J2SECOPS WEEKLY NEWS:
This week in the J2 CSC, Most things are grey as gamers, at least according to some, will save cybersecurity
The fast pace of our daily goings on; does not afford us the time to think and read as much as we should. The past couple of weeks have afforded me the slightly higher than normal opportunity to think, and catch up on all outstanding reading, and think and read I did… all while performing the usual monthly cybersecurity threat analysis for our client base…
A few stories have been swimming around my mind and I thought I would take you on the journey.
Let’s get to it then!
Blacklist, Greylists and Whitelists
Blacklists in general terms are items on a list that denies access. The opposite is a whitelist, which means only items on the list are let through whatever gate is being used.
A Greylist contains items that are temporarily blocked (or temporarily allowed) until an additional step is performed.
Looking for a free blacklist of domains? The Anti-Social engineer has a great start.
The Anti-Social Engineer Blacklist | The Anti-Social Engineer
Gamers, the Saviours of Cybersecurity
As an avid enthusiast of the RTS genre I enjoyed the insights that Grant Bourzikas, McAfee's chief information security officer (CISO), swore by and how gamification as one of the key ways to invest in and retain security talent. His own companys adoption of building out its security operations centre in the wake of its spin-off from Intel, and new data from a study by Vanson Bourne on behalf of McAfee found that nearly three-quaters of organizations believe hiring experienced video gamers is a solid option for filling cybersecurity skills and jobs in their organizations.
How gamers could save the Cybersecurity skills gap | Dark Reading
“AI AI, Captain!”
Microsoft in its quest for staying ahead of the curve, is establishing training courses available to the public for anyone wanting to learn how to AI.
Microsoft’s AI training efforts range from internal offerings tailored to employees on specific teams and product groups, such as software engineers at LinkedIn, to external ones designed for a variety of expertise levels.
The Microsoft AI Residency Program and Microsoft NERD Artificial Intelligence Program recruit people to learn AI by working alongside researchers, designers and engineers who are developing AI capabilities and serve as a pipeline of talent into the company.
Aiming to fill skills gap in AI, Microsoft makes training courses available to the public | Microsoft
Ransomware impacting incident response
The report, which is based on the analysis of data from hundreds of millions of protected endpoints and servers across nearly 100 countries, also reveals that there was a 424% increase in breaches related to misconfigured cloud infrastructure, largely due to human error.
Ransomware puts pressure on incident response | Computer Weekly