Who We Are
- - The Global Cyber Alliance has a singular purpose: to reduce cyber risk. Learn about our goals, our impact, and meet the minds behind our mission.
Programs & Initiatives
- - At GCA, our core programs – Internet Integrity and Capacity & Resilience – aim to tackle key challenges of interent infrastructure, privacy, and safety.
- - Internet Integrity Program
    - Domain Trust
    - AIDE
  - Cyber Civil Defense
- - Capacity & Resilience Program
    - GCA Toolkits
    - Actionable Cybersecurity Tools
Tools
- - We create free, useful tools that make a real impact on improving security for organizations and individuals. Explore our tools here.
Get Involved
- - There are many ways that you can become part of our global effort. Whether it’s using one of our tools to help improve your own cybersecurity, partnering with us on cutting edge projects, or investing resources, your involvement is what makes our success possible!
- - Use a Tool
  - Become a Partner
- - Community Forum
  - Donate
News & Events
- - Explore the latest news from across the GCA community, find upcoming webinars and local events, and dive deeper into resource content.
- - News
  - Events
- - Blog
  - Reports & Publications

Who We Are
- - The Global Cyber Alliance has a singular purpose: to reduce cyber risk. Learn about our goals, our impact, and meet the minds behind our mission.
Programs & Initiatives
- - At GCA, our core programs – Internet Integrity and Capacity & Resilience – aim to tackle key challenges of interent infrastructure, privacy, and safety.
- - Internet Integrity Program
    - Domain Trust
    - AIDE
  - Cyber Civil Defense
- - Capacity & Resilience Program
    - GCA Toolkits
    - Actionable Cybersecurity Tools
Tools
- - We create free, useful tools that make a real impact on improving security for organizations and individuals. Explore our tools here.
Get Involved
- - There are many ways that you can become part of our global effort. Whether it’s using one of our tools to help improve your own cybersecurity, partnering with us on cutting edge projects, or investing resources, your involvement is what makes our success possible!
- - Use a Tool
  - Become a Partner
- - Community Forum
  - Donate
News & Events
- - Explore the latest news from across the GCA community, find upcoming webinars and local events, and dive deeper into resource content.
- - News
  - Events
- - Blog
  - Reports & Publications

In The News

GCA's IoT Work Makes It to the 2021 Microsoft Digital Defense Report

By GCA

October 8, 2021

Yesterday, the Microsoft Digital Defense Report 2021 was published in the Microsoft on the Issues blog.

The report is a complete and up-to-date piece of research on a selection of key cybersecurity issues that encompasses learnings from security experts, practitioners, and defenders at Microsoft to empower people everywhere to defend against cyberthreats.

The report has six chapters that will offer readers a deep understanding of the current cyber threat landscape:

The state of cybercrime
Nation state threats
Supply chain, IoT, and OT security
Hybrid workforce security
Disinformation
Actionable insights

GCA’s IoT Policy and Attack Report, published last Monday, is featured on the ‘IoT security policy considerations’ section of the ‘Supply chain, IoT, and OT security’ chapter. Microsoft’s conclusions on GCA’s work were perfectly clear:

GCA’s analysis of real attack data shows that default passwords factory-set by device manufacturers and never changed by users, along with weak passwords set by users, together represent the most exploited security vulnerability for IoT devices. Policy and regulatory frameworks can help drive adoption and harmonize implementation of the requirements in IoT device security standards such as NISTIR 8259, ETSI EN 303 645, and ISO/IEC 27402 to promote secured access control best practices and address this risk.

You can access the complete Microsoft Digital Defense Report 2021 by clicking the link below:

https://www.microsoft.com/en-us/security/business/microsoft-digital-defense-report?rtc=1

AIDE cybersecurity GCA Partner IoT

Back to News Next Post