SEC

SEC Doubles Down on Safeguards Rule Enforcement

The Securities and Exchange Commission issued sanctions against three financial services companies last week. The sanctions came in response to a series of email-takeover attacks in which Personally Identifiable Information (PII) was exposed.  In each case, the SEC found that the firms failed to implement proper cybersecurity measures against breaches. Each firm was found responsible…
Read More
Data Privacy

New Data Protection Agencies are Forthcoming

When we think about data privacy legislation, we usually think about rules, regulations, guidelines and best practices. However, not every data privacy bill on the Senate floor is concerned with telling businesses how to handle their data. A handful of legislators are proposing internal structural changes within government to better-regulate the morphing issues of data…
Read More
Cybersecurity

The 3 Biggest Mistakes the Board can Make around Cybersecurity

Although the topic of cybersecurity is now definitely on the board’s agenda in most organizations, it is rarely a fixed item. More often than not, it makes appearances at the request of the Audit & Risk Committee or after a question from a non-executive director, or – worse – in response to a security incident…
Read More
Pegasus

Pegasus and Privacy

Pegasus spyware, developed by the NSO Group, an Israeli company, has provoked the ire of journalists, privacy advocates, the EU, UN, and U.S. Congress following revelations that the software was used to monitor over 50,000 cell phone numbers from individuals across 50 countries. Export licenses for this military-grade software must be approved by the Israeli…
Read More
Data Privacy Bills

Three Data Privacy Bills to Watch

Staying on top of privacy legislation requires consistent effort. It’s overwhelming enough to keep track of the bills that do pass, but if you ignore proposed bills you risk being blindsided. Nobody wants to suddenly learn that they have insufficient time to adjust to a new piece of regulation. That being said, if keeping up…
Read More
Cybersecurity

Infrastructure Bill Allocates Nearly $2 Billion to Cybersecurity 

On Tuesday, the U.S. Senate approved a $1 trillion infrastructure package, which it has passed along to the House for approval. The package includes a variety of bills that allocate spending toward critical infrastructure, including roads, railways, bridges, electric vehicles, and telecom companies. The package also allocates more than $1.9 billion toward cybersecurity. The move…
Read More
Data Privacy

Maryland Governor Creates Privacy Officer Roles  

Maryland Governor Larry Hogan took steps to improve his state’s data privacy practices last week.  In two executive orders, the governor established the roles of State Chief Data Officer (SCDO) and State Chief Privacy Officer (SCPO). Though the positions have not been filled yet, Maryland’s Chief Information Security Officer, Chip Stewart, told Government Technology that…
Read More
Cybersecurity

Why Cybersecurity Tools Aren’t Enough

By JC Gaillard, Managing Director at Corix Partners Irrespective of what many of us may say or write, the cybersecurity agenda remains dominated by products and technology. Of course, the problem has a technical dimension and the protection of any firm against cyber threats will require the application of technical countermeasures at a number of…
Read More
Cybersecurity

US Customs and Border Patrol Falls Short in Data Protection 

A July 15 report by the Department of Homeland Security’s Inspector General reveals inadequate cybersecurity measures taken by the U.S. Customs and Border Protection (CBP) officials. The report assessed the period between July 2017 and December 2019, and found that the personal data of over 10 million U.S. and Canadian travelers using the Mobile Passport…
Read More
Ransomware

U.S. Government Releases Tools for Fighting Ransomware

The U.S. Department of Homeland Security, in conjunction with the U.S. Department of Justice, launched a new one-stop hub for ransomware guidance on July 15. The hub is designed to help the public and private sectors deal with the rising threat of ransomware, writes JD Supra. The hub includes resources for private and public organizations,…
Read More
Back To Top