SecureWorld News

JULY 31, 2023

Cybersecurity professionals have various views on last week's news from the United States Securities and Exchange Commission (SEC) when it surprised the InfoSec community and the C-suites of corporate America. What about providing D&O (directors and officers liability) insurance to CISOs? After all, a CISO can't do it all.

CISO 98

CISO InfoSec Risk Cybersecurity 98

Threatpost

JULY 19, 2018

In this InfoSec Insider cyber insurance expert Nick Sanna discusses how to balance threat exposures and protecting assets with insurance against hacking, breaches and vulnerabilities.

Cyber Insurance 46

Cyber Insurance Insurance InfoSec Risk 46

Threatpost

JUNE 7, 2022

The costs associated with a cyberattack can be significant, especially if a company does not have an Incident Response plan that addresses risk.

Cyber Risk 66

Cyber Risk Insurance Risk InfoSec 66

Webroot

JULY 25, 2022

Cyber insurance becomes mainstream discussion. As cyberattacks have become more costly and more challenging to track, cyber insurance has gained prominence across the industry. The cyber insurance market is expected to reach around $20B by 2025.

Cyber Insurance 136

Cyber Insurance Insurance Marketing Ransomware 136

SecureWorld News

JUNE 24, 2024

Additionally, there sectoral privacy regulations in the United States, such as the Health Insurance Portability and Accountability Act (HIPAA), and state level regulations like the California Consumer Privacy Act (CCPA). Facilitate continuous monitoring of data risks and threats. Classify data assets by business value and risk.

IoT 109

IoT InfoSec Artificial Intelligence Risk 109

SecureWorld News

OCTOBER 20, 2022

Nearly 70% of the InfoSec workforce say their organizations' cybersecurity teams are understaffed. The shortage is particularly severe in aerospace, government, education, insurance and transportation," the study cites. "A And that risk increases substantially when organizations have a significant staffing shortage.".

Cybersecurity 98

Cybersecurity InfoSec Financial Services Insurance 98

Notice Bored

APRIL 20, 2022

When you acquire or provide professional services, how do you address the associated information risks? In theory, clients and providers should proactively identify, evaluate and address information risks relating to or arising from professional services in order to avoid, reduce or limit the damage arising from such incidents.

Risk 72

Risk Energy and Utilities Computers and Electronics Telecommunications 72

SecureWorld News

MAY 16, 2023

Brennan is speaking at SecureWorld Chicago on June 8, tackling the topic of "I Can See Clearly Now, the Threats Are Gone: The State of InfoSec and Threat Intelligence Today." Mike Parkin, Senior Technical Engineer at Vulcan Cyber, a provider of SaaS for enterprise cyber risk remediation, is a fan of the collaborative.

Cybersecurity 98

Cybersecurity Insurance Cyber Risk CISO 98

SecureWorld News

AUGUST 23, 2023

This morning, Critical Start released its first ever Cyber Risk Landscape Peer Report , which explores some of the major concerns and challenges currently confronting cybersecurity leaders as they manage risk within their organizations. Here are some comments on the cyber risk landscape from cybersecurity vendor experts.

Cybersecurity 97

Cybersecurity Cyber Risk Risk Cyber Insurance 97

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives.

Cybersecurity 98

Cybersecurity CISO InfoSec Risk 98

Security Affairs

NOVEMBER 20, 2023

Check out the OWASP Top Ten APIs for a good overview of the primary identified risks to APIs. Compliance and Legal Risks : In regulated industries, failure to maintain APIs in compliance with industry standards and legal requirements can result in legal and regulatory risks, including fines and legal actions.

Authentication 136

Authentication Government Technology Risk 136

Security Boulevard

MAY 24, 2021

commercial and casualty insurance companies, reportedly met a $40 million ransom demand after suffering a ransomware infection earlier in the year. CNA, one of the largest U.S. As of this writing, that’s the largest ransom demand ever reported to have been paid by a company following a ransomware attack.

Insurance 101

Insurance Ransomware CISO InfoSec 101

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA).

Data privacy 145

Data privacy Encryption Data breaches Insurance 145

IT Security Guru

JUNE 26, 2023

While shadow APIs appear to be less of a concern for those surveyed, this may reflect their organisational risk appetite. Pick Your Path ® was another one that I remember) It’s been around a long time, and a few years ago the Infosec Institute gamified information security by creating the “Zombie Invasion” game. .”

InfoSec 104

InfoSec Manufacturing Risk Software 104

Security Boulevard

APRIL 7, 2023

Justice Department’s new Civil-Cyber Fraud Initiative announced its first settlement last month in a novel action that brought false claims allegations over infosec failures against, notably, a sole proprietor.

Small Business 69

Small Business Cybercrime Government Insurance 69

CyberSecurity Insiders

FEBRUARY 3, 2022

SAN ANTONIO–( BUSINESS WIRE )–Security Awareness Training and Human Risk Management company AwareGO today announced company milestones achieved and overall performance for 2021, including record year-over-year online revenue growth of 219%, enterprise revenue growth of 156%, and total revenue growth of 116%. About AwareGO.

Security Awareness 52

Security Awareness Risk Marketing InfoSec 52

SecureWorld News

OCTOBER 19, 2023

Increased risk of cyberattacks The rising cost of living can lead to an increase in cybercrime, as people become more desperate to make money. Economic effects, including inflationary pressures, have had a broad impact across the InfoSec landscape," Smeaton said. Many are facing multifaceted challenges.

Cybersecurity 105

Cybersecurity CISO Education Phishing 105

Thales Cloud Protection & Licensing

AUGUST 11, 2021

Ransomware incidents covered by cyber insurance policies. Insurance is a valid and efficient tool mitigating the risks of encryption posed by your system's exposure to malware. The insurer provides funding to the insured parties in the event they suffer ransomware invasion.

Ransomware 71

Ransomware Insurance Encryption Cyber Insurance 71

Troy Hunt

MARCH 2, 2020

These were companies spanning all sorts of different industries; big tech, general infosec, antivirus, hosting, finance, e-commerce, cyber insurance - I could go on. The point is the net was cast very wide. We whittled the original 141 companies down to the 43 that were best aligned to the goals I outlined in the original blog post.

Data breaches 361

Data breaches Marketing Cyber Insurance InfoSec 361

Thales Cloud Protection & Licensing

DECEMBER 13, 2024

Global Infosec Awards At the 2024 RSA Conference, Imperva nabbed an astounding eleven Cyber Defense Magazine Global InfoSec Awards. Global Infosec Awards At the 2024 RSA Conference, Imperva nabbed an astounding eleven Cyber Defense Magazine Global InfoSec Awards.

InfoSec 62

InfoSec Authentication Marketing B2B 62

Notice Bored

SEPTEMBER 3, 2020

The need for flexibility is why the ISO27k standards are so vague (essentially: figure out your own requirements by identifying and evaluating your information risks using the defined governance structure - the ISMS itself), rather than explicitly demanding particular security controls (as happens with PCI-DSS).

Risk 52

Risk Insurance Government Marketing 52

Centraleyes

APRIL 1, 2024

Governance, Risk, and Compliance (GRC) platforms help organizations optimize their governance strategies, streamline risk management processes, and ensure compliance with regulatory requirements. now including governance as a core function of cyber GRC and risk management.

Risk 52

Risk Government Artificial Intelligence Software 52

Security Boulevard

DECEMBER 13, 2024

Global Infosec Awards At the 2024 RSA Conference, Imperva nabbed an astounding eleven Cyber Defense Magazine Global InfoSec Awards. This year, MarCom recognized the success of our Data Threat Report (DTR), which achieved nearly 800 media mentions, 295 million impressions, and more than 5 million in the sales pipeline.

InfoSec 52

InfoSec Authentication Marketing Data privacy 52

Centraleyes

DECEMBER 7, 2024

Two Foundational Frameworks: ISO 27001 and HIPAA With the growing number of risks in the information security space, a standardized approach is crucial to protecting an organization’s operations. The standard is not a step-by-step guide on how to build or create an ISMS, but rather a set of risk-based specifications and controls.

Healthcare 52

Healthcare Information Security Risk Surveillance 52

Herjavec Group

NOVEMBER 23, 2021

With an increase in online activity comes an increase in the risk of cyber threats. Companies and individual consumers alike should be aware of the risks of online shopping and the best practices to mitigate vulnerabilities, identify threats, and address attacks. Use Your Credit Card. Update Your Devices and Software.

Cybercrime 52

Cybercrime InfoSec Encryption Risk 52

SecureWorld News

JULY 6, 2021

We believe that there is zero related risk right now for any VSA client who is a SaaS customer or on-prem VSA customer who has their server off. Kaseya ransomware attack: what InfoSec is saying. Should be a wake up call for governments, insurance, businesses etc. Nightmare fuel. link] — Kevin Beaumont (@GossiTheDog).

Ransomware 95

Ransomware Retail Software InfoSec 95

Security Boulevard

APRIL 22, 2025

The banking, finance and insurance sector performed far better with an average of 45 days to close out this vulnerability. In order to reduce risk and harden your networks, we recommend addressing each of the CVEs discussed in this post as well as reading the Verizon 2025 DBIR to understand the trends and tactics used by threat actors.

Energy and Utilities 59

Energy and Utilities Authentication Data breaches VPN 59

SecureWorld News

JULY 6, 2021

We believe that there is zero related risk right now for any VSA client who is a SaaS customer or on-prem VSA customer who has their server off. Kaseya ransomware attack: what InfoSec is saying. Should be a wake up call for governments, insurance, businesses etc. Nightmare fuel. link] — Kevin Beaumont (@GossiTheDog).

Ransomware 52

Ransomware Retail Software InfoSec 52

DoublePulsar

DECEMBER 28, 2023

Three of the victims are cybersecurity vendors, and I suspect they may have access to another larger infosec vendor that they haven’t disclosed. Risk assess your MSPs. You may want to manage your own additional backups of the services your MSPs provide during heightened risks. Your MSPs are risky during times of war.

Backups 81

Backups DDOS Accountability Hacking 81

Herjavec Group

JULY 20, 2021

Every month one of HG’s experts will provide advice and insights based on their extensive experience in the infosec industry. Consult with corporate legal counsel and business risk insurance companies on how best to respond to a possible malware outbreak before one occurs. Prepare with the All Necessary Parties.

Ransomware 59

Ransomware Malware Backups Insurance 59

ForAllSecure

JANUARY 11, 2023

Like insurance apps, you know, where there might be some weird series of forms. And you know, I'm not an insurance guy. I joined a Discord server called InfoSec prep. I discuss this in greater detail in EP 44, where the SAN Institute is deliberately looking to hire people without CS degrees into the infosec world.

DNS 40

DNS Hacking Penetration Testing Education 40

CyberSecurity Insiders

DECEMBER 8, 2021

This is not a new problem and with its increasing frequency it’s important for our leaders to understand how profitable an industry RaaS has become, and the risks they may be facing. With the onslaught of breaches expected to continue, so will the spike in cybersecurity insurance premiums.

Data breaches 142

Data breaches Ransomware Government Cybersecurity 142

The Last Watchdog

MAY 19, 2021

This very high-profile caper is part of an extended surge of ransomware attacks, which quintupled globally between the first quarter of 2018 and the fourth quarter of 2020, and is expected to rise 20 percent to 40 percent this year, according to insurance giant Aon. Keatron Evans, principal security researcher, Infosec Institute.

Hacking 205

Hacking Government Ransomware Technology 205