In many ways compliance creates bureaucracy, but it doesn't need to be difficult. It is possible to maintain continual GDPR compliance without many of the headaches if done in the right ways.
Ongoing GDPR compliance oversight requires the ability to solidify and secure the processes associated with people changing...
More U.S. cities and other governmental units reportedly have been hit by ransomware in an unrelenting wave that has proved profitable for hackers. Here's a roundup of the latest incidents.
Threat intelligence programs have evolved greatly over the past decade. But Mario Vuksan, CEO of ReversingLabs, says too many organizations are overlooking the value of local intelligence embedded in their own networks. Vuksan talks about maximizing TI resources.
Spinning up new instances in Amazon Web Services (AWS), Microsoft Azure, or Google Cloud Platform (GCP) is simple. The hard part is keeping track of the data, workloads, and architecture changes in those environments and keeping everything secure.
Read this guide to learn:
Your responsibilities when it comes to...
Security professionals are hard-wired to focus on the technical aspects of cyber attacks during a breach response, but non-technical aspects are often deceptive and go overlooked. Identity can be a powerful tool to bolster your defenses - and the untapped market potential is huge.
Download this eBook to learn from...
Today, the CISO, CEO and board all want to know, "Where are we exposed?"
Answering this question means having complete visibility into the attack surface - not just traditional IT infrastructure, but every networked asset (e.g., cloud, containers, IoT and even OT). It means seeing every vulnerability.
So, how do...
Cyber risk management is demanding work. Vulnerabilities are growing, threat actors are smarter and pressure from the executive team is intensifying.
What used to be a side IT conversation is now a top business priority. You finally have the full attention of the C-suite and board - but, do you know which cyber...
Digital transformation impacts the way that organizations deal with cybersecurity risk. For SMBs in particular, it is essential to place security at the center of this transformation.
With 13 million data hacks a data hacks and 30 million records lost a day, it is important for organizations to not undermine the...
Sophos is the latest security firm to create a proof-of-concept exploit for the BlueKeep vulnerability in older versions of Windows. The company echoed several government agencies that have urged businesses to patch their devices.
Several unsecured Amazon S3 buckets belonging to IT services firm Attunity left at least 1 TB of data, including files from companies such as Netflix, TD Bank and Ford, exposed to the internet, UpGuard researchers disclosed. Although the databases have been secured, an investigation is continuing.
Italy's data protection regulator has slapped a $1 million fine on Facebook for mismanaging user data and precipitating the Cambridge Analytica debacle. But that pales by comparison to the the fine that's reportedly still being weighed by the U.S. Federal Trade Commission.
The debate over whether the U.S. government should have the right to force weak crypto on Americans has returned. Here's what hasn't changed since the last time: mathematics and the choice between strong crypto protecting us or weak encryption - aka backdoors - imperiling us all.
A former Equifax CIO who sold his stock in the company after learning about its 2017 data breach several months before the public and government agencies were informed has been sentenced to four months in prison for insider trading. Another former Equifax executive was sentenced on similar charges last year.
The firmware of more than 500 Huawei networking products is riddled with security weaknesses that make the vendor risky to use for 5G networks, a new report contends. The study analyzed more than 9,000 firmware images in 558 enterprise products from the Chinese company.
The latest edition of the ISMG Security Report discusses Cloudflare's harsh criticism of Verizon over an internet outage it labeled as a "small heart attack." Plus: sizing up the impact of GDPR; reviewing highlights of the ISMG Healthcare Security Summit.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.
