Cybersecurity

Third-party risk management (TPRM) has grown in prominence as organizations increase their reliance on external parties, from cloud providers to credit card processors. As more enterprises invest in this critical business function, certain best practices are becoming key to a...

It’s no secret that the volume of data created by organizations and people multiplies daily. That data is spread across more tools, platforms, devices and clouds than ever before, creating regulatory challenges and security risk. This article looks at simplifying...

Multiple factors are pushing ransomware, including growing attack patterns that include double and triple extortion, criminal business models taking advantage of ransomware, cryptocurrencies and wave of supply chain attacks During the COVID-19 crisis, another outbreak took place in the cyber...

Cyber insurer Allianz Global Corporate & Specialty (AGCS) analyzes risk developments around ransomware in its report, Ransomware Trends: Risk and Resilience. The report explores statistics surrounding ransomware, concluding that many factors point to ransomware attacks being here to stay, including...

Cybersecurity failures can happen to any company and anyone. But tactics that fight human nature increase the chances of failure. The best defense strategies meet employees where they are, measure outcomes, and update accordingly.

Data security principles codified in cybersecurity protocols like GDPR, CCPA, PCI DSS and others are raising protection standards. They also spell more work for software developers. Managers, meanwhile, must decide whether to prioritize security in an unstable economy.

An IT-centric network perimeter security model is increasingly insufficient to protect your organization from cyberattacks. Onclave Networks’ Scott Martin advocates a “zero trust” approach to security as a means of reinforcing defenses. Sponsored The rise in cyberattacks and ransomware has...

Government contractors will soon need to obtain CMMC certification, but there are currently just a few C3PAO accreditors that can confer it. Tony Bai, federal practice lead at A-LIGN, emphasizes companies shouldn't panic due to the logistical bottleneck. They can...

As organizations claw their way back from the global pandemic, every penny has to be justified. But the threat of a cyberattack is too important to ignore. Implementing an integrated security architecture can help your infosec team consolidate functions and...

While organizations around the world are coming to terms with ransomware, a new cyberthreat is growing in popularity. Extortionware  attacks can affect both organizations and individuals, and may continue to pose a risk long after defenses have been breached.

SolarWinds is regarded as the widest-reaching cyber espionage operation against the United States government to date. Dan Verton discusses what we know so far and actions other businesses and organizations should consider in an effort to mitigate the effects of...

Organizations often think about cyber defenses in terms of hardware upgrades, software updates and cybersecurity tools. Boards want something tangible when they allocate resources, but the truth is that people are by far a company's weakest link. Hacking complex systems...