This week, feds counted cyber incidents; Ukraine made arrest; Black Basta seemed to exploit flaw; 51 flaws in Patch Tuesday; SolarWinds, JetBrains patched flaws; Alan Turning Institute debunked paper on AI; Santander wants password changes; Christie's spoke of data breach and cyber pros face burnout.
New SEC regulations mandate that publicly traded companies disclose material cybersecurity events and outline their cybersecurity strategies in 10-K filings. Paul Kurtz, field CTO of Splunk, discusses how these rules drive transparency and accountability in cybersecurity reporting.
Organizations are moving from traditional perimeter-based security to identity-based security. This shift focuses on continuous identity verification rather than assuming internal users are automatically trusted, said Vivin Sathyan, senior technology evangelist, ManageEngine.
Traditional hiring methods often emphasize educational background and work experience, but the White House is encouraging efforts to transition federal and contractor roles to a skills-based framework. Here's how and why to consider taking this approach.
Chief Information Security Officers (CISOs) face unprecedented challenges in their efforts to protect their organizations against a rising tide of increasingly sophisticated cyberthreats.
A promise of better security through biometrics fell short after security researchers dismantled an access system made by a Chinese manufacturer and discovered that it contained 24 vulnerabilities. ZKTeco specializes in hybrid biometric verification technology.
The city of Cleveland, Ohio, is launching an investigation into an apparent cyber event that forced a shutdown of its information technology systems throughout the start of the week, officials said Tuesday, though additional details surrounding the incident remain unclear.
Chinese hackers breached thousands of vulnerable Fortigate network security appliances in a cyberespionage campaign "much larger than previously known," a Dutch cybersecurity agency warned Tuesday. Even fully patched FortiGate devices may still be infected.
Fortinet recently surveyed over 900 security professionals about cloud security, and Frederick Harris, senior director of product marketing at Fortinet, pointed out that one key finding was no big surprise: "Security and compliance continue to be a major roadblock to cloud adoption."
Privacy regulators in the U.K. and Canada have launched a joint investigation into 23andMe after the direct-to-consumer genetic testing service suffered a massive data breach in October 2023 that led to the theft of 6.9 million individuals' ancestry details.
The U.K. Payments Systems Regulator has denied The Payment Association's request to delay the contentious APP fraud reimbursement plan by a year. The association, the largest community in payments, had warned that failing to delay the plan would permanently damage the payments industry.
Two U.S. senators are demanding UnitedHealth Group report a HIPAA breach and notify affected individuals no later than June 21, alleging the company is already violating HIPAA by dragging out the notification process in the aftermath of the Feb. 21 cyberattack on Change Healthcare.
Healthcare organizations are particularly vulnerable to ransomware, risking significant data loss. Steve Stone, head of Rubrik’s Zero Labs, outlines why healthcare faces higher risks and how organizations can strengthen their defenses against these disruptive threats.
Fortinet plans to purchase trouble late-stage startup Lacework to integrate its AI-driven cloud native application protection platform into the Fortinet Security Fabric. The deal enhances Fortinet's Unified Secure Access Service Edge platform, providing protection from code to cloud.
How in the world has Microsoft's leadership managed to get the debut of its forthcoming Recall feature for Windows so wrong on the security and privacy fronts? In the face of serious concerns, Redmond has belatedly promised multiple enhancements, but serious questions remain unanswered.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.