Companies are taking a cautious approach towards embracing AI. Their concerns stem from the potential risks associated with data privacy breaches, intellectual property loss, emerging cyber threats, compliance risks, and legal liabilities. Looking at the GenAI risk as ‘just-another-data-risk’ is not enough. To...
In the latest "Proof of Concept," Chris Hughes, co-founder and CISO of Aquia, join editors at ISMG to discuss the nuances around software liability, how organizations are integrating standards development practices, and guidelines for determining when a supplier qualifies for safe harbor.
Open-source software is pervasive in healthcare. It is used in critical systems such as electronic health records and components contained in medical devices. Federal regulators are urging healthcare sector firms to be vigilant in managing risks and threats involving open-source software.
Weeks after the Department of Health and Human Services announced its first HIPAA enforcement action in a ransomware breach, federal regulators have reached another milestone: a $480,000 settlement in a HIPAA case centered for the first time ever on a phishing attack.
The Joint Commission is kicking off a new voluntary certification program for hospitals' "responsible use" of health data. The effort aims to help address growing privacy concerns over the secondary use of patient data by third parties for artificial intelligence initiatives and other activities.
Whether because they're malicious, oblivious to company rules or outsmarted by hackers, insiders pose a mounting degree of risk to companies. Hunting for outside hackers offers lessons in preventing insider incidents, said Thomas Etheridge, CrowdStrike chief global professional services officer.
Embark on a transformative journey with this webinar, where we blend the tapestry of historical insights with contemporary strategies for mastering Governance, Risk, and Compliance (GRC). Uncover the secrets to navigating risk through the sands of time, ensuring your program stands the test of history.
Discover the untamed potential of cybersecurity success. Unleash your MSSP's full potential as you journey through a landscape teeming with challenges and opportunities.
Check out this whitepaper to explore a thrilling expedition into the Digital Wild West, where MSSPs can stake their claim to cybersecurity...
The U.S. Cybersecurity and Infrastructure Security Agency is urging software developers to implement memory safe coding as part of an effort to address critical vulnerabilities in programming languages and further shift security responsibilities away from end users.
The U.S. Department of Health and Human Services on Wednesday released a sweeping strategy document proposing how the Biden administration intends to push the healthcare sector - through new requirements, incentives and enforcement - into improving the state of its cybersecurity.
A New York medical imaging services provider is notifying nearly 606,000 individuals that their information was potentially accessed and copied in a recent hacking incident. The entity is one of several medical imaging centers that have reported major hacking breaches in recent weeks and months.
On Nov. 8, Tenable Chairman and CEO Amit Yoran wrote a letter to Congress in support of CISA. In this episode of "Cybersecurity Insights," Yoran calls the agency the "primary focal point of our defensive efforts" and discusses why the country needs to stay unified on defeating cyberthreats.
Large enterprises have utilized Managed Security Service Providers (MSSPs) for years to protect their assets and ensure compliance mandates are met. However, a growing supply of security service providers and the profound increase in cyber threats have created a new trend in small and mid-sized organizations turning...
The rapid digitization of manufacturing, energy, and critical infrastructure industries has brought about a significant transformation in how Operational Technology (OT) and Information Technology (IT) interact. This convergence presents exciting opportunities for efficiency and innovation, but it also introduces...
Security experts testified to Congress ahead of a looming 2025 deadline for national compliance that the National Institute of Standards and Technology is better placed than the Transportation Security Administration to lead national implementation efforts for mobile drivers licenses.