All Cybersecurity articles – Page 8
-
WebcastCPE Webcast: Reinforce your defenses with strong cybersecurity compliance training
Join this webinar, where compliance training experts will outline the strategy behind a solid cybersecurity defense to mitigate risks for your organization, starting with your compliance training program.
-
PremiumSurvey: Risk chiefs feeling pressure from growing compliance mandates
Mounting compliance requirements and technological innovations have chief risk officers facing more complex risk environments, according to a KPMG survey.
-
WebcastCPE Webcast: Unprepared for SEC cyber disclosures? You can get through this
Learn what cybersecurity strategy, governance, and risk management are and how to use an emerging definition for reasonable cybersecurity controls to help you define materiality.
-
PremiumRisk models show finance, real estate most likely to face costly cyber events
The finance and real estate industries are at higher risk of experiencing a high-cost material cybersecurity incident, compared to other sectors, according to new research from risk modeling firm Kovrr based off data from U.S. Fortune 1,000 companies.
-
News BriefUAE joins pact with U.S. on cybersecurity cooperation
The United States and United Arab Emirates finalized an agreement to work together to safeguard the financial sector from cyberattacks.
-
PremiumModern-day enterprises: How to prepare for and prove network compliance
The need to prove network compliance is intensifying as lawmakers introduce new privacy legislation and organizations update their contractual security requirements for third-party vendors.
-
News BriefBlackbaud settles with states for $49.5M over 2020 data breach
Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.
-
News BriefCybersecurity, AML risks among SEC 2024 exam priorities
SEC examiners will be asking tough questions of registered firms regarding how they handle risks related to operational security, interact with financial technology companies and crypto assets, and the maturity of their anti-money laundering programs.
-
News BriefFCA fines Equifax’s U.K. unit $13.3M over 2017 data breach
The Financial Conduct Authority fined Equifax’s U.K. unit more than £11 million (U.S. $13.3 million) regarding the company’s 2017 data breach that affected approximately 13.8 million U.K. consumers.
-
News BriefEOS Matrix battles back against Croatian DPA in $5.8M GDPR case
Debt collector EOS Matrix said it will challenge a General Data Protection Regulation penalty levied against it by the Croatian data protection authority after finding the data in question in the case does not match the data in its database.
-
PremiumExpert: How data hoarding increases businesses’ cyber risks
Holding on to data for longer than necessary creates vulnerabilities for businesses by giving cyberattackers more avenues to access an organization’s computer systems.
-
PremiumOCC examiners to focus 2024 attention on risks that led to bank failures
Bank examiners from the Office of the Comptroller of the Currency are focusing their supervision attention on how banks manage risks that brought down three mid-sized financial institutions earlier this year.
-
News BriefMGM discloses $100M hit from cyberattack
MGM Resorts International said it expects to take a $100 million hit as part of the fallout of a cyberattack that has most significantly impacted its Las Vegas operations.
-
PremiumExpert: Clorox ‘trying to do the right thing’ with rapid cyberattack disclosures
The timing of a recent cyberattack against Clorox juxtaposed against the Securities and Exchange Commission’s adoption of its cybersecurity incident disclosure rule soon to take effect has presented a case study regarding how companies might seek to meet the requirements of the rule.
-
Resourcee-Book: Risks, opportunities under SEC’s cyber incident disclosure rule
The clock is ticking for public companies to put in place policies and practices to meet the requirements of the Securities and Exchange Commission’s newly approved cybersecurity incident disclosure rule.
-
News Brief
Cybersecurity firm Intrusion to settle SEC fraud claims
Texas-based cybersecurity company Intrusion was charged with fraud by the Securities and Exchange Commission regarding alleged materially false and misleading statements made by its former chief executive.
-
PremiumCalifornia cybersecurity audit rule scope begins taking shape at CPPA meeting
A final version of California’s cybersecurity audit rules likely won’t be released until later next year at the earliest, according to a rough timeline discussed by the California Privacy Protection Agency.
-
PremiumPaying ransom to avoid GDPR fine an unwise gambit
Companies that think paying reduced ransomware demands would be a better move than informing regulators of a data breach and facing enforcement are playing with fire, according to experts.
-
News BriefVerizon unit to pay $4.1M in cybersecurity false claims case
Verizon Business Network Services agreed to pay approximately $4.1 million to settle allegations levied by the Department of Justice regarding false claims caused by failure to fully implement cybersecurity controls required of a government contractor.
-
PremiumPreparing for SEC cybersecurity rules an opportunity for collaboration
Businesses can prepare for the Securities and Exchange Commission’s upcoming cybersecurity disclosure rule by going through it and identifying key gaps in compliance.