Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
How Much Downtime Can Your Company Handle?
Why every business needs cyber resilience and quick recovery times.
Technology Empowers Pandemic Response, But Privacy Worries Remain
As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside.
Do DevOps Teams Need a Company Attorney on Speed Dial?
In today's regulatory and legislative environment, companies and individuals are exposed to lawsuits over security breaches, resulting in significant fines and ending careers.
Facebook Got Tagged, but Not Hard Enough
Ensuring that our valuable biometric information is protected is worth more than a $550 million settlement.
Privacy in a Pandemic: What You Can (and Can't) Ask Employees
Businesses struggle to strike a balance between workplace health and employees' privacy rights in the midst of a global health emergency.
5 Strategies to Secure Cloud Operations Against Today's Cyber Threats
With these fundamentals in mind, organizations can reduce their security and compliance risks as they reap the cloud's many benefits:
Some Democrats Lead Trump in Campaign Domain-Security Efforts
Sanders and Trump campaigns lack proper DMARC security enforcement, study finds.
Businesses Improve Their Data Security, But Privacy — Not So Much
While the California Consumer Privacy Act will force companies to provide a modicum of meaningful privacy, World Privacy Day still mainly celebrates data security.
Why Companies Should Care about Data Privacy Day
Marking yesterday's 14th anniversary of Europe's first data protection day reminds us how far we still have to go.
CCPA: Cut From the Same Cloth as PCI DSS
Finally, some good news about CCPA: If you've built your security infrastructure to PCI DSS standards, you may be already covered by California's new data protection rules
Greater Focus on Privacy Pays Off for Firms
Privacy-mature companies complete sales more quickly, have fewer and less serious breaches, and recover from incidents faster, according to Cisco's annual survey.
Weathering the Privacy Storm from GDPR to CCPA & PDPA
A general approach to privacy, no matter the regulation, is the only way companies can avoid a data protection disaster in 2020 and beyond.
Avoid That Billion-Dollar Fine: Blurring the Lines Between Security and Privacy
While doing good for the user is the theoretical ideal, the threat of fiscal repercussions should drive organizations to take privacy seriously. That means security and data privacy teams must work more closely.
Data Awareness Is Key to Data Security
Traditional data-leak prevention is not enough for businesses facing today's dynamic threat landscape.
5 Tips on How to Build a Strong Security Metrics Framework
The carpentry maxim "measure twice, cut once" underscores the importance of timely, accurate, and regular metrics to inform security leaders' risk decisions.
Client-Side JavaScript Risks & the CCPA
How California's new privacy law increases the liability for securing Web-facing user data, and what enterprises can do to mitigate their risk.
CCPA Kickoff: What Businesses Need to Know
The California Consumer Privacy Act is in full effect, prompting organizations to think about how they'll remain compliant.
'Honoring' CCPA's Binding Principles Nationally Won't Be Easy
Even companies with the reach, capital, and innovative capacity of Microsoft or Google will struggle to adhere to the tenets of California's new consumer privacy law.
Ambiguity Around CCPA Will Lead to a Slow Start in 2020
But longer term, compliance to California's new privacy law represents an opportunity for companies to increase customer trust and market share.
Privacy Requirements & Penalties Grow, Causing Firms to Struggle
Between Europe's and California's privacy laws, companies have a complex landscape to navigate in 2020. Even data-mature industries, such as financial services, see problems ahead.
Talking to the Board about Cybersecurity
A chief financial officer shares five winning strategies for an effective board-level conversation about right-sizing risk.
SOC 2s & Third-Party Assessments: How to Prevent Them from Being Used in a Data Breach Lawsuit
Assessments can be used against your company in court proceedings. Here's how to mitigate this potential risk.
Employee Privacy in a Mobile Workplace
Why businesses need guidelines for managing their employees' personal information -- without compromising on security.
Americans Fed Up with Lack of Data Privacy
Eight out of every 10 US adults are worried over their inability to control how data about them is used, a new Pew Research survey shows.
Companies Increasingly Fail Interim Security Test, But Gap Narrows
Stability of PCI DSS helps companies cope and create more mature security programs, but some parts of the Payment Card Industry's Data Secure Standard continue to cause headaches.
To Prove Cybersecurity's Worth, Create a Cyber Balance Sheet
How tying and measuring security investments to business impacts can elevate executives' understanding and commitment to cyber-risk reduction.
Microsoft Tools Focus on Insider Risk, Data Protection at Ignite 2019
New tools and updates aimed at addressing ongoing challenges with insider threats and sensitive data classification.
Hacking Phones: How Law Enforcement Is Saving Privacy
It's no longer true that society must choose to either weaken everybody's privacy or let criminals run rampant.
Cybersecurity Trumps Political, Reputational Concerns for Companies
The average company has seen its risk increase, with cybersecurity topping the list of business threats, followed by damage to reputation and financial risks, a report finds.
4 Security Lessons Federal IT Pros Can Teach the Private Sector
With a little research and basic planning, small companies can make big strides against the cybersecurity threats they face. Here's how.
IoTopia Framework Aims to Bring Security to Device Manufacturers
GlobalPlatform launches an initiative to help companies secure connected devices and services across markets.
Planning a Zero-Trust Initiative? Here's How to Prioritize
If you start by focusing on users, data, access, and managed devices, you will make major strides toward achieving better security.
Trend Micro Buys Cloud Conformity to Fight Cloud Competition
The cloud security posture management startup was acquired for a reported $70 million.
Data Privacy Protections for the Most Vulnerable — Children
The business case for why companies that respect the privacy of individuals, and especially minors, will have a strong competitive advantage.
Google Cloud Launches Security Health Analytics in Beta
The tool is designed to help identify misconfigurations and compliance violations in the Google Cloud Platform.
7 Considerations Before Adopting Security Standards
Here's what to think through as you prepare your organization for standards compliance.
10 Steps to Assess SOC Maturity in SMBs
Facing a system and organization controls audit doesn't have to be stressful for small and midsize businesses if they follow these guidelines.
How FISMA Requirements Relate to Firmware Security
Federal guidelines can help all organizations pragmatically and meaningfully improve their firmware security.
How to Define & Prioritize Risk Management Goals
As risk management programs differ from business to business, these factors remain constant.
How Network Logging Mitigates Legal Risk
Logging that is turned on, captured, and preserved immediately after a cyber event is proof positive that personal data didn't fall into the hands of a cybercriminal.
How Intel Unlocks the Powerful Potential of Diversity in Cybersecurity
Sparking cultural shifts within an organization -- and throughout an entire industry -- can feel like a monumental task, but the juice is well worth the squeeze.
6 Questions to Ask Once You’ve Learned of a Breach
With GDPR enacted and the California Consumer Privacy Act on the near horizon, companies have to sharpen up their responses. Start by asking these six questions.
Proposed Browser Security Guidelines Would Mean More Work for IT Teams
CA/Browser Forum wants SSL certificates to expire after a year. Many businesses that rely on them aren't equipped to cope.
It's Not Healthy to Confuse Compliance with Security
Healthcare organizations should be alarmed by the frequency and severity of cyberattacks. Don't assume you're safe from them just because you're compliant with regulations.
Rising Fines Will Push Breach Costs Much Higher
The cost of breaches will rise by two-thirds over the next five years, exceeding an estimated $5 trillion in 2024, primarily driven by higher fines as more jurisdictions punish companies for lax security.
SafeGuard Cyber Adds Security, Compliance Capabilities for WeChat
A lack of visibility into the app could expose business users to compliance risks and security threats, the company says.
'Phoning Home': Your Latest Data Exfiltration Headache
Companies phone enterprise customer data home securely and for a variety of perfectly legitimate and useful reasons. The problems stem from insufficient disclosure.
Security Pros, Congress Reps Talk National Cybersecurity at DEF CON
Cybersecurity and government leaders discussed why Congress is unprepared for a major cyberattack and how the two parties can collaborate.
It's (Still) the Password, Stupid!
The best way to protect your identity in cyberspace is the simplest: Use a variety of strong passwords, and never, ever, use "123456" no matter how easy it is to type.
Yes, FaceApp Really Could Be Sending Your Data to Russia
FaceApp has an unprecedented level of access to data from 150 million users. What could its endgame be? We unpack three potential risks.
|
Latest Comment: Hello...Nurse...I've placed a mask on him but he refuses to wear gloves...now what?
6 Emerging Cyber Threats That Enterprises Face in 2020This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Tweet This
7 Comments
