Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Britain's Tesco Bank has been fined £16.4 million ($21.4 million, 18.4 million euros) for failing to protect customers during a 2016 cyber attack, regulators said Monday. [Read More]
Twitter makes some changes in preparation for the upcoming midterm elections in the US, including updates to rules on fake accounts and the distribution of hacked materials [Read More]
Industry professionals comment on the Facebook data breach that affected 50 million accounts and resulted in the tokens of 90 million users being reset [Read More]
The incident affecting 50 million accounts is the latest in a series of scandals involving Facebook [Read More]
California governor signs IoT cybersecurity law, along with a state-level net neutrality law [Read More]
A GDPR enforcement notice to Canadian firm AggregateIQ Data Services Ltd (AIQ) will show how the courts view the extension of European regulations beyond the borders of the European Union. [Read More]
Symantec completes accounting audit that caused shares to drop over 30%. Investigation uncovered some issues, but there is only one transaction that impacts financial statements [Read More]
Altaba, formerly known as Yahoo, has agreed to settle consumer class action lawsuits triggered by the massive data breaches suffered by the company for $47 million [Read More]
Nearly one-third of data breaches resulted in someone losing their job, and in North America the C-Suite is most likely to be blamed for a breach [Read More]
U.S. Senators send letter to State Department asking about its use of multi-factor authentication and other cybersecurity practices [Read More]

FEATURES, INSIGHTS // Compliance

rss icon

Justin Fier's picture
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Mike Fleck's picture
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Laurence Pitt's picture
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
Travis Greene's picture
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Bradon Rogers's picture
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
Josh Lefkowitz's picture
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
Alastair Paterson's picture
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Ashley Arbuckle's picture
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.
Jalal Bouhdada's picture
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the implications of the new EU Directive on Security of Network and Information Systems (NIS)
Steven Grossman's picture
Why do we seem to need layer upon layer of regulation and guidance to try to ensure a more secure business world? Is it working?