The U.S. government wants product manufacturers to treat the security of customers as a core business requirement, but there are still challenges that need to be tackled.
Jen Easterly, director of CISA, said at Black Hat this week that the U.S. can learn important lessons on cyber resilience from how Ukraine has positioned its cyber defenses over the last decade.
Bug bounty programs can be invaluable, but without the proper resources in place, they will fail hard.
“There’s a lack of imagination or… anticipation about the next move that hackers will make," warned investigative journalist Kim Zetter during Black Hat this week.
Former CISA director Chris Krebs said at Black Hat that the community may have focused too much on APT groups in recent years.