report Shows Growth of Cyber Claims: Allianz 

by

“While not appearing in the top 10 causes of loss, the number of cyber claims has significantly increased over the past few years, driven by the rise of threats such as ransomware attacks, but also reflecting the growth of cyber insurance. AGCS (Allianz Global Corporate & Specialty) has been involved in more than 1,000 cyber … Read more

Feds Have Failed to Take Basic Step in Analyzing USG Role in Catastrophic Cyber Events: GAO 

by

“Federal entities—such as the Federal Insurance Office (within Treasury) and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA)—have taken steps to understand the financial implications of growing cybersecurity risks. But, we found they haven’t assessed what the federal role should be in the event of a catastrophic cyber incident. Completing such an … Read more

Risk Matrices Don’t Work, Says Report from the Government Finance Officers Association

by

“Another reason that risk matrices can be counterproductive is they act as an ‘analysis placebo,’ where decision-makers think they understand the risk because they have subjectively characterized the risk as ‘high,’ ‘low,’ etc. But, because the risk matrix is not based on hard data about the chance of loss and the potential magnitude of loss, … Read more

×