All Cybersecurity articles – Page 7
-
News BriefCybersecurity, AML risks among SEC 2024 exam priorities
SEC examiners will be asking tough questions of registered firms regarding how they handle risks related to operational security, interact with financial technology companies and crypto assets, and the maturity of their anti-money laundering programs.
-
News BriefFCA fines Equifax’s U.K. unit $13.3M over 2017 data breach
The Financial Conduct Authority fined Equifax’s U.K. unit more than £11 million (U.S. $13.3 million) regarding the company’s 2017 data breach that affected approximately 13.8 million U.K. consumers.
-
News BriefEOS Matrix battles back against Croatian DPA in $5.8M GDPR case
Debt collector EOS Matrix said it will challenge a General Data Protection Regulation penalty levied against it by the Croatian data protection authority after finding the data in question in the case does not match the data in its database.
-
PremiumExpert: How data hoarding increases businesses’ cyber risks
Holding on to data for longer than necessary creates vulnerabilities for businesses by giving cyberattackers more avenues to access an organization’s computer systems.
-
PremiumOCC examiners to focus 2024 attention on risks that led to bank failures
Bank examiners from the Office of the Comptroller of the Currency are focusing their supervision attention on how banks manage risks that brought down three mid-sized financial institutions earlier this year.
-
News BriefMGM discloses $100M hit from cyberattack
MGM Resorts International said it expects to take a $100 million hit as part of the fallout of a cyberattack that has most significantly impacted its Las Vegas operations.
-
PremiumExpert: Clorox ‘trying to do the right thing’ with rapid cyberattack disclosures
The timing of a recent cyberattack against Clorox juxtaposed against the Securities and Exchange Commission’s adoption of its cybersecurity incident disclosure rule soon to take effect has presented a case study regarding how companies might seek to meet the requirements of the rule.
-
Resourcee-Book: Risks, opportunities under SEC’s cyber incident disclosure rule
The clock is ticking for public companies to put in place policies and practices to meet the requirements of the Securities and Exchange Commission’s newly approved cybersecurity incident disclosure rule.
-
News Brief
Cybersecurity firm Intrusion to settle SEC fraud claims
Texas-based cybersecurity company Intrusion was charged with fraud by the Securities and Exchange Commission regarding alleged materially false and misleading statements made by its former chief executive.
-
PremiumCalifornia cybersecurity audit rule scope begins taking shape at CPPA meeting
A final version of California’s cybersecurity audit rules likely won’t be released until later next year at the earliest, according to a rough timeline discussed by the California Privacy Protection Agency.
-
PremiumPaying ransom to avoid GDPR fine an unwise gambit
Companies that think paying reduced ransomware demands would be a better move than informing regulators of a data breach and facing enforcement are playing with fire, according to experts.
-
News BriefVerizon unit to pay $4.1M in cybersecurity false claims case
Verizon Business Network Services agreed to pay approximately $4.1 million to settle allegations levied by the Department of Justice regarding false claims caused by failure to fully implement cybersecurity controls required of a government contractor.
-
PremiumPreparing for SEC cybersecurity rules an opportunity for collaboration
Businesses can prepare for the Securities and Exchange Commission’s upcoming cybersecurity disclosure rule by going through it and identifying key gaps in compliance.
-
PremiumCyber expert: Reach for data security to achieve compliance
Data security and compliance are not one and the same but have enough overlap that organizations can take steps when building a data security program to move closer to achieving compliance.
-
WebcastCPE Webcast: Five deliverables every cybersecurity team needs to survive, thrive and comply with the new SEC Cybersecurity Rule
In today’s fast-paced business world, firms must adapt to the ever-changing mobile compliance and technology landscape to stay competitive.
-
News BriefN.Y. cyber strategy puts pressure on banks, energy sector
New York will closely monitor the cybersecurity protections in place at institutions in the financial and energy sectors as part of its first statewide cybersecurity strategy.
-
PremiumCovington mulling appeal of ruling in SEC breached client case
Covington & Burling is leaving open the possibility of appealing a recent federal court order requiring the law firm to provide the names of hacked clients to the Securities and Exchange Commission.
-
News BriefFed report highlights emerging cyber threats, including generative AI
The Federal Reserve listed the proliferation of generative artificial intelligence tools among areas of emerging cybersecurity threats for banks to monitor as part of its annual resilience report.
-
PremiumRisks, opportunities under SEC’s cyber incident disclosure rule
The clock is ticking for public companies to put in place policies and practices to meet the requirements of the Securities and Exchange Commission’s newly approved cybersecurity incident disclosure rule.
-
News BriefSenator pushes for probe into Microsoft’s ‘negligent cybersecurity practices’
Sen. Ron Wyden (D-Ore.) is calling on federal agencies to hold Microsoft accountable for “negligent cybersecurity practices” that played part in a Chinese hacking campaign that targeted U.S. government email addresses.