Security Experts:

Privacy & Compliance
long dotted

NEWS & INDUSTRY UPDATES

Experts audited OpenVPN and its cryptography and found only one high severity vulnerability [Read More]
Researchers discovered that a Conexant audio driver shipped with many HP laptops acts as a keylogger [Read More]
RedLock emerges from stealth with cloud infrastructure security offering and $12 million in funding [Read More]
The FCC said its comment system was disrupted by DDoS attacks, not because too many net neutrality supporters accessed its website [Read More]
Risks posed by SS7 flaws are no longer just theoretical – cybercriminals exploited vulnerabilities to steal money from bank accounts [Read More]
GDPR will affect all EU-based companies, and all US companies that have any trade with the EU. [Read More]
Mozilla has been following the certificate-related debate between Symantec and Google, and it largely agrees with the latter [Read More]
Researchers discovered several vulnerabilities in Evoko meeting room management devices [Read More]
Researchers claim to have found serious flaws in the nomx email security device. Vendor disputes findings [Read More]
WikiLeaks released details on CIA hacking tool designed to record audio via the built-in microphone of Samsung smart TVs [Read More]

FEATURES, INSIGHTS // Privacy & Compliance

rss icon

Jim Ivers's picture
With the advent of connected devices, privacy and security have become tightly linked because theft of private data is often the goal of malicious attacks.
Jim Ivers's picture
Enlightened toy manufacturers likely begin to embrace the basic concepts of IoT security and build connected toys that can be trusted by parents.
Travis Greene's picture
Reducing the amount of personal data subject to GDPR is a critical step towards minimizing the amount of risk that GDPR will expose.
Erin O’Malley's picture
Today, we expect ultimate convenience. But at what cost? More and more, I’m left wondering whether modern conveniences—grâce à today’s advanced technologies—are truly worth the risk.
Steven Grossman's picture
The PCI DSS 3.2 should greatly help companies reduce third party vendor risk, and is starting to shift from just a check-the-compliance-box activity to a more continuous compliance model.
Jim Ivers's picture
If a car’s systems can be hacked to disable critical systems, then attacks can also be used to extract information. Similar to IoT, if data is being collected, data can be exfiltrated.
David Holmes's picture
The portion of encrypted traffic keeps rising, so IT security administrators will be forced to do more SSL decryption if they are to get any value at all out of their fancy security tools.
Travis Greene's picture
To understand why return on Access Governance is lower versus other security technologies, we first need to understand why Access Governance is implemented in the first place.
David Holmes's picture
In the initial hours after the Paris attacks by Islamic terrorists, when the PlayStation 4 rumor was first circulating, I decided to see exactly what kind of encryption the PS4 uses for its messaging system.
Torsten George's picture
To achieve continuous compliance and monitoring, organizations are forced to automate many otherwise manual, labor-intensive tasks.