Organizations face many threats to their data systems and information. Knowing all of the fundamental elements to cyber safety is the first step to fulfilling these threats.
The reach of cyber protection is broad. The core regions are explained below, and some other fantastic cyber security plan must take all of them into consideration.
The FBI and CISA have issued another warning about the 2020 election, asserting that foreign actors are spreading disinformation around hacked voter information.
The full scope of the incident isn't yet known but as a result, facilities across the U.S. have been left without access to computer systems.
FINRA, a self-regulatory organization that oversees brokers and broker-dealers, is warning about a new phishing attack that looks like its coming from the organization.
Learn about ITAR compliance in Data Protection 101, our series on the fundamentals of information security.
The Cybersecurity & Infrastructure Security Agency has released a collection of tips and best practices to help companies and employees better secure the new extended network perimeter.
Learn more about data loss prevention software in Data Protection 101, our series covering the fundamentals of data security.
An investigation by HHS OCR at this clinic uncovered "longstanding, systemic noncompliance with the HIPAA Privacy and Security Rules."
In a rare emergency directive, CISA asked all federal agencies to immediately deploy last month's Windows Security Update to remediate a critical vulnerability in Netlogon.
For years, the hackers infiltrated systems and targeted intellectual property and national security data.
A new framework published by the UK Information Commissioner's Office can help organizations comply with the GDPR's accountability requirements.
Details on Friday came out around a severe privilege escalation vulnerability Microsoft patched last month in Netlogon. Now exploit code for the vulnerability, Zerologon, is making the rounds online.
A new advisory from CISA outlines recent tactics, techniques, and procedures (TTPs) used by Chinese nation state hackers to target US agencies; it also includes ATT&CK Framework TTPs.
In an abrupt reverse course, Brazil's data protection law won't be bumped to 2021 by COVID-19; instead it will go into effect over the next few days.
With industrial espionage on the rise, we asked 24 manufacturing experts the best ways to protect intellectual property at manufacturing firms.
Bills that would regulate the sharing of genetic data and carve out coverage in the CCPA of some HIPAA data are close to being laws in California.
A recap of recent phishing activity trends found a decrease in detected phishing sites but a big increase in Business Email Compromise attack losses, around $80 million per attack.
Saudi Arabia using stolen twitter data to target critics, a significant increase in vishing, and the Secret Service buying location data to bypass warrants- catch up on this week’s news with the Friday Five. - catch up on all the week's news with the Friday Five.
Two of the country’s biggest electric vehicle manufacturers continue to dispute the particulars of a lawsuit involving poaching talent and stealing trade secrets.
CISM (Certified Information Security Manager) is an advanced certification designed for IT professionals who focus on information security management. In this post, we’ll discuss what CISM is, the CISM certification process, and the benefits of being CISM-certified.
Scams targeting small businesses are unfortunately commonplace these days. The latest attempts to phish business owners' SBA loan relief logins.
In the wake of news that attackers have been carrying out a successful voice phishing campaign against companies for a month, government orgs offered tips on how employees working from home can mitigate future attacks.
NYDFS made its first enforcement action around its Cybersecurity Regulation, 23 NYCRR 500, alleging errors and deficient controls led to a breach at an insurance company.
The two hackers were also linked to attempts to hack American biotech firms working on a coronavirus (COVID-19) vaccine.
The researcher worked for the hospital for 10 years but acknowledged last month that and her husband stole its data and used it to launch two companies, one in China, one in the US.
Anthony Levandowski, the former Google engineer, was sentenced this week, four months after he plead guilty to stealing Google's trade secrets.
An ex-worker who allegedly stole hundreds of company files had previously attempted to dismiss the lawsuit.
The FBI warns of new DDoS attack vectors, iOS14 allows unexpected prying behavior on Instagram, and NCSC research reveals the cybersecurity sector needs improvement in inclusion - catch up on all the week's news with the Friday Five.
The FBI warned organizations last week that attackers are increasingly using built-in network protocols to launch destructive distributed denial of service attacks.
With more businesses running vital business computing functions in the cloud today, cloud security is a must as attackers seek to exploit vulnerabilities and gain unauthorized access to sensitive data. In this post, we’ll talk about the benefits of cloud security as well as some best practices to follow.