Cybersecurity

A new administration in the White House is always synonymous with change. In the aftermath of four years of active deregulation; however, it’s likely to be a whole new world for legal and compliance teams. As the Biden administration moves...

Towerwall’s Michelle Drolet discusses the two threads of SOC 2 compliance (types 1 and 2), outlines the Trust Services Criteria, and details the benefits of adhering to these standards. While Service Organization Control (SOC) 2 compliance isn’t mandatory, it can...

Email phishing is at its highest level in three years, and one of the latest lines of attack capitalizes on the strict rules of GDPR, targeting executives and public-facing emails at businesses. Valimail’s Seth Blank examines how to protect your...

On Data Privacy Day, Kroll’s Alan Brill and Brian Lapidus share recommendations for companies who have fallen victim to ransomware attacks, emphasizing the importance of reporting a breach promptly and how to investigate an attack under the assumption that data...

LMG Security’s Madison Iler discusses how to structure a vendor risk management program (and where to spend your time) and shares common missteps that can reduce program effectiveness. As evidenced by the recent far-reaching SolarWinds breach, supply chain attacks represent...

As unpleasant an option as it is, victims of ransomware attacks often just pay up in order to recover sensitive data. Nutter’s Seth Berman and James Gately offer an alternative. Ransomware attacks hit suddenly and without apparent warning. One morning,...

The role of SOC 2 compliance in securing your data can’t be overstated. Strike Graph CEO Justin Beals discusses how to find the right audit partner – one who meets your needs as they test the operational effectiveness of your...

KnowBe4’s Chief Evangelist and Security Officer, Perry Carpenter, discusses how to protect your organization’s data from an often-overlooked risk. Sponsored Organizations set up all sorts of technology-driven safeguards to help them protect their own and their customers’ data. These investments...

KnowBe4’s Stu Sjouwerman offers a peek into the ways of a cybercriminal, providing organizations unique insights into how they can strengthen their cybersecurity strategy. With everything digital becoming automated and connected, a cyber pandemic could spread faster than a biological...

Following a recent advisory from the Office of Foreign Assets Control, attorneys from Manatt, Phelps & Phillips consider the difficulty of paying ransomware attackers’ ransoms without violating U.S. sanctions law. Picture this: At some point in the next six months,...

An internal investigation can feel like a high-stakes game of needle-in-the-haystack, and current world challenges set that haystack on fire. Casepoint’s David Carns addresses how organizations can plan to respond effectively while avoiding cost and risk. While most of today’s...

Organizations are under an ever-growing host of threats. We’re seldom as safe as we think. Information Security Forum’s Steve Durbin outlines some standard beliefs it’s time to call into question. While the internet is an essential business conduit for countless...