Cyber Security Industry News
ERISA Cybersecurity Lessons for Employers
Retirement plans are increasingly subject to cybersecurity issues, and the U.S. Department of Labor (DOL) is taking notice. On April 14, 2021, the DOL published cybersecurity guidance “for plan sponsors, plan fiduciaries, record keepers and [...]
Cisco to enhance cybersecurity offering with US acquisition
Image credit: Stock Cisco has announced its plan to acquire Kenna Security, Inc., a privately held cybersecurity company headquartered in Santa Clara, California. Kenna’s risk-based vulnerability management technology enables organisations to work cross-functionally to rapidly [...]
Can NTSB-style oversight work for cybersecurity?
President Joe Biden's cybersecurity executive order calls for the establishment of safety review boards to respond to significant breaches and other incidents. The administration is modeling this approach after the National Transportation Safety Board, which [...]
United States: NYDFS Announces Cybersecurity Settlement, Addresses Multi-Factor Authentication Rules
On April 14, 2021, the New York Department of Financial Services ("NYDFS") announced a settlement with National Securities Corporation ("National Securities"), a licensed insurer, in connection with claims under the NYDFS Cybersecurity Regulation (23 NYCRR [...]
United States: Colonial Pipeline Cyberattack Highlights Vulnerability Of Nation’s Energy Sector
This post is a follow up from our recent discussion of the cyberattack that took the 5,500-mile Colonial Pipeline offline last week and the growing threat ransomware poses to our nation's energy system. On May [...]
Industry best cyber security practices in enterprise database administration
Nowadays, business enterprises tend to collect huge amounts of data from various sources during their operations and customer interactions. Storing all this data securely and sharing it with the employees and others is a very [...]
Talking about Cybersecurity Vulnerabilities in Medical Devices Shouldn’t be Taboo
Nastassia Tamari, Director of Information Security Operations for BD According to the National Vulnerability Database , 18,353 vulnerabilities were reported in 2020. That’s nearly three times the volume of vulnerabilities reported five years ago, and [...]
Week in review: Top security threats for power plants, defending against Windows RDP attacks
Here’s an overview of some of last week’s most interesting news and articles: Why threat hunting is obsolete without context Threat hunting is one of the more recent methodologies implemented by IT professionals to find [...]
Executive Order on Cybersecurity Sets Aggressive Timeline
The Colonial Pipeline cyberattack prompted the issuance of a long-awaited executive order (EO) on improving U.S. cybersecurity. The EO mandates that, within six months, all federal agencies implement multi-factor authentication (MFA) and both at-rest and [...]
Cybersecurity Executive Order: Can automation fix the nation’s misconfiguration problem?
President Joe Biden signed and released an Executive Order (EO) from the White House on May 12th, addressing his plan to improve the nation’s cybersecurity and protect federal government networks. This order comes on the [...]
The policy changes the US government has initiated to overhaul its cybersecurity
While India still awaits its National Cybersecurity Policy, the United States President on Wednesday issued an executive order that overhauls its cybersecurity policy. “Cybersecurity incidents like SolarWinds, Microsoft Exchange, and now the Colonial Pipeline incident [...]
President Biden Issues Executive Order to Strengthen U.S. Cybersecurity Practices
On May 12, 2021, President Biden issued an Executive Order on Improving the Nation’s Cybersecurity following a series of highly publicized cybersecurity incidents during the first four months of his presidency, including the Colonial Pipeline [...]
SEC Settles Charges of Cybersecurity Failure Against GWFS Equities
The Securities and Exchange Commission (SEC) announced it has settled charges against GWFS Equities, a Colorado-based registered broker/dealer (B/D) and affiliate of Great-West Life & Annuity Insurance Co., for allegedly violating the federal securities laws [...]
Objectives-Driven Security: A New Approach To Cybersecurity In The Enterprise
Vishwas is the chief cloud architect of cloud security at McAfee . Vishwas is also co-chair of the Cloud Security Alliance, Silicon Valley. Getty There is a proliferation of security products. As more high-value assets [...]
Cybersecurity Executive Order requires new software security standards
President Biden’s Cybersecurity Executive Order requires new software security standards and best practices. Learn what you can do to prepare now. By: Tim Mackey, Principal Security Strategist, Synopsys Cybersecurity Research Center (CyRC) and Adam Isles, [...]
Biden Signs Executive Order On Improving U.S. Cybersecurity: What IT Pros Should Know
U.S. President Joe Biden has signed an executive order aimed at improving the nation’s cybersecurity and protecting federal government networks, and IT departments and the enterprise networks they’re charged with protecting could all benefit from [...]