Framework Archives

5 Good Cybersecurity Lessons Learned From FTC Law Enforcement Actions

Cybercrime, Cybersecurity Articles, Regulations & Laws, Standards & Guidelines / Frank Crast / April 5, 2020 / CVE-2017-5638, Cybercrime, Cybersecurity, Framework, FTC, law

Several years ago, the Federal Trade Commission (FTC) released a good video that is still highly relevent today. The video explains how companies can leverage NIST’s Cybersecurity Framework to greatly improve security in their organization. In this article, we highlight the five key tenants from the framework and how they could have possibly prevented FTC action and penalties.

5 Good Cybersecurity Lessons Learned From FTC Law Enforcement Actions Read More »

Skype, Slack and other apps vulnerable to Electron framework bug

Leave a Comment / Application Security, Vulnerabilities & Exploits / Frank Crast / January 25, 2018 / Electron, Framework, Shopify, Signal, Skype, Surf

Hundreds of popular software applications that are developed using the Electron framework may be vulnerable to remote execution flaws.

Skype, Slack and other apps vulnerable to Electron framework bug Read More »

DOJ Framework for vulnerability disclosure

Leave a Comment / Standards & Guidelines, Vulnerabilities & Exploits / Frank Crast / August 2, 2017 / Cybersecurity, DOJ, Framework, Vulnerabilities

The Department of Justice (DOJ) Criminal Division Cybersecurity Unit has developed a framework to assist organizations interested in creating a formal vulnerability disclosure program.

DOJ Framework for vulnerability disclosure Read More »

How to Establish a Framework, Platform Security and Data Protections for IoT

Cybersecurity Articles, Internet of Things (IoT), Standards & Guidelines / Frank Crast / November 8, 2016 / Cloud, CSA, Data Protection, Framework, IOT

In this article, we highlight some key points from a recent Cloud Security Alliance (CSA) IoT Working Group report, “Future-proofing the Connected World: 13 Steps to Developing Secure IoT Products,” to include guidance on how to establish a framework, platform and privacy protections to enhance security of IoT products.

How to Establish a Framework, Platform Security and Data Protections for IoT Read More »