REMINDER: 4 DAYS Left to File Your NYS DFS Exemption
Let the Digital Edge Cybersecurity Team keep your business in compliance!
The Digital Edge Cybersecurity Team would like to remind you that exemption filing for the New York State Department of Financial Services’ (DFS) 500 Mandatory Cybersecurity is due on August 28, 2017.
Filing for this limited exemption only needs to be filed one time. In the future, if your organization no longer qualifies for the limited exemption as of your most recent fiscal year you would then have 180 days to comply with all applicable requirements of the regulation.
Let the Digital Edge Cyber Security Team ease the burden of implementing the NYDFS Cybersecurity Regulations that are still required under your exemption. Contact our Sales Team for your free assessment and align yourself with compliance today!
Today’s model and mindset is that it seems that you can assemble anything using services provided by different companies and it will be solid. Those services are like parts of LEGO.
AWS could be like a LEGO. Kids are playing with it. You can make functional things. You can build a house out of LEGO. Is this the best tooling for building a house? Maybe, it is simple. A kids can do it. If you have enough LEGO a kid can build a house. Would it survive many summers and winters, hurricanes, maybe yes, maybe not. Depends how much engineering experience the builder has. A bad engineer may build a bad house out of good old time bricks and a good engineer can make a great house of LEGO. However if you want to build a rocket, you need an “enterprise” class LEGO. You can use one from ToysRs but at least you have to engineer your solution.
Today’s simplicity is a good thing, a bad thing and a scary thing.
On July 31, 2017, the Department of Financial Services (DFS) has launched a new online portal to securely transmit in real time all notifications required under New York’s first-in-the-nation cybersecurity regulation. If you need assistance with registration or with any or all components of this cybersecurity framework, the Digital Edge team is available to meet your compliance needs!
“With DFS’s leading cybersecurity regulation, the DFS cyber portal will allow New York’s financial institutions to quickly, easily, and securely report cybersecurity events and file required certifications of compliance, ensuring that the necessary safeguards are in place to protect New York consumers and financial institutions as the threat of cyber-attacks continues to increase.” - Superintendent Maria Vullo, Department of Financial Services
Filings made through the DFS Web Portal are preferred to alternative filing mechanisms as the DFS Web Portal provides a paperless reporting tool to facilitate compliance with the DFS cybersecurity regulation. Learn more about the New only DFS Cybersecurity Reporting Portal here.
Let the Digital Edge Cyber Security Team ease the burden of implementing the robust NYDFS Cybersecurity Regulation. Contact our Sales Team for your free assessment and align yourself with DFS compliance today
A brief message from the Digital Edge Security Team:
Traffic analytical tools can cause unintentional sensitive information disclosure.
Most of precisely targeted attacks on IT infrastructures are originated from outside of security perimeters of the victimized organizations. However, the security openings allowing cyber attackers to breach security mechanisms overwhelmingly originated either with unintentional help of insiders or disclosure of sensitive information.
There is a great relief for the many companies which still use legacy systems that are no longer supported by the manufacturer, as the case with Windows XP and Windows Server 2003 - Microsoft is including these operating systems in the updates to patch for the existing vulnerabilities exposed in this attack. For those customers who still have legacy systems, this is vital to protect their overall customer ecosystem.
Download English language security updates for:
To download localized versions for the security update for Windows XP, Windows 8 or Windows Server: http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
As per all news agencies and cyber security organizations, multiple countries are under a massive ransomware attack. The ransomware spreads through Europe but specialists are sure that it will eventually spill into US.
The Digital Edge Security Team is assessing the situation and will assist all the clients and any IT organization that require cyber security help.
We feel that the threat is serious as the infection has a “hunting” functionality that is used to infect other computers that the infected computer has access to through vulnerable Windows SMB Protocol. Microsoft Windows vulnerability called EternalBlue is used by NSA tools leaked to WikiLeaks earlier. The attack might be inspired by NSA weaponry or by NSA itself.
Simply put, if a user opens a malicious email or a website on a desktop that was not patched after March 14, 2017, there is a big chance that the user’s computer will be infected and the virus will spread inside of the organization.
More and more, security organizations report cyber security vulnerabilities in devices that are not exactly computers. Those devices may include routers, video cameras, and other “internet of things” gadgets.
It is critically important to know that your home devices with access to the internet are secured. Some of these weaknesses could be related to well-known default user ID and password combinations or whereas, some devices do not even have patching capabilities making people permanently vulnerable.
Digital Edge is monitoring known vulnerabilities in consumer devices and notifying our friends and colleagues about such cases.
Click here to see recent vulnerable devices.
As of May 1, 2017, Digital Edge is proud to announce its official certification of the International Standards Organization (ISO) 27001 framework for Information Security Management, a specification for an information security management system (ISMS). ISO is an independent, non-governmental international organization with a membership of 163 national standard bodies. ISO is credited for publishing more than 2100 international standards, covering almost every industry, from technology, to food safety, to aviation and healthcare. By adopting the ISO 27001 framework, Digital Edge will protect businesses from threats, including internet fraud, hacking, overseeing of transactions and other cyber security threats.
Undergoing the process of getting certified by ISO is vital to Digital Edge because these standards evaluate process effectiveness and better structures company management and growth. Digital Edge’s clients will always be insured with quality services with the core value of “Stability, Security, Efficiency, and Compliance”. Digital Edge received this certification with minor and no major non-conformities, proving once again that our security processes are constant.
Receiving the ISO 27001 certification, proves that Digital Edge’s processes meet the best quality and security standards for our clients. Digital Edge guarantees our clients and partners are receiving outstanding services, demonstrating our serious commitment to these security controls.