The Tanium 10 | 22 Arrested Under China’s New Cybersecurity Law

Susan Nunziata Posted on 06.09.17 — by Susan Nunziata

Welcome to The Tanium 10, our weekly roundup of the news that matters most to security and IT professionals. Each week, we spotlight the 10 stories, trend reports, and research that caught our eye—all to help you keep up with what’s happening in our fast-paced industry. We value your feedback. Once you’ve read this week’s insights, please email me here and tell me what you think. 

The Tanium 10

The Tanium 10 for the week ending June 9, 2017

  1. OneLogin, a vendor of Identity and Access Management (IAM) and Single Sign On (SSO) software, revealed it was breached last week, potentially compromising customer data from the likes of ARM, The Carlyle Group, and Conde Nast.
  2. Why do CEOs underinvest in cybersecurity? Behavioral science has an answer—and a solution.
  3. A federal appeals court denied the appeal of Ross Ulbricht, aka the Dread Pirate Roberts, who was convicted and handed a life sentence for running the Silk Road – a dark web drug market. Ironically, Ulbricht’s harsh sentence appears to be encouraging more illicit narco-trafficking on the internet, not less.
  4. Ransomware has gotten all the headlines recently, but financial attacks are 2.5 times more common. Watch your piggybank closely.
  5. Remember China’s new cybersecurity law we told you about last week? It faces its first test after the arrest of 22 people in connection with stolen Apple customer information.
  6. Europe’s cyber workforce is projected to grow faster than any other region in the world, with a projected shortfall of 350,000 security pros by 2022. It’s great news for those of you based in Europe looking for a raise—or anyone stateside craving a change of scenery. Meanwhile, 65% of all organizations now employ a CISO.
  7. White hat hackers successfully ported the NSA’s powerful EternalBlue exploit to Windows 10, meaning unpatched versions of Microsoft’s operating systems going back to XP may be vulnerable. The best defense: apply the MS17-010 patch provided in March. Unfortunately, emergency patching is one of the hardest things for companies to do well.
  8. Large U.S. tech companies offer loads of perks—but not on-site child care. Why is that?
  9. Slack and other chat applications are great for communication (and gif-sharing). But hackers may be able to use them as command-and-control centers to spread malware.
  10. Can you go six-for-six in this mobile security quiz? We did.

And another thing…

Go inside literally the quietest room on Earth. You might not like what you hear.

Like what you see? Click here and sign up to receive The Tanium 10 in your inbox every Friday.

Editor’s Note: This post was updated on June 13.