Data Breach Today

JANUARY 29, 2021

Report on Canceled VA Project Offers Governance Lessons for Others The Department of Veterans Affairs’ watchdog agency alleges that two VA employees “concealed” and “mispresented” the cybersecurity and privacy risks of an ambitious "big data" project that would have analyzed 22 million veterans’ health records dating back two decades.

Big data 299

Big data Risk Privacy Security 299

Data Breach Today

JANUARY 24, 2024

Experts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S. federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthorized, Chinese-manufactured video conference cameras.

Manufacturing 289

Manufacturing Security Government Risk 289

Data Breach Today

AUGUST 9, 2022

CSO on How OneTrust's Platform Brings Privacy, Compliance and Governance Together OneTrust has put nearly $1 billion in investment to good use, helping companies address data governance, security assurance, third-party risk and more, Chief Strategy Officer Blake Brannon says.

Government 239

Government Privacy Compliance Risk 239

Data Breach Today

JULY 31, 2021

Agency Now Seeks Feedback to Help Address Governance Challenges Citing a need to secure artificial intelligence technologies, NIST is working to create risk management guidance around the usage of AI and machine learning, the agency announced this week. Specifically, NIST seeks feedback to address governance challenges.

Risk 278

Risk Artificial Intelligence Government Security 278

The Last Watchdog

JUNE 23, 2023

June 22, 2023 — Dasera , the premier automated data security and governance platform for top-tier finance, healthcare, and technology enterprises, is thrilled to unveil “Ski Lift,” a complimentary platform exclusively designed for Snowflake users. Mountain View, Calif.

Government 113

Government Security Compliance Risk 113

Data Breach Today

DECEMBER 21, 2023

A Multitude of Considerations for Entities As Use of Genomic Data Advances The explosion in applications using genomic data - from drug and vaccine development and consumer ancestry testing to law enforcement work - is heightening the need to carefully address critical privacy and security concerns around this sensitive data, government authorities (..)

Privacy 265

Privacy Risk Government Security 265

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. There was another warning from the U.S.

Risk 264

Risk Artificial Intelligence Cybersecurity Compliance 264

Data Breach Today

APRIL 5, 2022

Witnesses at Hearing Also Discuss Role of Government in Security Incident Response A water trade association, at a congressional hearing Tuesday, urged the federal government to institute minimum cybersecurity standards for water systems.

Risk 246

Risk IT Government Cybersecurity 246

eSecurity Planet

APRIL 29, 2024

Integrated risk management (IRM) is a discipline designed to embed risk considerations for the use of technology throughout an organization. In other words, it links technology spending directly to the value of the resource protected and the associated risks controlled by that technology.

Risk 67

Risk Compliance Communications Insurance 67

The Last Watchdog

JULY 5, 2022

At any point the external environment can throw a curve ball – new government regulations, changes in political and social dynamics, or trends in sustainability to name a few. Cyber security keeps the C-suite up at night and perhaps that’s no surprise. Context of risk. Risk, including cyber risk, cannot be viewed in isolation.

Risk 279

Risk Military Marketing Data Privacy 279

Data Breach Today

JUNE 29, 2021

GAO Offers Recommendations to Improve Space Agency's Cyber Protections A government watchdog is urging NASA to make multiple improvements to its cybersecurity and risk management policies to counter threats to the space agency's network, infrastructure and data.

Risk 258

Risk Cybersecurity Government Security 258

Security Affairs

OCTOBER 30, 2023

Canada banned the Chinese messaging app WeChat and Kaspersky antivirus on government mobile devices due to privacy and security risks. The Government of Canada announced a ban on the use of the WeChat and Kaspersky applications on government-issued mobile devices due to privacy and security risks.

Government 120

Government Privacy Risk Data collection 120

IT Governance

JUNE 15, 2022

In an increasingly digital world, there are an escalating number of cyber security risks for business to address. IT Governance identified more than 1,200 publicly disclosed data breaches in 2021 , while another report found that security incidents cost almost £3 million on average. Poor patch management. Weak passwords.

Risk 144

Risk Security Passwords Phishing 144

Schneier on Security

MARCH 1, 2021

Early in 2020, cyberspace attackers apparently working for the Russian government compromised a piece of widely used network management software made by a company called SolarWinds. It was a huge attack, with major implications for US national security. SolarWinds certainly seems to have underspent on security. Who is at fault?

Risk 144

Risk Security Cybersecurity Marketing 144

Data Breach Today

DECEMBER 24, 2020

Agency Says New Law in China Opens Door to Government Data Access The Department of Homeland Security is warning U.S. companies about data theft risks associated with the use of Chinese technology and digital services, citing a new law in China giving the government the right to access data.

Risk 269

Risk Government Access Security 269

Data Breach Today

SEPTEMBER 14, 2023

agencies to address hard problems like quickly writing secure code but comes with risks around nation-states generating attacks more efficiently. White House, DOD, DHS Leaders Reveal How their Agencies Use Artificial Intelligence AI allows U.S.

Artificial Intelligence 260

Artificial Intelligence Government Cybersecurity Risk 260

IBM Big Data Hub

MAY 9, 2024

The healthcare industry faces arguably the highest stakes when it comes to data governance. The impact of healthcare data usage on people’s lives lies at the heart of why data governance in healthcare is so crucial.In healthcare, managing the accuracy, quality and integrity of data is the focus of data governance.

Government 74

Government GDPR Compliance Analytics 74

Data Breach Today

MARCH 29, 2023

All Social Media Apps Collect Information on a Scale That Facilitates Surveillance There's much national security ado about how much user data gets collected by the Chinese-owned, wildly popular video-sharing app TikTok.

Data collection 310

Data collection Risk Government Security 310

Security Affairs

NOVEMBER 24, 2022

The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that the British government ordered its departments to stop installing Chinese security cameras at sensitive buildings due to security risks.

Government 86

Government Security Risk Manufacturing 86

IBM Big Data Hub

OCTOBER 16, 2023

As more businesses use AI systems and the technology continues to mature and change, improper use could expose a company to significant financial, operational, regulatory and reputational risks. This is where AI governance comes into play: addressing these potential and inevitable problems of adoption.

Government 77

Government Risk Artificial Intelligence Metadata 77

Data Breach Today

SEPTEMBER 29, 2021

Agencies Offer Advice on Minimizing Attack Surface In a bid to address security risks associated with the use of virtual private network solutions, the National Security Agency and the Cybersecurity and Infrastructure Security Agency on Tuesday offered government leaders guidance on selecting remote access VPNs and strengthening their security.

Security 263

Security Cybersecurity Risk Government 263

Schneier on Security

JUNE 1, 2023

Earlier this week, I signed on to a short group statement , coordinated by the Center for AI Safety: Mitigating the risk of extinction from AI should be a global priority alongside other societal-scale risks such as pandemics and nuclear war. Poses ‘Risk of Extinction,’ Industry Leaders Warn.”

Risk 118

Risk Artificial Intelligence Government Security 118

Data Breach Today

AUGUST 27, 2019

Department of Homeland Security to Help With Database Protections Within a month, the U.S. Department of Homeland Security hopes to launch a program to help states protect voter registration databases and systems in advance of the 2020 presidential election.

Ransomware 236

Ransomware Risk Security Government 236

Data Breach Today

APRIL 16, 2020

As healthcare organizations navigate the COVID-19 crisis, they should take critical steps to improve their security posture and third-party security risk governance, says consultant Brenda Ferraro, the former CISO at Meritain Health, an Aetna subsidiary.

Risk 213

Risk Government Security 213

KnowBe4

APRIL 3, 2023

New global data shows that those government employees that work solely in the office are the new minority, IT lacks visibility, and user actions put the government at risk.

Government 88

Government Risk IT Security awareness 88

Schneier on Security

SEPTEMBER 13, 2018

Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. These risks are real, but I think they're much less than mandating backdoors for everyone.

Government 65

Government Risk Security Paper 65

The Last Watchdog

NOVEMBER 29, 2023

The report outlines 12 predictions and strategies to help IT, security, risk management, and compliance leaders tackle data privacy and cyber-risk challenges for the coming year. The Kiteworks platform provides customers with a Private Content Network that delivers content governance, compliance, and protection.

Risk 100

Risk Data Privacy Compliance Communications 100

IT Governance

NOVEMBER 23, 2023

You’d therefore expect that the sector fares better at data security than your average organisation. The public data set on the ICO (Information Commissioner’s Office) website shows that data security isn’t necessarily better for financial organisations. What do the statistics say?

Risk 104

Risk Data breaches Authentication Financial Services 104

Data Breach Today

DECEMBER 15, 2023

Alan Turing Institute Calls for 'Shift in Mindset' to Tackle National Security Risk The U.K. national institute for artificial intelligence urged the government to establish red lines against the use of generative AI in scenarios in which the technology could take an irreversible action without direct human oversight.

Artificial Intelligence 294

Artificial Intelligence Government Risk Security 294

AIIM

NOVEMBER 22, 2022

Good governance ensures that security and management requirements can be met without sacrificing productivity. Ten Tips for Applying Information Governance to Microsoft 365. So it's vital that you have a governance structure for them. Balance risks and benefits. Some or all may seem familiar: Talk to your users.

Government 115

Government Information governance Cloud Compliance 115

erwin

FEBRUARY 12, 2021

Managing an organization’s governance, risk and compliance (GRC) via its enterprise and business architectures means managing them against business processes (BP). Governance, risk and compliance are treated as isolated bubbles. Data-related risks are not connected with the data architects/data scientists.

Compliance 98

Compliance Risk Government Data breaches 98

Krebs on Security

JUNE 15, 2023

government agency in charge of improving the nation’s cybersecurity posture is ordering all federal agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes amid a surge in attacks targeting previously unknown vulnerabilities in widely used security and networking appliances.

Risk 213

Risk Ransomware Cybersecurity Access 213

Security Affairs

DECEMBER 13, 2023

A Joint Committee on the National Security Strategy (JCNSS) warns of the high risk of a catastrophic ransomware attack on the UK government. The British government is accused of failing to mitigate the risk of ransomware attacks. said Dame Margaret Beckett, the chair of the JCNSS. Beckett added.

Ransomware 99

Ransomware Risk Government Cybersecurity 99

IT Governance

OCTOBER 5, 2020

It can be tricky to know where to begin, which is why our Cyber Security Risk Scorecard contains a simple guide to help you secure your systems. Our Cyber Security Scorecard provides a checklist of essential security controls. Conduct a cyber security risk assessment. Install firewalls.

Risk 128

Risk Security Encryption Information Security 128

Data Matters

MARCH 11, 2022

Securities and Exchange Commission (SEC) proposed new cybersecurity rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. Required disclosure of cybersecurity risk management and strategy. On March 9, 2022, the U.S.

Cybersecurity 88

Cybersecurity Risk Government e-Discovery 88

Hunton Privacy

FEBRUARY 28, 2024

Christakis makes the case that the EU General Data Protection Regulation (“GDPR”), the Charter of Fundamental Rights of the European Union and EU law, more generally, allow a more nuanced and risk-based approach to data transfers than the restrictive approach often applied. In the study, Prof. CIPL and Prof.

Paper 67

Paper Risk GDPR Government 67

Data Breach Today

NOVEMBER 24, 2020

Government Set to Enforce Minimum Security Standards for Telecommunications Networks The Telecommunications Security Bill introduced by the British government aims to set enforceable, minimum security standards for the nation's telecommunications providers, backed by penalties, including for any company that opted to use equipment from high-risk providers (..)

Security 226

Security Government Risk 226