More than 70% of IT professionals say the need for employees with soft skills such as good communication and analytical thinking has grown over the past two years, according to a survey for Tripwire. Those surveyed also note that other areas, such as HR and marketing, need to be more involved in cybersecurity in the coming years.
When implementing a remote-access system, a standard composition could leave your company open to a greater number of cyberattacks, Jeremy Pollard writes. He recommends allowing entry to employees only in normal working areas, such as engineering stations or workplace devices, and considering limited access to operational technology networks.
Cloudflare CEO Matthew Prince said that the future of cybersecurity will be built into platforms from tech companies such as Google and Amazon, while stand-alone cybersecurity companies will fade away. However, CrowdStrike CEO George Kurtz took a different stance, saying that the evolution of attacks would always require the experience of a specialized cybersecurity company.
The US Department of Education is warning school districts about threats from hackers who say they will release stolen, private data unless they receive payment. Districts in three states have been targeted by this cyberthreat.
A database breach in South Africa potentially exposed personal data of 60 million people, affecting a "significant portion" of the country's residents, reports security researcher Troy Hunt. Exposed data includes names, ID numbers and employment information, and the incident is under investigation by the country's Department of Home Affairs.
Image-bookmarking site We Heart It has confirmed a hacking incident that compromised data associated with more than 8 million accounts. The breach affects accounts created between 2008 and November 2013, which were encrypted with algorithms that "are no longer secure due to advancements in computer hardware," the company said.
Defense Secretary James Mattis has sent a letter requesting that Congress discontinue work on legislation under which the US would notify foreign governments of US efforts to eradicate certain cyberthreats. "The nature of cyberattacks is ever evolving, and we need to maintain our ability to take decisive action against this increasingly dangerous threat," the letter says.