View this email in your browser

As Halloween creeps closer, some unsettling cybersecurity tales are emerging. 💀

Penn State just settled a hefty $1.25 million 💸 after cybersecurity compliance concerns were raised by a whistleblower, hinting at the high stakes when critical standards slip.

Also, as part of Cybersecurity Awareness Month, the “Secure Our World” 🔒🌎 campaign is encouraging organizations to take cybersecurity beyond basic training and into fun, interactive activities that last year-round.

From mastering strong passwords to spotting phishing scams, this Halloween season proves cybersecurity awareness can be both spooky and smart. 🎃

P.S. Found us through a friend or stumbled upon us on socials? Subscribe here!💥

FEATURED

Ex-CIO Awarded $250K After Filing Cybersecurity Complaint Against Penn State

Penn State University has agreed to pay a $1.25 million settlement after its former Director of IT and CIO, Matthew Decker, raised cybersecurity compliance issues.

Decker, who served at the university’s Applied Research Laboratory from November 2015 to March 2023 and briefly as Interim CIO and Vice Provost for the university in 2016, filed a whistleblower lawsuit under the False Claims Act.

By Emory Odom ● Contributing Writer ● Read More…

CYBER BYTES

Microsoft’s New Deception Tactics: Luring Phishers with Fake Tenants

Microsoft has unveiled a sophisticated new strategy to fight phishing attacks by using deceptive tactics to lure cybercriminals into fake environments.

SEC Fines Four Cybersecurity Firms Over Poor SolarWinds Security Disclosures

In a significant development from the SolarWinds cyberattack fallout, the SEC has fined four major cybersecurity companies for their inadequate and misleading public disclosures.

Hackers Exploit Vulnerability as Fortinet Issues Urgent Security Advisory

Fortinet has publicly disclosed a critical vulnerability in its product management tool FortiManager, following reports of exploitation in the wild.

TRENDING

If Cybersecurity Awareness Month Isn’t Fun, You’re Doing It Wrong

In 2004, the President of the United States and Congress officially established October as Cybersecurity Awareness Month. The purpose is to increase the public dialogue around good cybersecurity and cyber hygiene, both in businesses and at home.

When security awareness is a continuous learning program, it lets Cybersecurity Awareness Month take on a new role – culminating a year’s worth of learning into a fun, diverse set of programs.

By Erik Boemanns, Contributing CISO ● Read More…

RESOURCE HUB

IT LeaderBoard | The Premier Job Site for Technology Leadership Talent

Connecting organizations with the top 5% of technology leaders. As the only national job board for technology leadership positions, we have curated the best, most relevant candidates not found through traditional sourcing methods.

Learn More

A MESSAGE FROM YOUR TNCR CREW

Amplifying the Voice of the CISO

Subscribers make it possible for your TNCR Crew to curate the latest in technology thought-leadership. To support our work and get unlimited access to our award-winning coverage, subscribe today.

Register for Unlimited Access

Copyright ©

Notifications are important to maintain a community that Connects, Collaborates, and Contributes. If you need assistance changing your unsubscribe, please let us know, and we will be happy to assist.