Data Breach Today

NOVEMBER 16, 2023

In this episode of "Cybersecurity Insights," Hedderman discusses privacy, third-party vendor risk, and lawyers' use of AI. Regulating AI is "like regulating Jell-O," said Massachusetts risk counsel Jenny Hedderman, but states are looking at regulating "areas of harm" rather than AI as a whole.

Privacy 268

Privacy Government Cybersecurity Risk 268

Data Breach Today

FEBRUARY 27, 2023

government official urged industry to become more conscientious over cybersecurity by preventing vulnerabilities from accumulating before products ship. CISA head Jen Easterly called for a more assertive role for government and an industrywide shift to memory-safe programming languages.

Cybersecurity 233

Cybersecurity Government 233

Data Breach Today

JULY 17, 2023

Monitor Logs to Spot Zero-Day Attack, US Cybersecurity Officials Advise Suspected Chinese hackers gained access to senior U.S. government says logging was key to spotting it. officials' emails by exploiting a zero-day vulnerability in Microsoft's cloud environment.

Government 225

Government Cybersecurity Cloud Access 225

Data Breach Today

NOVEMBER 27, 2020

Government Accountability Office is urging policymakers to adopt coordinated cybersecurity monitoring of 5G networks, to ensure a safe rollout of the new technology. GAO: Challenges Could Affect the Performance of US 5G Wireless Networks The U.S.

Cybersecurity 164

Cybersecurity Government 164

The Last Watchdog

SEPTEMBER 25, 2023

If you’re a small business looking for the secret sauce to cybersecurity, the secret is out: start with a cybersecurity policy and make the commitment to security a business-wide priority. The average cost of a cybersecurity breach was $4.45 The average cost of a cybersecurity breach was $4.45 Stay proactive.

Cybersecurity 223

Cybersecurity Data breaches Phishing Compliance 223

Data Breach Today

JANUARY 11, 2019

government shutdown is impacting agencies integral to the nation's cybersecurity readiness, and experts fear its long-term impact on the country's cyberattack response capabilities, as well as the risk that it will drive away desperately needed new cybersecurity talent from entering public service.

Cybersecurity 228

Cybersecurity Government Risk IT 228

Data Breach Today

APRIL 7, 2022

Three Aspects of Governance that Need Consideration If an organization doesn’t know who is accessing what, how can they be trusted to make sure a bad actor isn’t gaining access to data, assets, or systems they shouldn’t?

Government 241

Government Access Cybersecurity 241

Data Breach Today

OCTOBER 6, 2023

and Europe that could regulate AI, recent developments within the EU cybersecurity and privacy policy arena, and the disparities between the perspectives of business leaders and cybersecurity leaders on the security landscape.

Government 236

Government Cybersecurity Privacy Security 236

Data Protection Report

NOVEMBER 2, 2023

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized the second amendment to its cybersecurity regulations, which are available here. NYDFS retained the broader term “cybersecurity event” that it uses in several sections of the regulation, but, with respect to notifications to NYDFS (§ 500.17(a)),

Cybersecurity 105

Cybersecurity Compliance Ransomware Government 105

Data Breach Today

JULY 11, 2022

Island Hopes to Diminish Spate of Ransomware and Phishing Incidents The government of Puerto Rico announced an investment of $7.6 million toward strengthening cybersecurity on the island. The island has undergone a string a embarrassing cybersecurity incidents, including a phishing incident that stole $2.6

Cybersecurity 213

Cybersecurity Phishing Ransomware Government 213

Data Breach Today

MAY 27, 2021

Security Directive Issued Following Colonial Pipeline Ransomware Attack The Department of Homeland Security has issued a cybersecurity directive that requires the operators of oil and gas pipelines to report ransomware attacks and other security incidents to the government and take other security steps.

Cybersecurity 317

Cybersecurity Ransomware Security Government 317

Data Breach Today

DECEMBER 2, 2022

UK Government Presses Ahead With Proposal to Charge for Regulation The Conservative U.K. government said it will propose updates to the country's main cybersecurity regulation, including a requirement for the private sector to reimburse the public sector for enforcement activities.

Cybersecurity 190

Cybersecurity Government IT 190

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. This notice requirement explicitly applies to cybersecurity incidents occurring to the covered entity itself, its affiliates, or a third-party service provider.

Cybersecurity 111

Cybersecurity Financial Services Compliance Government 111

Hunton Privacy

JULY 5, 2022

On June 21, 2022, President Biden signed into law, the State and Local Government Cybersecurity Act of 2021 (S. 2520) (the “Cybersecurity Act”) and the Federal Rotational Cyber Workforce Program Act (S. The Cybersecurity Act amends certain provisions of the Homeland Security Act of 2002.

Cybersecurity 105

Cybersecurity Government Security Education 105

Data Protection Report

NOVEMBER 28, 2023

To help provide some guidance, Norton Rose Fulbright Canada hosted its 2023 technology, privacy and cybersecurity virtual summit. Our leading lawyers were joined by prominent industry leaders to discuss and explore the latest developments, challenges and opportunities in the technology, privacy, and cybersecurity landscape.

Cybersecurity 136

Cybersecurity Privacy Risk Artificial Intelligence 136

Data Breach Today

OCTOBER 1, 2021

Cites Need to Secure Privately Owned Critical Infrastructure, Signs Proclamation As Cybersecurity Awareness Month kicks off this week, U.S. President Joe Biden has weighed in on his administration's efforts to curb cyberattacks and bolster the federal government's security posture.

Cybersecurity 246

Cybersecurity Security Government 246

The Last Watchdog

OCTOBER 27, 2023

million grant through the MassTech Collaborative’s MassCyberCenter to CyberTrust Massachusetts, a nonprofit dedicated to strengthening the cybersecurity ecosystem, to support cybersecurity resiliency for Massachusetts communities and help develop a talent pipeline at Masschusetts colleges and universities to encourage students to enter the field.

Cybersecurity 100

Cybersecurity Artificial Intelligence Government Security 100

The Last Watchdog

MAY 30, 2022

It’s no secret that cybersecurity roles are in high demand. Today there are more than 500,000 open cybersecurity roles in the U.S., These individuals have many transferable skills that would make cybersecurity a prosperous civilian career. This experience can also be helpful when training cybersecurity talent.

Cybersecurity 278

Cybersecurity Military Government Security 278

Data Breach Today

MARCH 29, 2021

Audit Calls for Prompt Government Action, Especially in Wake of SolarWinds Attack The Government Accountability Office is urging the U.S.

Cybersecurity 294

Cybersecurity Government 294

Data Breach Today

DECEMBER 8, 2022

Experts Urge Them to Collaborate, Demand More From Vendors, Guide the Government As the potential harm posed by technology increases, the cybersecurity stakes are changing, warned speakers at Black Hat Europe.

Cybersecurity 144

Cybersecurity Government 144

Schneier on Security

NOVEMBER 3, 2023

Another example of a large and influential state doing things the federal government won’t: Boards of directors, or other senior committees, are charged with overseeing cybersecurity risk management, and must retain an appropriate level of expertise to understand cyber issues, the rules say.

Cybersecurity 100

Cybersecurity Security Government Risk 100

Data Breach Today

NOVEMBER 29, 2023

Federal Agencies Lack Comprehensive Guidelines For Developing SBOMs, Experts Say Procurement experts testified to the House subcommittee on cybersecurity, information technology and government innovation Wednesday that government requirements leave too many unanswered questions and ambiguities for federal agencies when it comes to implementing SBOMs. (..)

Cybersecurity 223

Cybersecurity Government IT 223

Data Matters

OCTOBER 28, 2022

Recently, several developments have been proposed or announced to help identify and mitigate cyber risk for United States critical infrastructure operators and software in an effort to further bolster the cybersecurity posture of the federal government.

Cybersecurity 87

Cybersecurity Government Privacy Risk 87

Data Breach Today

NOVEMBER 22, 2023

Australia Envisions Cybersecurity Leadership in the Pacific With New Strategy The Australian government says it will mandate ransomware reporting by businesses, boost law enforcement capacity and fund startups with innovative cybersecurity solutions under a strategy unveiled Monday. "We

Ransomware 260

Ransomware Cybersecurity Government Security 260

Data Breach Today

JUNE 30, 2023

The 2003 Cyberattack Has Been Linked to a State-Sponsored Cyberespionage Campaign The United Kingdom's national cybersecurity agency on Friday marked the 20th anniversary of its response to the first-ever cyberattack against the government by disclosing how government agencies responded.

Government 144

Government Cybersecurity Security IT 144

Data Breach Today

JULY 11, 2022

Company Accused of Misrepresenting Its Defenses to Federal Government A federal contractor that makes rocket propulsion systems will pay $9 million to settle allegations from a former executive that it misled the U.S. government over the state of its cybersecurity defenses even after it suffered nation-state hacks.

Cybersecurity 204

Cybersecurity Government IT 204

Dark Reading

SEPTEMBER 28, 2023

CISA announces it will furlough more than 80% of staff indefinitely if Congress can't reach an agreement to fund the federal government.

Government 129

Government Cybersecurity IT 129

The Last Watchdog

OCTOBER 5, 2023

5, 2023 – Today, the Healey-Driscoll Administration kicked off Cybersecurity Month in Massachusetts with the announcement of $1,136,911 in funding to develop a new cybersecurity training center at MassBay Community College and support the existing center at Bridgewater State University. Worcester, Mass.,

Cybersecurity 114

Cybersecurity Government Security Education 114

The Last Watchdog

MARCH 14, 2023

A new report from the Bipartisan Policy Center ( BPC ) lays out — in stark terms – the prominent cybersecurity risks of the moment. Biden’s impact on cybersecurity. The BPC’s Top Risks in Cybersecurity 2023 analysis calls out eight “top macro risks” that frame what’s wrong and what’s at stake in the cyber realm.

Cybersecurity 210

Cybersecurity Data Privacy Privacy Military 210

Data Breach Today

JUNE 28, 2023

Online Safety Bill Also Criticized by Leading Cybersecurity Experts and Academics Technology giant Apple has joined the chorus of voices calling on the British government to rethink its proposed Online Safety Bill legislation intended to increase public safety by monitoring people's private communications via client-side scanning.

Government 130

Government Cybersecurity Communications IT 130

Data Breach Today

MAY 3, 2022

Cybersecurity Agency Finds Spyware on Devices of Prime Minister, Defense Minister Smartphones used by Spain's prime minister and defense minister were infected with Pegasus spyware built by Israel's NSO Group, government officials allege.

Government 216

Government Cybersecurity 216

Dark Reading

NOVEMBER 13, 2023

Complexity impedes the universal and consistent application of security policy, which is an obstacle to adequately securing government environments.

Government 95

Government Cybersecurity Security 95

Data Breach Today

NOVEMBER 10, 2023

Cybersecurity Concerns Persist Over the Revised eIDAS Web Certificate Mandate European Union lawmakers and trading bloc governments reached a provisional agreement on a revised identity framework intended to digitize access to key public services for the majority of Europeans by the start of the next decade.

Cybersecurity 271

Cybersecurity Government Access 271

Data Breach Today

JUNE 29, 2021

GAO Offers Recommendations to Improve Space Agency's Cyber Protections A government watchdog is urging NASA to make multiple improvements to its cybersecurity and risk management policies to counter threats to the space agency's network, infrastructure and data.

Cybersecurity 260

Cybersecurity Risk Government Security 260

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Burkov was arrested in 2015 by Israeli authorities, and the Russian government fought Burkov’s extradition to the U.S.

Cybersecurity 245

Cybersecurity Passwords Security Phishing 245

Krebs on Security

JULY 26, 2023

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov , the former founder and CEO of one of Russia’s largest cybersecurity firms. Ilya Sachkov. Image: Group-IB.com.

Cybersecurity 196

Cybersecurity Ransomware Military Government 196

Data Matters

NOVEMBER 20, 2023

A number of lawyers from Sidley’s global Privacy and Cybersecurity practice have contributed to this publication. The post The Tenth Edition of Lexology In-Depth: Privacy, Data Protection and Cybersecurity (formerly The Privacy, Data Protection and Cybersecurity Law Review) is now available appeared first on Data Matters Privacy Blog.

Cybersecurity 95

Cybersecurity Privacy Data Privacy Security 95