Threat actors could be coming for your organization via third-party vendors—a danger in a cybersecurity landscape where IT teams and budgets are often stretched, necessitating outside help.

RSA Security CEO Rohit Ghai sees backdoor attacks on vendors as a major concern, he told IT Brew, likening it to healthcare workers taking appropriate hygiene precautions.

“The world may not be security first, but the cybersecurity vendors better be. The doctors better be washing their hands,” Ghai said.

By going after the back door, Ghai explained, attackers are breaching the “alarm system” of an organization, somewhere entry is less likely to be detected.

Vend on. But IT teams are not an easy get, at least not compared to the potential infiltration hackers can achieve by attacking vendors, which can service multiple organizations. Plus, attackers can use disruption tactics to undo faith in cybersecurity as a whole.

Read more here.—EH

Do you work in IT or have information about your IT department you want to share? Email [email protected].

Your security teams deal with a lot—from safeguarding systems to defending against cyberattacks.

Finding that sweet spot of resilience—being able to react quickly to incidents and fix problems faster—is the key to maintaining secure and reliable systems. The challenge, of course, is making it happen across sprawling tech stacks.

The world’s largest enterprises rely on Splunk’s Unified Security and Observability platform to keep their mission-critical digital systems secure and reliable.

With the real-time visibility that Splunk provides, security, IT, and engineering teams work together to predict problems and find and fix issues fast—before they turn into outages or major disruptions.

Disruptions don’t stand a chance. Build your digital resilience.

Stick to sports—or at least mostly.

That’s the message for Red Sox players and player development staff when it comes to their digital footprint, the team’s VP of technology operations and information security, Randy George, told IT Brew.

Though the team doesn’t get actively involved in managing how players deal with their own personal digital security, that’s likely to change. As IT Brew recently reported, the franchise’s tech department is lightly staffed, though they do get help from third-party vendors like Centripetal and HYCU.

“This is really more of a staffing resourcing challenge than it is anything else,” George said. “Major League Baseball has cyber training resources that they deploy to every spring training facility at the beginning of the season to educate players on the proper use of social media and other security related things.”

Read more here.—EH

Do you work in IT or have information about your IT department you want to share? Email [email protected].

The General Union of Moroccan Workers (UGTM) is hoping to regulate AI in the North African country, and presented a bill in the Moroccan House of Councillors on April 24.

Power point. On behalf of the parliamentary opposition group, Hanaa Benkhair submitted the bill, which proposes that Morocco establish an AI institution that would oversee the use of the tech. According to Morocco World News, the “National Agency for Artificial Intelligence would be responsible for implementing, monitoring, and updating a national AI strategy in line with global developments in the field.”

In the bill, the group expressed concern over the misuse of AI, including “negative aspects and illegal uses,” Morocco World News reported, such as “launching cyberattacks, creating deepfake videos, or even spreading misinformation and hate speech,” according to MSN, echoing a recurring warning from AI experts around the globe.

Keep reading here.—AF

Do you work in IT or have information about your IT department you want to share? Email [email protected].

Introducing MoneyWise with Sam Parr. Join My First Million host Sam Parr as he interviews high-net-worth guests on his brand-new podcast MoneyWise. In each episode, Sam digs into his guest's personal finances and lifestyle, asking them to get radically transparent about things like burn rates, portfolios, and spending habits. Listen now.