Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “The 25 Worst Passwords of 2013”, 2) “New NSA Chief”, and 1) “Free CERT/SOC Exercises & Scenarios” If you missed anything or happened to be offline, we hope you find this summary post useful as a quick reference.
A la Schneier … you can also use this rewind post to talk about the security stories in the news that we haven’t covered remote-access.
Free CERT/SOC Exercises & Scenarios: We came across this great resource from the European Network and Information Security Agency (ENISA) for those of you in the CERT or SOC business. Created in 2008 and subsequently updated in 2012 and 2013, ENISA pulled together a great library of free training material with the goal of helping ensure the success for similar organizations. Beyond the standard exercises and scenarios, the current revision includes an instructor handbook, a student toolset, and a virtual image for hands-on training labs. Enjoy! (continued here)
CDM Monitoring Deadline Looms Despite Moving Target: Geez … not only do agencies they have to meet some DHS-based continuous monitoring paper-pushing deadline but they end up having to reshuffle everything given new guidance. This article summarizes that new guidance and discusses how agencies can integrate its recommendations into their existing plans. Anyway, February 28th is fast approaching…(continued here)
New NSA Chief: I didn’t see this announcement discussed too much in the news… Late last month President Obama nominated Vice Admiral Michael Rogers as the new NSA chief. Taking over from General Keith Alexander, he would retain the dual-hatted role of leading both the NSA and US Cyber Command. He seems like nice fit for the position with over 30 years in the cryptology and eavesdropping business however a lot has changed over the past year due to the Snowden leaks. Will he be ready to lead the NSA in this new era of navigating the delicate line between secrecy and public scrutiny? Only time will tell. (continued here)
The 25 Worst Passwords of 2013: We’ve covered SplashData’s top list of worst passwords in the past and here is their 2013 ranking. The big change this year is “password” dropping to number two. Anyway just posting this here as a quick reference the next time you need some passwords to choose from. Do you have any “honorable mentions” for worst password? Let us know in the comments below. (continued here)
Hope everyone had a wonderful week! Have a great weekend!