OODA Network Expert Michael Tanji provides insightful analysis of the most recent and significant cyber news.

This week the Trump Administration released the new National Strategy for Aviation Security (NSAS) that replaces the previous strategy from 2007. While the 2007 document mainly focused on physical threats from terrorists, criminals and hostile countries, the new NSAS acknowledges the proliferation of “disruptive technologies” that have resulted in new

The growing cyber threat to organizations, government agencies and society at large, has made cybersecurity one of the main priorities of the 116th US Congress. During the first weeks of the new congress, 30 pieces of cybersecurity legislation have been introduced in the House of Representatives, while the Senate was introduced to

While recent articles discussing the Global Threat Report by CrowdStrike have mainly paid attention to the report’s ranking of how long state-backed hackers from various countries take to move laterally across the network of a compromised organization (spoiler alert: Russian hackers were fastest), certain less appreciated findings of the research actually have

KnowBe4 has released a new report detailing how organizations are dealing with the rising threat of cybercrime. The research shows that 95% of organizations are worried about the consequences of a potential data breach, while the top security concern of 92% of organizations is negligent users falling victim to a

Researchers with Digital Shadows estimate that cyber extortionists are ready to pay yearly salaries averaging $360,000 per year to aspiring crooks that can assist them in extorting high-value targets such as business executives, lawyers and medical experts. Accomplices with special IT related skills such as coding, network administration and penetration

Two new reports highlight the increasing difficulty of businesses to mitigate threats coming from the people within their own organization. According to research by Endera, 87% of security professionals believe that if their company suffers a security breach caused by an insider, the top suspects will be contractors and freelancers.

NATO has carried out an internal cyber security experiment to test the extent to which its troops could be identified and influenced during an exercise by means of social media data. A report on the experiment mentioned that the researchers “identified a significant amount of people taking part in the exercise and

On Tuesday, US President Trump released the National Strategy to Combat Terrorist Travel and the National Strategy for Aviation Security. While the former document aims to “[modernize] the approach of the United States to countering a complex and evolving terrorist threat,” the latter makes the defense against cyber attacks, drones and other emerging threats

The latest installment of Symantec’s annual Internet Security Threat Report shows that formjacking was the number one cyber threat in 2018, replacing cryptojacking, i.e. the distribution of malware that uses the resourcing powers of infected systems in order to mine cryptocurrency. In a formjacking attack, a threat actor injects malicious JavaScript code into a