An Aon report states that annual losses from cyberattacks are poised to reach $6 trillion worldwide by 2021. "Understanding the worst-case scenarios and their impact to a business is crucial to developing an effective resilience strategy in which cyber is managed as an enterprise-wide risk," Aon's Onno Janssen said.
Microsoft released 80 patches for security flaws this week across 15 products and services, including two elevation-of-privilege vulnerabilities that had already been exploited. Adobe and SAP also released patches.
Two educators will be honored with the Presidential Cybersecurity Education Award in May during Teacher Appreciation Week. The Department of Education is accepting nominations until Jan. 31 for an elementary and a secondary teacher who "best instill skills, knowledge, and passion with respect to cybersecurity and cybersecurity-related subjects."
The Healthcare and Public Health Sector Coordinating Council recently issued guidance for sharing information on cyberthreats, risks and responses in the health care sector. The guidance is meant to help health care organizations understand the importance of cybersecurity information sharing, provide resources to start participating in threat sharing and help organizations establish an appropriate information management structure.
The Energy Department is working with the Idaho National Laboratory and other research facilities to identify cybersecurity concerns facing the wind industry and solutions for defending assets against attacks. The resulting road map "will outline the challenges and opportunities for the nation's growing wind power industry, especially with the rising use of digital technologies on the grid," the National Renewable Energy Laboratory wrote in a news release.
Municipalities converting to smart city systems will need to stay a step ahead of hackers, security experts say, pointing to the large number of connections that can be exploited particularly when they install devices that leverage the internet of things. These experts issued several recommendations for shoring up systems, including curbing the use of passwords and switching to open-source security standards.