Security and privacy ranked second among AI concerns Security Staff November 2, 2023 Consumer trust in artificial intelligence was analyzed in a recent report by dunhumby. Forty-six percent cite security as a grocery use case for AI.Read More
SolarWinds CISO faces fraud charges for misleading investors Rachelle Blair-Frasier November 2, 2023 A recent announcement by the SEC reveals SolarWinds Corporation and its CISO are facing charges for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities related to a 2020 cyberattack.Read More
HHS settles data breach investigation Security Staff November 1, 2023 The U.S. Department of Health and Human Services (HHS) settled healthcare data breach charges alongside the Office for Civil Rights (OCR).Read More
NSA releases guidelines to mitigate phishing Security Staff November 1, 2023 The National Security Agency (NSA) has partnered with other U.S. agencies to warn against phishing attacks and provide security strategies.Read More
Over half of CISOs measure security program maturity monthly Security Staff October 31, 2023 Chief Information Security Officers (CISOs) were surveyed on their security programs and risk management strategies, including attack response times.Read More
API open authentication vulnerabilities discovered by researchers Security Staff October 31, 2023 API security vulnerabilities in open authentication (OAuth), including user account information, were recently discovered by Salt Security.Read More
One in five executives have shared work passwords outside the company Security Staff October 31, 2023 A report found that one in five leaders have shared their work password with someone outside the company and 77% use easy-to-remember password hacks.Read More
White House announces executive order to manage AI risk Rachelle Blair-Frasier October 31, 2023 Yesterday, the White House announced a sweeping executive order aimed to manage the risk of artificial intelligence (AI).Read More
NASCO notifies individuals of a data breach through MOVEit Security Staff October 30, 2023 NASCO announced a data breach. NASCO utilized MOVEit software, which was accessed in late May and the breach was discovered in mid-July. Read More
FTC says financial institutions must disclose data breaches in 30 days Security Staff October 30, 2023 The Federal Trade Commission (FTC) has amended the Safeguards Rule requiring non-banking financial institutions to report data breaches.Read More