Welcome to MeriTalk News Briefs, where we bring you all the day’s action that didn’t quite make the headlines. No need to shout about ‘em, but we do feel that they merit talk.
NIST Issues Draft Revision to Mobile Application Security Publication
The National Institute of Standards and Technology (NIST) released a draft of its first revision to its “Vetting the Security of Mobile Applications” guidance. “Revision 1 updates this publication to address changes in the mobile landscape,” NIST said. “Guidance has been expanded to better define the app vetting process as a whole, while providing greater detail about the roles, capabilities, and strategies of mobile application testing. Security requirements and references have been added to aid organizations in defining their own app vetting policy.” Interested parties can submit comments to further refine the draft document until September 6.
Survey Charts Software Supply Chain Attacks as Major Threat to Organizations
A survey released today, commissioned by cloud security provider CrowdStrike and produced by research firm Vanson Bourne, found that two-thirds of organizations surveyed had experienced a software supply chain attack in the past year. Of those organizations, 90 percent experienced a financial cost as a result, with the average cost of an attack totaling more than $1.1 million. Seventy-one percent of respondents believe their organization does not hold external suppliers to the same security standards as their own. The survey of 1,300 IT decision-makers and security professionals across various countries also found that 80 percent “believe software supply chain attacks have the potential to become one of the biggest cyber threats over the next three years.”
PricewaterhouseCoopers U.S. Public Sector Is Now Guidehouse
Two months after being acquired by Veritas Capital, PricewaterhouseCoopers U.S. public sector has undergone a rebrand. Now named Guidehouse, the consulting firm also launched a new website and social media presence late last week. Guidehouse will continue PricewaterhouseCoopers’ main business and provide consulting services to Federal agencies in technology, management, and strategy. Scott McIntyre, who formerly served as managing partner for PricewaterhouseCoopers public sector business, is now the CEO of Guidehouse.