A major online site used by cybercriminals to buy and sell information stolen from corporations and individuals worldwide has been shut down by an international enforcement action, the Department of Justice announced.
Cybersecurity
Posted inEthics & Culture
An appreciation of CW’s data and research journalist, Aly McDevitt
One of the best things about writing for Compliance Week is reading the fabulous work by my colleagues. For me, CW data and research journalist Aly McDevitt has always stood out as someone whose work in reporting on and writing the Compliance Week case studies is work I have greatly admired.
Posted inEthics & Culture
False Claims Act enforcement themes for 2026
The U.S. Department of Justice touted a record $6.8 billion in False Claims Act (FCA) recoveries in fiscal year 2025, much of that total stems from prior years’ cases and does not necessarily reflect the administration’s current enforcement direction.
Posted inThird Party Risk
Hidden supply-web risks in MSPs and MSSP contracts
Governance failures embedded in standard agreements are amplifying organizations’ exposure to cyber incidents by failing to account for modern supply-chain realities, where third- and fourth-party vendors, cloud platforms, subcontractors create a cascading risk far beyond the contracting entity.
Posted inTechnology
Compliance must prepare for post-quantum cryptography requirements in contracts
While companies focus on the risks, opportunities, and regulations emerging around AI, the next tech challenge is already on the horizon. Quantum computers are here – and so are the associated crime risks, plus some encryption protections.
Posted inTechnology
Tech and compliance 2026: What to watch for in AI, cybersecurity and quantum computing
What will be the critical tech issues for compliance in 2026? We asked experts what tech, digital, and cyber issues they believe compliance teams should be focusing on in the year ahead.
Posted inCybersecurity
Building resilient teams in cyberdefense
The stress on cyberdefense teams can be accurately described as a form of chronic occupational trauma stemming from several unique pressures. But there are ways to build a culture that combats these pressures.
Posted inCybersecurity
The invisible cost of digital defense on mental health
Cybersecurity professionals, particularly those in leadership roles, often face immense pressure and stress due to the constant threat of cyberattacks.
Posted inCybersecurity, ESG/Social Responsibility
Retail energy compliance must focus on resilience and reporting
Cybercrime and national critical infrastructure responsibilities are key concerns for retail energy sector compliance. Resilience is vital for companies that keep the lights on and power financial institutions and hospitals.
Posted inTechnology
U.K. Cyber Security and Resilience bill set to regulate critical infrastructure suppliers
Suppliers to the U.K. critical infrastructure will face new regulations to ensure they are protected from cyberattacks. The Cyber Security and Resilience Bill, introduced on November 12, also raises penalties for breaches and expands regulator powers to label certain suppliers as critical.