Security Experts:

Privacy & Compliance
long dotted

NEWS & INDUSTRY UPDATES

Microsoft has released an updated version of its popular Skype Voice-over-IP (VoIP) application that now hides users’ IP addresses by default. [Read More]
The Tor Project has raised over $200,000 in its first crowdfunding campaign and that it has received contributions from over 5,000 people. [Read More]
The top US and European trade groups have warned their leaders of enormous fallout for businesses and customers if the two sides fail to reach a new deal on data transfers by end January. [Read More]
Would you allow your insurance company to monitor your driving for a discount? Or let a "smart thermostat" save energy by tracking your family's movements around your home? [Read More]
David Chaum, inventor of various cryptographic protocols with more than 30 years of experience in the field, has introduced a new anonymous communications project. [Read More]
Oracle settles FTC charges that it deceived customers about Java security updates [Read More]
Apple criticized draft British legislation designed to stiffen surveillance powers, saying the proposed bill could "spark serious international conflicts". [Read More]
Patient data breaches affect 90% of industries, according to Verizon’s 2015 Protected Health Information Data Breach Report. [Read More]
The Payment Card Industry Security Standards Council (PCI SSC) has set a new deadline for when organizations that process payments should complete the migration off vulnerable SSL and early TSL encryption. [Read More]
The bipartisan Cybersecurity Disclosure Act of 2015 seeks to encourage the disclosure of cybersecurity expertise on corporate boards at publicly traded companies. [Read More]

FEATURES, INSIGHTS // Privacy & Compliance

rss icon

Travis Greene's picture
To understand why return on Access Governance is lower versus other security technologies, we first need to understand why Access Governance is implemented in the first place.
David Holmes's picture
In the initial hours after the Paris attacks by Islamic terrorists, when the PlayStation 4 rumor was first circulating, I decided to see exactly what kind of encryption the PS4 uses for its messaging system.
Torsten George's picture
To achieve continuous compliance and monitoring, organizations are forced to automate many otherwise manual, labor-intensive tasks.
Torsten George's picture
The NIST Cybersecurity Framework is an important building block, but still just the first step towards implementing operationalized defenses against cyber security risks.
James McFarlin's picture
U.S tech giants are playing a game of high-stakes global brinksmanship around who has rights to control their data, which impacts their European growth prospects, business models, and ultimately stock valuations.
Marcus Ranum's picture
To communicate about our metrics, we need ways that we can ground our experience in terms of “normal” for us; Otherwise, we really can't communicate our metrics effectively with anyone who isn't in a similar environment.
Adam Firestone's picture
The misconception that Internet privacy equals anonymity must be dispelled if cyberspace is to be a secure and safe place. At the same time, mechanisms must be incorporated to ensure that communications remain confidential and resistant to unauthorized alteration by third parties.
Mark Hatton's picture
The oversight for the protection of healthcare information is only getting tighter, and it is incumbent upon the security teams to ensure healthcare professionals have all the tools necessary to improve patient outcomes, while we worry about keeping the bad guys away.
Tal Be'ery's picture
The Google-backed "Certificate Transparency" initiative has gained much momentum and may have a real chance to amend the battered Public-Key Infrastructure (PKI).
Nimmy Reichenberg's picture
With the release of PCI-DSS 3.0, organizations have a framework for payment security as part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.