Cybersecurity Concerns Across Federal Agencies
Earlier this year, the position of federal cybersecurity czar was voided by the US government. The reasoning behind this questionable decision was that federal agencies could independently handle issues of cybersecurity management and risk assessment, therefore such a position was extraneous. Well, if this latest Office of the Management and Budget (OMB) report is any… Read More
Now that GDPR is here, what does it mean?
Realistically, despite it having now gone into effect, there will still be plenty of entities that drag their feet on GDPR compliance. For some, rolling the dice on avoiding a breach would seem like a preferable option to overhauling their policies to implement the new regulations. If you don’t get breached, you don’t get penalized,… Read More
Taking responsibility for data breaches
The New Jersey state legislature has a group of bills circulating, intended to increase company accountability in the event of a breach. One would require breached companies to pay for customer credit reports for six months, as well as allowing a parent or guardian to freeze their child’s credit report. Another would require the encryption… Read More
Cybersecurity and the C-Suite (the C stands for complex)
The growth of the cybersecurity sector has brought many new opportunities for businesses across the board. Inevitably, however, such increase also brings about greater complexity: challenges that now present themselves to security decision makers. You know the story. Larger security budgets, hurried spending, and a proliferation of products to navigate and select. How should the… Read More
Facebook, Your Data, and Growing Cybercrime Economies
With GDPR implementation looming in Europe, Facebook picked an awkward time to have a major data incident. Nevertheless, previously planned changes to their platform are moving forward. European users are now starting to see these privacy policy updates for numerous services. Let’s just focus on Facebook for now, however. New consent flows and terms of… Read More
Data Heists From the Headlines
Isn’t there a new Ocean’s Eleven reboot in the works? I think we’ve just found the plot for the next one. I love everything about this story (aside from the breached data, of course). Hacking a casino through a thermostat in one of its fish tanks sounds like a perfect premise for Hollywood summer fluff,… Read More
2018 Cybersecurity Trends to Watch
We’ve often discussed how internal threats in the healthcare industry supersede outside attackers in causing data breaches. This remains true, according to Verizon’s latest Data Breach Investigation Report (DBIR). What’s interesting, however, is how this is exclusive to this vertical, and reversed in others. In education, finance, etc., external actors pose the greater risk. The… Read More
Under Armour’s Low Key Mega Breach
As March Madness finishes up, with Villanova and Notre Dame both victorious, the eyes of sports fan turn back to the NBA, and its own approaching playoff season. One of the league’s biggest marketing partners, however, now finds itself a victim of one of the largest data breaches in history. Under Armour is sponsor of… Read More
Eroding Trust in Facebook
It has been a whirlwind couple of weeks for Facebook in the wake of the Cambridge Analytica scandal. I won’t rehash all the details, since it’s been covered ad nauseam, but new tremors continue to ripple through the tech giant. We covered last time the intended investigations by European legislators, but now, in the US,… Read More
Consumers look to have their say over data breaches
Major corporate entities will often, after failing to adequately protect countless records of personal information, seek to exonerate themselves as much as possible. While it’s natural to want to avoid penalties, it is nice when their feet are ultimately held to the fire. That’s exactly what US District Judge Lucy Koh did last Friday. Verizon,… Read More