Leading the latest edition of the ISMG Security Report: Reports on the impact enforcement of the EU's General Data Protection Regulation, which began Friday, will have on the healthcare and banking sectors. Plus an assessment of GDPR compliance issues in Australia, which offer lessons to others worldwide.
With Alabama and South Dakota recently becoming the last two states to adopt breach notification laws, notification processes become more complicated, says privacy attorney Adam Greene, who offers an in-depth analysis.
Information security truisms: 2017 was the year of more cybersecurity - more attacks, more spending, more defenses, more breaches - and 2018 will see more of everything "cyber," plus GDPR enforcement, proxy wars online and more.
The future of security is not all gloom and doom. We've learned important lessons over the past decade that can become your prescriptions for action.
Download this report to learn about these focus areas that will let you sleep at night:
Apps are the number one target, so shift your focus to the targets, and...
Money laundering: a crime as old as currency itself. It represents between two and five percent of global Gross Domestic Product (GDP)*. Cyber crime and money laundering are growing and evolving at a faster rate than many organizations can keep pace with, especially while staying within regulatory requirements. The...
With just a few months left until the EU's General Data Protection Regulation will be enforced, too many so-called "experts" are spreading fear and falsehoods about the regulation, says Brian Honan, a Dublin-based cybersecurity consultant, who clarifies misperceptions in an in-depth interview.
We are in the age of mass data compromise. The growing, never-ending cycle of breach, fraud loss and the decline of customer experience characterizes life in today's globally connected digital world. Unfortunately, with crime rings amplifying their efforts and continuing to evolve these threats aren't going anywhere....
The New York state Department of Financial Services' cybersecurity regulation - 23 NYCRR Part 500 - has been in effect for nearly a year now, and covered entities face some significant compliance milestones in 2018. This regulation puts new demands on financial institutions for security leadership, breach...
There is a lot of frightening rhetoric coming out of the IT-security industry regarding the GDPR data protection reform adopted by the European Parliament and going into effect on May 25th, 2018. These issues of data privacy and security seem especially thorny in today's virtualized and cloud environments where...
The New York state Department of Financial Services' cybersecurity regulation - 23 NYCRR Part 500 - has been in effect for nearly a year now, and covered entities face some significant compliance milestones in 2018. This regulation puts new demands on financial institutions for security leadership, breach...
Finding an effective breach prevention provider is critical in order to safeguard an organization's assets. NSS Labs subjected nine cybersecurity market leaders to comprehensive, rigorous testing to determine how well each product handled current advanced threats and attack methods. All vendor products were evaluated...
This US aerospace research and development organization tackles one of the most ambitious engineering projects in the world - the design and creation of space exploration vehicles capable of transporting people into orbit.Their biggest security challenge was remaining vigilant and adapting to new threats while being...
As one of the top 20 largest providers of information technology services to the financial services industry, the company in this case study spends a considerable amount of time and resources ensuring that both its data and its customers' data is secure.
Due to the tremendous amount of time involved in detecting...
As cyber-crime evolves, attacks are complex and creative, and often tailored to the targeted industries and organizations. Therefore, to respond appropriately, one must engage in advanced threat hunting that takes the human factor in consideration.
Today, most of the cyber security community focuses on technical...
Uber's tardy data breach notification - one year after the incident occurred - has trigged fresh questions about how quickly companies should come clean after they suffer a cybersecurity incident.
