Down The Security Rabbithole

In this episode-- Law firm hit and crippled by ransomware, decides it's not paying the ransom. They aren't quite sure what got encrypted But they have backups... ..and data was likely not exfiltrated http://news.softpedia.com/news/Ransomware-Hits-Law-Firm-Encrypts-Workstation-and-Server-474788.shtml Major law firms for ISAC to fight off adversaries, share intelligence Catching up to the threat they're facing Law firms are major targets, given the data they have ("secrets!") Downside: exclusive to a handful of major firms http://thehill.com/policy/cybersecurity/234722-law-firms-to-share-info-about-cyber-threats Big kerfuffle about Anthem's refusal of a 3rd party audie They were under no legal obligation... Who out there would submit to a 3rd party audit/test? Sounds like publish shaming, big headline, little story http://www.healthcareinfosecurity.com/anthem-refuses-full-security-audit-a-7980 Apple Pay being attacked, sort of When technology becomes 'good enough' attackers attack processes, people L