All cyber-attack articles
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
-
ArticleJames Comey: Lessons from Enron era will ‘become real again’
Former FBI Director James Comey kicked off Compliance Week’s 16th annual National Conference on Tuesday by speaking candidly about a variety of risk and compliance matters, including the importance of a strong ethical culture in the coming post-pandemic “boom times.”
-
ArticleCyber-insurance: Why you need it and how to choose the right plan
As cyber-attacks surge, the need for cyber-insurance is growing more urgent. But it’s critical for companies to first familiarize themselves with how to navigate the labyrinth of cyber-insurance products on the market so that they are properly covered.
-
ArticleKroger joins victims of Accellion data breach
Two months after cloud service vendor Accellion first identified one of its legacy products was targeted by a sophisticated cyber-attack, users of the product continue to feel the impact, with grocery chain Kroger the latest to reveal its exposure.
-
ArticleSurvey: Firms enhanced cybersecurity in 2020, but not enough
Companies forced to pivot to remote work in a global health crisis spent the bulk of 2020 grappling with heightened cyber-security risks. A year later, compliance practitioners say their companies’ cyber-security postures are better for it—even in the wake of the stunning SolarWinds hack.
-
ArticleSolarWinds hack turning into Pandora’s box of cyber-risk
The more we learn about the SolarWinds hack, the more troubled compliance officers should be by the scope and breadth of the risks their companies might have incurred.
-
ArticleCyber-security lessons from the SolarWinds hack
The lessons from the massive SolarWinds hack on where vulnerabilities still lurk in the third-party vendor supply chain cannot be grasped soon enough.
-
ArticleTicketmaster UK fined $1.6M under GDPR for 2018 data breach
The U.K. Information Commissioner’s Office fined Ticketmaster £1.25 million (U.S. $1.6 million) for its failures relating to a 2018 data breach by a third party.
-
ArticleFive ways to protect yourself from coronavirus cyber-attacks
Cyber-criminals are making attempts to test the cyber-security of those working from home during the coronavirus pandemic. Here are ways to help defend yourself and your business from these potential threats.
-
Article5 tips to immunize yourself against coronavirus-emboldened hackers
In this time of fear and uncertainty, it’s more critical than ever to practice good cyber-security hygiene (just think of it as the technical version of proper handwashing).
-
ArticleEquifax indictment and the making of a Chinese cyber-attack
The DOJ announced four members of the Chinese military have been indicted on charges of hacking into the computer systems of Equifax, ultimately resulting in the largest-ever breach of consumer data. From an ERM standpoint, the indictment offers an inside look at the making of a Chinese cyber-attack.
-
ArticleU.S. government warns: Be prepared for Iran cyber war
The killing of Iranian general Qassem Soleimani in a U.S. airstrike may bring about cyber warfare, the U.S. government has warned in a security bulletin.
-
Article
Hackers tell all: How to reduce the risk of cyber-attacks
Interested in learning how to beef up your cyber-security processes? Who better to ask for advice than a group of hackers? A report from Nuix offers their suggestions.
-
Blog
Joint U.S.-U.K. statement warns of malicious cyber-activity by Russian government
The U.S. Department of Homeland Security, Federal Bureau of Investigation, and the U.K.’s National Cyber Security Centre released a joint Technical Alert concerning malicious cyber-activity carried out by the Russian government, marking the first time these the United States and Europe have issued joint advice to industry about how to ...
-
Blog
Legislation would let companies cyber-attack their hackers
The Active Cyber Defense Certainty Act is bipartisan legislation that would allow companies to deploy “defensive measures that exceed the boundaries of one’s network in order to monitor, identify, and stop attackers.”
-
Blog
Senate confronts legal, logistical roadblocks to self-driving cars
Legislation that would clarify lingering legal conundrums about autonomous vehicles is working its way through the Senate with the American Vision for Safer Transportation through Advancement of Revolutionary Technologies Act.
-
Article
SEC data breach reveals fear and loathing in the mainframe
A breach disclosure by the SEC does the agency no favors as it prepares to dig deep into data troves for market surveillance.
-
Blog
Cyber-attack exposes consumer data at Equifax
The consumer credit reporting agency Equifax has announced a cyber-security incident that may have exposed the data of 143 million U.S. consumers. Credit card numbers for approximately 209,000 U.S. consumers were accessed.
-
Article
Defending against the dark side of the Internet of Things
The Internet of Things is often a boon for companies, but experts warn of the need for a response plan when that technology becomes a weapon of mass destruction.
-
ArticleData breach trends industry-by-industry
The 2017 Verizon Data Breach report is out, and it has some timely pointers for how healthcare, financial services, manufacturing, and retail organizations can improve their cyber-security.