Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
An unnamed energy firm in the U.S. has been fined $2.7 million over a data security incident that exposed critical cyber assets [Read More]
U.S. SEC releases updated guidance on data breach disclosures and advises companies to adopt policies that ban executives from trading during security incident investigations [Read More]
Kaspersky files new lawsuit over the U.S. government’s software ban, this time challenging the National Defense Authorization Act (NDAA) [Read More]
Seagate and RackTop join forces to launch a secure data storage product designed to help government organizations address cybersecurity and compliance challenges [Read More]
Senator who conducted 4-month investigation into Equifax breach wants answers after credit agency admits that hackers accessed types of data not mentioned in initial disclosure [Read More]
The massive 2016 breach that Uber covered up for more than a year was the work of a couple of individuals from Canada and Florida [Read More]
Google Cloud Identity & Access Management (IAM) users can now assign custom roles for fine-grained security [Read More]
The UK government has warned that Britain's most critical industries must boost their cyber security or face potentially hefty fines under the EU's Networks and Information Systems Directive (NISD). [Read More]
Kaspersky Lab files injunction in an effort to expedite its appeal against the DHS’s decision to ban government agencies from using the company’s products [Read More]
Class action lawsuits have been filed against AMD and Apple over Spectre and Meltdown CPU vulnerabilities [Read More]
- 1 of 32
- ››
FEATURES, INSIGHTS // Compliance
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the implications of the new EU Directive on Security of Network and Information Systems (NIS)
Why do we seem to need layer upon layer of regulation and guidance to try to ensure a more secure business world? Is it working?
Reducing the amount of personal data subject to GDPR is a critical step towards minimizing the amount of risk that GDPR will expose.
The PCI DSS 3.2 should greatly help companies reduce third party vendor risk, and is starting to shift from just a check-the-compliance-box activity to a more continuous compliance model.
To understand why return on Access Governance is lower versus other security technologies, we first need to understand why Access Governance is implemented in the first place.
To achieve continuous compliance and monitoring, organizations are forced to automate many otherwise manual, labor-intensive tasks.
The NIST Cybersecurity Framework is an important building block, but still just the first step towards implementing operationalized defenses against cyber security risks.
U.S tech giants are playing a game of high-stakes global brinksmanship around who has rights to control their data, which impacts their European growth prospects, business models, and ultimately stock valuations.
The oversight for the protection of healthcare information is only getting tighter, and it is incumbent upon the security teams to ensure healthcare professionals have all the tools necessary to improve patient outcomes, while we worry about keeping the bad guys away.
- 1 of 7
- ››
SecurityWeek Daily Briefing
- Microsoft Releases More Microcode Patches for Spectre Flaw
- Picture This. Now Protect It.
- Drupal Patches New Flaw Related to Drupalgeddon2
- Internet Exposure, Flaws Put Industrial Safety Controllers at Risk of Attacks
- Authorities Take Down Largest DDoS Services Marketplace
- Google Ramps Up Gmail Privacy Controls in Major Update
- Ransomware Hits Ukrainian Energy Ministry Website
- New Advanced Phishing Kit Targets eCommerce
- Hotel Rooms Around the World Susceptible to Silent Breach
- Apple Patches macOS, iOS, Safari
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use