Curated cybersecurity news
summary for facility management professional, building owners and IT professionals who are interested in building security and Facility IT.
What is new in August, 2023 in Cybersecurity?
NIST Drafts Major Update to Its Widely Used Cybersecurity Framework
The world’s leading cybersecurity guidance is getting its first complete makeover since its release nearly a decade ago.
After considering more than a year’s worth of community feedback, the National Institute of Standards and Technology (NIST) has released a draft version of the Cybersecurity Framework (CSF) 2.0, a new version of a tool it first released in 2014 to help organizations understand, reduce and communicate about cybersecurity risk. Learn More
The Interoperable Security Management webinar #1, part of the BACnet International Cybersecurity program.
Here is the recording of The Interoperable Security Management webinar #1, part of the BACnet International Cybersecurity program. It gives viewers the opportunity to learn from vendors and end customers about the challenges and needs they see in building security management. This program will help provide the knowledge and tools to meet those needs. Learn More
GSA seeks help to ‘get across the finish line’ modernizing cybersecurity, adopting zero trust
GSA recently issued a solicitation for cybersecurity support services that is meant to help the agency take the final steps in modernizing the way it delivers cyber services internally. Read More
Honeywell’s acquisition of cybersecurity provider sets sights on manufacturing sector’s deep IoT vulnerabilities
Honeywell’s SCADAfence acquisition provides the manufacturing giant “with additional technology and expertise that help accelerate our innovation roadmap … and support rapidly evolving customer requirements,” Michael Ruiz, GM of Honeywell Cybersecurity Services, said in a recent interview with VentureBeat. Read more
4 Popular Cybersecurity Myths vs. Facts
Any cybersecurity approach is only as strong as its underlying assumptions. What happens when those assumptions are wrong? Find out where confusion about cybersecurity facts can lead organizations astray. Read more
MOVEit attack victim count surpasses 1,000 organizations
Months after the campaign was discovered, victims are still coming forward and, in most cases, breaches at third-party vendors are to blame.
The blast radius from the mass exploit of a zero-day vulnerability in the MOVEit file transfer service reached another milestone in its destructive spread: more than 1,000 organizations are impacted, according to Emsisoft and KonBriefing Research.
The number of organizations hit by the wide-scale attack increased nearly 40% last week, underscoring the scope of impact and challenge organizations are encountering as they work to determine potential exposure. Read More
