Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The SEC announced that Morgan Stanley will pay a $35 million fine to settle charges related to the company exposing the personal information of millions of customers. [Read More]
CrowdStrike is elbowing its way into new security markets with a planned acquisition of attack surface management startup Reposify and a strategic investment in API security vendor Salt Security. [Read More]
Ride sharing giant Uber is downplaying the impact from a devastating security breach that included the theft of employee credentials, access to the HackerOne bug bounty dashboard and data from an internal invoicing tool. [Read More]
Security Operations Center (SOC) platform provider Cyrebro has raised $40 million in Series C funding. [Read More]
The non-profit foundation is building a team to proactively identify and address security defects in the popular Rust programming language. [Read More]
The Silicon Valley company has raised a total of $135 million since its launch in 2016 as a provider of data encryption technology using Intel SGX. [Read More]
The White House wants software developers that provide products and services to the government to guarantee that security requirements are met. [Read More]
Dig Security’s latest financing comes as venture capital investors rush to place bets on startups jostling for space in the cloud data security space. [Read More]
Microsoft says its security teams have detected zero-day exploitation of a critical vulnerability in its flagship Windows platform. [Read More]
Adobe has rolled out security fixes for at least 63 security vulnerabilities in a wide range of widely deployed Windows and macOS software products. [Read More]
- 1 of 102
- ››
FEATURES, INSIGHTS // Compliance
Regardless of which framework you use, it’s crucial to operationalize it in the context of your organization’s unique environment and risk factors.
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.
- 1 of 8
- ››
Get the Daily Briefing
- Optus Says ID Numbers of 2.1 Million Compromised in Data Breach
- CISA Warns of Attacks Exploiting Recent Atlassian Bitbucket Vulnerability
- North Korean Hackers Exploit Dell Driver Vulnerability to Disable Windows Security
- Microsoft Links Exploitation of Exchange Zero-Days to State-Sponsored Hacker Group
- Shangri-La Hotels Customer Database Hacked
- Hack Puts Latin American Security Agencies on Edge
- Canon Medical Product Vulnerabilities Expose Patient Information
- What's Going on With Cybersecurity VC Investments?
- CISA Issues Guidance on Transitioning to TLP 2.0
- DoD Announces Final Results of 'Hack US' Bug Bounty Program
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy