I say this as a CEO: From now on, when children’s health data is compromised because multi factor authentication was not enforced, fire the CEO, not the CISO. I mean, sure, fire the CISO as well, but the CEO bears the responsibility. An update on the PowerSchool breach from the ever-incise @Dan Goodin

Ars Technica

Data breach hitting PowerSchool looks very, very bad

Schools are now notifying families their data has been stolen.

I know some truly wonderful infosec journalists but here's a thing I need help with: currently, there are essentially *no* news stories out there about MSPs, small business cybersecurity - anything really meaningful beyond "here's a puff piece on a commercial white paper that did sentiment analysis on 70 small biz owners and they're all scared of furrin hackerz" or PR releases on "Google just bought an MSP in Indonesia". Is there a cyber journalist with a beat that doesn't focus on the big gov and F500 stories?

New Year’s resolution: when I’d like a table in a restaurant, I am alone, and I’m asked by the host “is a seat at the bar ok?” I will practice saying “No” as a complete sentence without apology.

Clicking on a phishing email is not an “advanced cyberattack.”

Cyber startup employee hacked to distribute malicious Chrome extension

Cybersecurity startup Cyberhaven, which specializes in insider threats, said it is investigating a hack of a single administrative account that spr...

It absolutely does not matter what movie, miniseries, Tv show, or play: whatever scene-chewing dame extraordinaire is playing Catherine of Aragon, she is going to steal the whole ass show from whoever is playing Henry VIII. Tell me I’m wrong. What’s more; this fact is not only a comment on the staggering imbalance of the relative maturity and political capability of the actual Queen Catherine at the time, but a meta commentary on the level of effort required to succeed as a woman past 40 in acting compared to her male contemporaries.

I am a pilot and I am begging you: do not shine lasers at things in the air. You can kill us by blinding us at night. You’re not detecting UFOs; you’re blinding women like me driving beater SkyToyotas, animal rescue pilots, and Angel flights bringing rural cancer patients to hospitals.

I'm just preemptively starting every conversation now with "say 'potato'".

This is Donation Week, and I want to see your Signature, Technical, and Showstopper donations as our @Electronic Frontier Foundation Attack Lawyers defend your rights in a battle for the ages. Welcome to the Electronic Frontier Foundation.

Electronic Frontier Foundation

Defend Privacy and Free Speech

Donate to the Electronic Frontier Foundation and help fight for privacy, free expression, and digital creativity! These values empower all of us th...

Oh goodness…schadenfreude? For MEEEE? You shouldn’t have. No, really, you shouldn’t have. You should have been listening to us all along when we told you this would happen. A lot.

NBC News

U.S. officials urge Americans to use encrypted apps amid cyberattack that exposed live phone calls

FBI and CISA officials said it was impossible to predict when the telecommunications companies would be fully safe from interlopers.

oh my god this is a utter #infosec banger and it should be heard by every #SOC this wknd "CISO doesn’t have a clue. No idea what to do. He designed our security plan though he's fallen for every scam Writes backups straight to tape drive His password is 12345"