Data Breach Today

JULY 5, 2024

Implementing a zero trust security approach is critical to avoid the types of major IT disruptions and massive data compromises seen in recent cyberattacks that affected the healthcare, public health and government sectors, said Clinton McCarty, CISO at National Government Services.

Government 280

Government Security IT 280

Data Breach Today

SEPTEMBER 14, 2023

China Cites Apple Security Flaws in Warning to Foreign Mobile Device Manufacturers China hasn't ordered any restrictions on the use of Apple iPhones by government agencies, according to a Chinese government spokesperson, but the official cited recent security flaws in the iPhone and warned that foreign mobile device manufacturers must abide by domestic (..)

Government 299

Government Manufacturing Information Security Security 299

Krebs on Security

MARCH 25, 2020

government Web sites now carry a message prominently at the top of their home pages meant to help visitors better distinguish between official U.S. government properties and phishing pages. Census Bureau website [link] carries a message that reads, “An official Web site of the United States government.

Government 301

Government Security Phishing Encryption 301

Data Breach Today

SEPTEMBER 10, 2024

Polish Deputy Prime Minister Says Russia Is Waging 'De Facto Cyberwar' The Polish government said Monday it faces an onslaught of cyberattacks from Russian and Belarusian security agencies intent on cyberespionage and blackmail. Poland is in the midst of a "de facto cyberwar," said Deputy Prime Minister Krzysztof Gawkowski.

Government 182

Government Security IT 182

Data Breach Today

APRIL 18, 2023

Effective security governance in a healthcare entity is a balancing act that requires sponsorship by top leadership and careful consideration of the concerns of clinicians and others in the organization, according to Eric Liederman and deputy CISO Steven Frank of Kaiser Permanente.

Government 147

Government Security 147

Data Breach Today

SEPTEMBER 23, 2024

After Review Board Criticism, Microsoft Targets Culture, Governance, Engineering After high-profile security incidents, Microsoft has dedicated 34,000 engineers to advancing security across all platforms, focusing on identity protection and rapid response.

Security 290

Security Government 290

Data Breach Today

OCTOBER 18, 2024

Also: Impact of NIS2 Directive in Europe, Cloud Governance Challenges In the latest weekly update, ISMG editors discussed the strategic convergence of data security posture management and data loss prevention technologies, evolving priorities of security leaders and the urgent readiness challenges posed by the NIS2 Directive.

Security 285

Security Cloud Government 285

Data Breach Today

APRIL 20, 2023

Cisco's Peter Romness on Defending the Expanded Attack Surface Post-digital transformation, in a world of hybrid work and multi-cloud environments, government agencies in particular sometimes struggle to detect and respond to threats across the expanded attack surface.

Government 147

Government Digital transformation Security Cloud 147

Data Breach Today

SEPTEMBER 8, 2023

Sponsored by Bytes Software Services; in partnership with CyberArk Government agencies are adopting zero trust architectures, both to meet regulatory

Government 289

Government Security 289

Data Breach Today

JULY 10, 2023

Francisco Partners plans to split Forcepoint's government and commercial security practices, selling the former to TPG for $2.45 Deal Comes 30 Months After PE Arm Francisco Bought All of Forcepoint for Just $1.1B billion.

Government 147

Government Security 147

Data Breach Today

OCTOBER 24, 2024

Capabilities The Biden administration declared artificial intelligence suitable for national security purposes in a Thursday directive providing guidance for AI governance and risk management for use in classified missions. White House Officials Worry That China Can Leap From U.S.

Artificial Intelligence 278

Artificial Intelligence Security Risk Government 278

Data Breach Today

MAY 16, 2024

government released voluntary guidance intended to help artificial intelligence developers and vendors protect models from hacking and potential sabotage. Companies should strengthen supply chain security and decrease risks from vulnerable AI systems to customers, such as data loss.

Government 162

Government Artificial Intelligence Cybersecurity Risk 162

Data Breach Today

SEPTEMBER 17, 2024

Former Royal Mail and Manchester University CISOs Talk Ransomware Response Timely notification of ransomware incidents to British law enforcement agencies played a crucial role in understanding the threats and in developing mitigation strategies, the former security heads of Royal Mail and the University of Manchester said.

Ransomware 289

Ransomware Government Security 289

Data Breach Today

NOVEMBER 3, 2023

New Report Identifies ‘Risky’ Unauthorized Apps That Pose National Security Risks The Department of Homeland Security inspector general found U.S.

Government 250

Government Risk Security 250

Data Breach Today

JULY 26, 2023

Flaw in Ivanti Endpoint Manager Mobile Rated 10 on CVSS Scale A mobile security vendor patched a critically rated zero-day vulnerability in its endpoint management platform that had been used by unknown hackers to attack the Norwegian government. Multiple governments use the platform - the Ivanti Endpoint Manager Mobile.

Government 237

Government Security IT 237

Data Breach Today

MAY 20, 2022

Deal Will Help Clients Secure Users and Data Across SAP and Oracle's ERP Apps Pathlock has merged with Appsian to form a 500-person vendor that secures users and data across SAP and Oracle's ERP apps.

Government 260

Government Security Compliance Marketing 260

Security Affairs

SEPTEMBER 20, 2024

Ukraine’s NCCC banned the Telegram app for government agencies, military, and critical infrastructure, due to national security concerns. ” reads the announcement published by the National Security and Defense Council of Ukraine. The ban does not affect Ukrainian citizens. The ban does not affect Ukrainian citizens.

Military 137

Military Government Personal data Phishing 137

Data Breach Today

OCTOBER 1, 2022

Co-Founder & CEO Discusses Why the Company Is Seeking FedRAMP Authorization Security firms must increasingly follow U.S. government security requirements even if they don't serve federal agencies themselves, says Avi Shua, Orca Security co-founder and CEO. government.

Government 130

Government Cloud Security 130

Security Affairs

MARCH 11, 2024

A series of “intense” cyberattacks hit multiple French government agencies, revealed the prime minister’s office. “Several “intense” cyberattacks targeted multiple French government agencies since Sunday night, as disclosed by the prime minister’s office.” ” reported the French newspaper Le Monde.

Government 144

Government Information Security Access Security 144

Data Breach Today

MAY 22, 2024

Bitdefender Exposes Unfading Sea Haze's Advanced Cyberespionage Tactics A previously undetected, suspected Chinese-state threat actor has been targeting governments in the South China Sea for years with a remote access Trojan that has been a favorite of Chinese hackers since its creation almost two decades ago, say security researchers from Bitdefender. (..)

Government 162

Government Access Security IT 162

Data Breach Today

JULY 12, 2023

26 Countries Hit by Espionage Group Storm-0558 Through Microsoft Outlook Flaw Security experts say China-based hackers are "leading their peers in the deployment of zero-days" in the wake of another wide-ranging attack that abused a flaw in Microsoft Outlook and used forged authentication tokens to access email accounts of governments in the United (..)

Government 240

Government Authentication Access Security 240

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. The authorities launched an investigation after the ransomware gang Ransomhub claimed the attack and published samples of personal information from a database of government.

Ransomware 117

Ransomware Government Insurance Passwords 117

Data Breach Today

OCTOBER 22, 2021

Co-Sponsor of Bipartisan Proposal Calls Bill 'Common-Sense Legislation' Two Senate leaders on Thursday introduced legislation that would form a working group charged with monitoring the security of AI data obtained by federal contractors.

Government 289

Government Security Privacy 289

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The security breach poses a major national security risk. The WSJ states that the compromise remained undisclosed due to possible impact on national security.

Government 108

Government Communications Access Risk 108

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The security breach poses a major national security risk. The WSJ states that the compromise remained undisclosed due to possible impact on national security.

Government 112

Government Communications Access Risk 112

Schneier on Security

SEPTEMBER 4, 2024

A security researcher repeatedly proves their statements to be lies. This story seems straightforward. A city is the victim of a ransomware attack. They repeatedly lie to the media about the severity of the breach. The city gets mad and sues the researcher.

Government 96

Government Security Ransomware IT 96

Security Affairs

AUGUST 13, 2024

CERT-UA warned that Russia-linked actor is impersonating the Security Service of Ukraine (SSU) in a new phishing campaign to distribute malware. The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign targeting organizations in the country, including government entities.

Phishing 138

Phishing Government File names Access 138

Data Breach Today

MARCH 14, 2024

Senator Urges Government to Tell Public About Little-Known Manufacturer Reset Codes Experts told ISMG that Chinese-made locks and commercial safes could pose national security risks when used by major U.S.

Risk 299

Risk Manufacturing Security Government 299

Data Breach Today

MARCH 7, 2024

Cybersecurity and Infrastructure Security Agency hopes to expand voluntary information sharing between the federal government and open-source software operators with a series of actions the agency announced following a two-day open-source security summit held at its Virginia headquarters.

Security 297

Security Cybersecurity Government IT 297

Data Breach Today

AUGUST 9, 2022

CSO on How OneTrust's Platform Brings Privacy, Compliance and Governance Together OneTrust has put nearly $1 billion in investment to good use, helping companies address data governance, security assurance, third-party risk and more, Chief Strategy Officer Blake Brannon says.

Government 239

Government Privacy Compliance Risk 239

Data Breach Today

DECEMBER 4, 2018

Longtime CISO Vito Sardanopoli on Building an Effective Security Program A formal security program that spells out precise governance components is critical to protecting sensitive data, says Vito Sardanopoli, who served on the U.S. Department of Health and Human Services Healthcare Industry Cybersecurity Task Force.

Government 162

Government Security Cybersecurity 162

Data Breach Today

SEPTEMBER 3, 2024

Agency Publishes Notice Soliciting Comments on Potential Federal Response An artificial intelligence-fueled growth in data center construction has the federal government asking what it should do to help manage data security risks.

Risk 173

Risk Artificial Intelligence Security Marketing 173

Data Breach Today

JANUARY 28, 2020

government is taking the first steps toward creating new security requirements for manufacturers to strengthen password protections and improve how vulnerabilities are reported.

Government 162

Government IoT Security Manufacturing 162

Hunton Privacy

JANUARY 23, 2024

On January 23, 2024, the UK government announced that it published a draft Code of Practice on cybersecurity governance (the “Code”). While it is acknowledged that “there is no one size fits all approach to governing. cyber risk”, there are certain “common fundamental actions” that may be taken.

Government 118

Government Cybersecurity Risk Security 118

Data Breach Today

JANUARY 2, 2024

Forrester's Sandy Carielli Shares Highlights From API Security Report Forrester analyst Sandy Carielli highlights key API security aspects in Forrester's report titled The Eight Components of API Security," which covers governance, discovery, testing, authentication and protection from API breaches as many organizations are grappling with the maturity (..)

Security 279

Security Authentication Government 279