It’s October! And that can mean only one thing. It’s time to kick off the annual Cybersecurity Awareness Month, hosted by the National Cyber Security Alliance (NCSA) and the Cybersecurity & Infrastructure Security Agency (CISA). With remote work the new normal for most and ransomware attacks at peak fever pitch, there’s no time like now to learn about cybersecurity, or for those in the know, for a refresher on some of the common pitfalls to avoid in order to keep your data safe. In celebration of this month of best practices discovery, (ISC)² created a one-stop-shop to find helpful cybersecurity knowledge and tips. Throughout October we’ll be adding more links to new blog posts and research as they become available, so check

The U.S. House of Representatives was scheduled to vote on the $1.2 trillion bipartisan infrastructure bill (H.R. 3684) on September 30, but the vote has been delayed for an undetermined length of time. With roughly $1.9 billion allocated to bolstering critical infrastructure security, helping vulnerable organizations defend themselves, and providing funding for a crucial federal cyber office, key budget items hang in the balance, threatening critical infrastructure security among other priorities. (ISC)² conducted an online poll of 226 cybersecurity practitioners—nearly half of which work for an organization responsible for securing critical infrastructure data—to gauge their reaction to the infrastructure bill, how they believe spending should be prioritized and whether they believe state and local authorities have the expertise to make

A new study from HP Wolf Security reveals that cybersecurity teams are meeting a lot of resistance as organizations adjust to a hybrid work model. The hybrid model blends work-from-home (WFH) with in-office policies, requiring cybersecurity teams to implement security measures for both. But their efforts aren’t always appreciated. Resistance to security measures is especially strong in the 18-24 age group, which appears to prioritize efficiency over security. Nearly half (48%) of respondents in the study, titled Rejections & Rebellions, said security policies are a hindrance and waste time. More than half (54%) are more worried about deadlines than potential exposure to security breaches, and 39% weren’t even sure what their companies’ security policies cover. The survey also found that