Cybersecurity, Financial Services, IT and Ransomware

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Some requirements also apply specifically to larger covered entities falling under the “Class A companies” category.

Financial Services

Financial Services Cybersecurity Compliance Government

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

The Last Watchdog

SEPTEMBER 10, 2019

Related: How 5G will escalate DDoS attacks Caught in the pull of digital transformation , companies are routing ever more core operations and services through the Internet, or, more precisely, through IP addresses, of one kind or another. Yet both categories of attacks continue to turn up, hour-to-hour, on a daily basis, Sundberg says.

Cloud

Cloud Security Digital transformation Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats. With Pulse Wizard, users can easily and automatically extract IoCs from sources in different formats. critical infrastructure.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”).

Financial Services

Financial Services Cybersecurity Risk Passwords

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

There are going to be a raft of scams varying from blood drives to pleas for charitable contributions for victims and their families. Unfortunately, this type of scam is the worst kind of phishbait, and it is a very good idea to inoculate people before they get suckered into falling for a scam like this. businesses.

Phishing

Phishing Security awareness Compliance Risk

NYDFS proposes significant cybersecurity regulation amendments

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500. The Proposed Regulation Changes. Governance.

Cybersecurity

Cybersecurity Risk Passwords Compliance

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

Late December and early January tend to be a busy time for everyone, so you may have missed a privacy update or two during that time. We have set out some updates in the form of questions, with some links where you can find more information. Answers are below. Which one is NOT on the list? In the Matter of Coinbase , Consent Order, ¶ 67 (Jan.

Privacy

Privacy Cybersecurity Personal data Insurance

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Adopting the NIST Cybersecurity Framework.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Congress Agrees – 72 Hour Cyber Incident Reporting Requirement to Take Effect

Data Protection Report

MARCH 16, 2022

The relevant portions of the law, titled the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (“Act”) proposes reporting requirements for incidents, establishes new programs to curtail ransomware attacks and encourages information sharing between government agencies. Reporting Requirements.

Ransomware

Ransomware FOIA Agriculture Cybersecurity

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

KnowBe4

JUNE 20, 2023

Overall, the use of stolen credentials is the overwhelming leader in data breaches, being involved in nearly 45% of breaches – this is more than double the second-place spot of "Other" (which includes a number of types of threat actions) and ransomware, which sits at around 20% of data breaches. Your employees are your last line of defense.

Data breaches

Data breaches Phishing Security awareness Ransomware

CPRA Becomes the New Standard. Are You Ready?

Thales Cloud Protection & Licensing

NOVEMBER 30, 2020

The National Law Review notes “Under the CPRA, certain new rights and compliance burdens will attach to a new category of personal information called ‘sensitive personal information.’” It amends the California Consumer Privacy Act (CCPA) and goes into effect January 1, 2023, for all data collected starting January 1, 2022 1.

Privacy

Privacy GDPR Compliance Data breaches

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Investors recognize the potential too, as funding for cybersecurity ventures more than doubled from previous years to almost $22 billion in 2021. Series B SECURITI.ai

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

Trending Sources

6 Best Threat Intelligence Feeds to Use in 2023

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

NYDFS proposes significant cybersecurity regulation amendments

ICYMI – Late December in privacy and cybersecurity

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Congress Agrees – 72 Hour Cyber Incident Reporting Requirement to Take Effect

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

CPRA Becomes the New Standard. Are You Ready?

Top Cybersecurity Startups to Watch in 2022

Stay Connected