Risk - Information Management Today

Regulating AI Catastophic Risk Isn't Easy

Data Breach Today

OCTOBER 11, 2024

AI, Security Experts Discuss Who Defines the Risks, Mitigation Efforts An attempt by the California statehouse to tame the potential of artificial intelligence catastrophic risks hit a roadblock when Governor Gavin Newsom vetoed the measure late last month.

Risk

Risk Artificial Intelligence Security

Alert: Hackers Hit High-Risk Individuals' Personal Accounts

Data Breach Today

MARCH 26, 2024

Cybersecurity Experts Recommend Defenses to Counter Surge in Such Attacks Calling all high-risk individuals: Ensure you're taking adequate steps to secure your personal devices and accounts, as criminals and nation-state hackers increasingly target them instead of grappling with corporate defenses, warned the U.K.'s

Risk

Risk Cybersecurity Security

Mimecast Acquires Elevate Security to Address Human Risk

Data Breach Today

JANUARY 5, 2024

Company Plans to Enhance Digital Workplace Protection With Behavioral Analytics Mimecast announced the acquisition of human risk management solutions specialist Elevate Security as part of its initiative to enhance digital workplace protection.

Risk

Risk Security Analytics IT

Threat Watch: Russia-Ukraine War Remains Top CISO Risk

Data Breach Today

JUNE 17, 2022

DXC Technology's Michael Baker on Top Threats, Recruitment Tips, Career Advice Threat watch: The ongoing Russia-Ukraine war continues to pose both direct and indirect risks to enterprise networks, says Michael Baker, vice president and IT CISO of IT services and consulting firm DXC Technology.

Risk

Risk IT

IT Leadership Agrees AI is Here, but Now What?

This whitepaper offers real strategies to manage risks and position your organization for success. IT leaders are experiencing rapid evolution in AI amid sustained investment uncertainty. As AI evolves, enhanced cybersecurity and hiring challenges grow.

IT

Bitsight, SecurityScorecard, Panorays Lead Risk Ratings Tech

Data Breach Today

MAY 27, 2024

Automation, Improved Data Validation Reduce False Positives for Cyber Risk Ratings By improving data validation and incorporating automation, cyber risk ratings platforms are addressing trust issues and enhancing their role in third-party risk management.

Risk

Risk Marketing

Electric Vehicle Charging Stations at Risk From Hack Attacks

Data Breach Today

OCTOBER 24, 2024

The risks of these vulnerabilities range from an expanded attack surface to a launching pad for assaults on the power grid.

Risk

Risk Manufacturing

OMB Issues First Governmentwide AI Risk Mitigation Rules

Data Breach Today

MARCH 28, 2024

Guidance Calls for Agencies to Appoint Chief AI Officers, Set Up Governance Boards The Office of Management and Budget issued the first-ever governmentwide guidance for mitigating risks associated with the federal use of artificial intelligence, including specific actions agencies must complete within a year to help ensure the responsible use of emerging (..)

Risk

Risk Artificial Intelligence Government

UK NSCS Highlights Risks to Critical Infrastructure

Data Breach Today

NOVEMBER 14, 2023

Agency Underscores Risks From Ransomware, State-Aligned Hacking, China and AI The risk of critical infrastructure hacking in the United Kingdom likely grew in the last year, says the national cybersecurity agency, citing a slew of high-profile ransomware attacks.

Risk

Risk Ransomware Cybersecurity

Why “Build or Buy?” Is the Wrong Question for Analytics

Partnering with an analytics development platform gives you the freedom to customize a solution without the risks and long-term costs of building your own. Every time an application team gets caught up in the “build vs buy” debate, it stalls projects and delays time to revenue. There is a third option. Brought to you by Logi Analytics.

Analytics

The Concentrated Cyber Risk Posed by Enormous Vendors

Data Breach Today

MARCH 13, 2024

The vast healthcare ecosystem disruption caused by the recent attack on Change Healthcare, which affected more than 100 of the company's IT products and services, underscores the concentrated cyber risk when a major vendor suffers a serious cyber incident, said Keith Fricke, partner at tw-Security.

Risk

Risk Security IT

US Regulators Warn of AI Risk to Financial Systems

Data Breach Today

DECEMBER 18, 2023

regulators for the first time detailed the risks artificial intelligence poses to the financial system and classified the technology as an "emerging vulnerability." The Financial Stability Oversight Council in its annual report flagged AI's ability to introduce "certain risks."

Risk

Risk Artificial Intelligence IT

Mitigating AI Risks: UK Calls for Robust Guardrails

Data Breach Today

SEPTEMBER 4, 2023

Britain's Global AI Summit to Focus on Governance, Risk, International Standards The U.K. Goals of the event include detailing AI risks and opportunities, building effective frameworks for using AI safely, and setting international standards to manage AI risks and enforce norms.

Risk

Risk Artificial Intelligence Government IT

Experts Say Chinese Safes Pose Risks to US National Security

Data Breach Today

MARCH 14, 2024

Senator Urges Government to Tell Public About Little-Known Manufacturer Reset Codes Experts told ISMG that Chinese-made locks and commercial safes could pose national security risks when used by major U.S.

Risk

Risk Manufacturing Security Government

Lessons Learned in PostgreSQL®

Instaclustr expert Perry Clark outlines immediate actions to minimize risks, ensuring a swift response to ransomware threats and protecting critical data assets. This paper, inspired by a real PostgreSQL® database incident, offers vital strategies for effective mitigation.

Ransomware

Careless OAuth Implementation Puts Billions at Risk

Data Breach Today

OCTOBER 27, 2023

We expect that 1,000s of other websites are vulnerable to the attack," wrote Salt Security, "putting billions of additional internet users at risk."

Risk

Risk Access Security

OpenAI Formulates Framework to Mitigate 'Catastrophic Risks'

Data Breach Today

DECEMBER 19, 2023

A Preparedness Team Will Warn of Current, Future Dangers in the Firm's AI Models OpenAI on Monday released a framework it says will help assess and protect against the "catastrophic risks" posed by the "increasingly powerful" AI models it develops. "We

Risk

Risk IT

How AI Is Transforming Payment Risk and Fraud at Genpact

Data Breach Today

JANUARY 4, 2024

Genpact VP of Payments Kristine Demareski on Harnessing Generative AI There are many potential uses for generative AI at financial services firms, but few are more promising than those in the areas of risk and fraud, said Kristine Demareski, vice president of payments at Genpact, which is already harnessing AI to increase efficiencies in analysts' (..)

Risk

Risk Financial Services

How to Account for Disinformation Risks in Election Security

Data Breach Today

AUGUST 21, 2024

He explains how his team is integrating cybersecurity frameworks to address both digital and physical risks, focusing on disinformation campaigns and election integrity.

Risk

Risk Security Cybersecurity IT

5 Early Indicators Your Embedded Analytics Will Fail

Many application teams leave embedded analytics to languish until something—an unhappy customer, plummeting revenue, a spike in customer churn—demands change. But by then, it may be too late. In this White Paper, Logi Analytics has identified 5 tell-tale signs your project is moving from “nice to have” to “needed yesterday.".

Analytics

Experts Probe AI Risks Around Malicious Use, China Influence

Data Breach Today

SEPTEMBER 7, 2023

Senate Hearing Examines Misuse of Advanced AI Systems, Risks With Chinese Nationals The rise of artificial intelligence makes it easier for adversaries to harm the U.S. and introduces new risks around malicious insiders with loyalties to China, experts say during a Senate hearing.

Risk

Risk Artificial Intelligence IT

How Mega Attacks Are Spotlighting Critical 3rd-Party Risks

Data Breach Today

SEPTEMBER 18, 2024

Recent mega data breaches involving third-party vendors - such as the Change Healthcare cyberattack - are intensifying the spotlight on critical security risk management and governance issues for business associates and other suppliers, said regulatory attorney Rachel Rose.

Risk

Risk Data breaches Government Security

Report Says CISA is Failing to Identify High-Risk Exploits

Data Breach Today

DECEMBER 19, 2023

CISA Failed to Include High-Risk Vulnerabilities in Known Exploit List, Report Says The Cybersecurity and Infrastructure Security Agency maintains an exhaustive list that the U.S.

Risk

Risk Cybersecurity Security IT

Critical Flaw in R Language Poses Supply Chain Risk

Data Breach Today

MAY 2, 2024

Deserialization Vulnerability Allows for Remote Code Execution A high-risk flaw in R statistics programming language could lead to a supply chain hack, warn security researchers who say they uncovered a deserialization flaw. Security researchers have long known that hackers sneak malicious code into serialized data.

Risk

Risk Security

How to Package and Price Embedded Analytics

Just by embedding analytics, application owners can charge 24% more for their product. How much value could you add? This framework explains how application enhancements can extend your product offerings. Brought to you by Logi Analytics.

Analytics

Coast Guard Warns of Continued Risks in Chinese Port Cranes

Data Breach Today

NOVEMBER 20, 2024

Military Says Ship-to-Shore Cranes Made in China Include Dangerous Security Flaws The United States Coast Guard is continuing to warn of significant security risks embedded in ship-to-shore cranes developed by companies with ties to Beijing while issuing new sensitive requirements for ports operating Chinese-made cranes across the country.

Risk

Risk Military Security

Addressing Security Gaps and Risks Post-M&A in Healthcare

Data Breach Today

SEPTEMBER 8, 2023

In the aftermath of mergers and acquisitions among healthcare entities - and the resulting IT integration and cost-cutting moves - gaps in technology and skills and other gaps often put organizations at higher risk for attacks and other security incidents, said Jack Danahy of NuHarbor Security.

Risk

Risk Security IT

United Nations AI Body to Advise on Risks, Global Governance

Data Breach Today

OCTOBER 27, 2023

The 38-Member Body Comprises Government, Private, Civil Society Representatives The United Nations unveiled Thursday an AI advisory body that looks to analyze risks and make recommendations on international governance for the technology.

Government

Government Risk

NY AG Warns of ID Theft Risk in Medical Transcription Hack

Data Breach Today

NOVEMBER 30, 2023

Crouse Health Reveals It's Among PJ&A Clients Hit by Incident Affecting Millions New York regulators are warning millions of individuals of identity theft risks involving a data theft at a medical transcriber that has now affected patients of at least two major healthcare groups, including Crouse Health and Northwell Health in the state.

Risk

Risk IT

ERM Program Fundamentals for Success in the Banking Industry

Speaker: William Hord, Senior VP of Risk & Professional Services

Enterprise Risk Management (ERM) is critical for industry growth in today’s fast-paced and ever-changing risk landscape. Do we understand and articulate our bank’s risk appetite and how that impacts our business units? How are we measuring and rating our risk impact, likelihood, and controls to mitigate our risk?

Risk

DHS Says National Security at Risk as Key Authorities Expire

Data Breach Today

NOVEMBER 1, 2023

Department of Homeland Security Secretary Alejandro Mayorkas urged Congress to take action to prevent loss of critical authorities for the Cybersecurity and Infrastructure Security Agency, warning of severe security risks for chemical facilities seen as attractive targets for terrorist attacks.

Risk

Risk Security Cybersecurity

Banking Tech Forecast: Cloudy, With a Chance of Cyber Risk

Data Breach Today

JULY 4, 2023

Cloud Adoption in Financial Services has Soared - as Has Security Risk Financial services organizations face unique cloud security challenges, due to special regulatory, data security and privacy considerations that don't necessarily apply to other industries.

Risk

Risk Financial Services Cloud Privacy

Zscaler Taps Generative AI to Measure Risk, Predict Breaches

Data Breach Today

NOVEMBER 27, 2023

Zscaler Brings Generative AI to Data Protection Bundles, Debuts Standalone AI Tools Zscaler infused generative AI features into its data protection bundles and is introducing AI-powered products that quantify risk and predict breaches, said CEO Jay Chaudhry.

Risk

Risk Cloud Security IT

GUEST ESSAY: Best practices to shrink the ever-present risk of Exchange Server getting corrupted

The Last Watchdog

FEBRUARY 5, 2024

One critical issue faced by organizations that rely on Exchange Server is the risk of a corrupt Exchange Server database cropping up. Navigating new risks Today, heavy reliance on cloud-centric IT infrastructure and cloud-hosted applications has become the norm. Here are a few ‘dos:’ •Rigorous vulnerability management.

Risk

Risk Cloud Communications Education

Everything You Need to Know About Crypto

Speaker: Ryan McInerny, CAMS, FRM, MSBA - Principal, Product Strategy

With 20% of Americans owning cryptocurrencies, speaking "fluent crypto" in the financial sector ensures you are prepared to discuss growth and risk management strategies when the topic arises. May 18th, 2023 at 9:30 am PDT, 12:30 pm EDT, 5:30 pm BST

Risk

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. Fortunately, there are ways to address the risks.

Risk

Risk Artificial Intelligence Cybersecurity Compliance

Oil and Gas Firms Aware of Cyber Risks

Data Breach Today

OCTOBER 14, 2024

Sector Uses Multifactor, Eschews Cloud, Can't Afford Cyber Insurance The oil and gas industry has high levels of cyber awareness and low levels of cyber insurance, says a sectoral assessment from credit rating agency Moody's. The sector has experienced a clutch of high-profile attacks including a high-profile 2021 incident at Colonial Pipeline.

Insurance

Insurance Risk Cloud

DHS Warns Election Security Risks May Persist Into 2025

Data Breach Today

OCTOBER 7, 2024

DHS Says Adversaries May Stoke Voter Fraud Fears Long After Election Day The latest Homeland Security threat assessment lists this year’s election cycle as a top concern for 2025 and a potential trigger for domestic terrorism.

Risk

Risk Security

Report Warns of 'Catastrophic' Medical Device Security Risks

Data Breach Today

DECEMBER 22, 2023

Majority of Connected Medical Devices Contain Critical Vulnerabilities, FBI Says A new GAO report says federal agencies fail to provide health are providers and patients with enough resources and information to address critical vulnerabilities in a majority of medical devices in the U.S.

Risk

Risk Security

The Unexpected Cost of Data Copies

Unfortunately, data replication, transformation, and movement can result in longer time to insight, reduced efficiency, elevated costs, and increased security and compliance risk.

Security

Unforeseen Risks to Medical Devices in Ransomware Attacks

Data Breach Today

OCTOBER 24, 2024

While ransomware attacks against medical devices don't happen often, disruptive cyber incidents that affect the availability of the IT systems that medical devices rely on are a big concern that needs the industry's critical attention, said Jessica Wilkerson of the FDA.

Ransomware

Ransomware Risk IT

White House Official Warns of AI Risks in 2024 Elections

Data Breach Today

JANUARY 18, 2024

No 'Magic Solution' to Prevent Malicious Use of AI in Elections, OSTP Chief Says Arati Prabhakar, director of the White House's Office of Science and Technology Policy, said during an event at the 2024 World Economic Forum that generative artificial intelligence has the potential to "dramatically accelerate and amplify the erosion of information integrity." (..)

Artificial Intelligence

Artificial Intelligence Risk

Attackers' GitHub Abuse Poses Growing Risk, Researchers Warn

Data Breach Today

JANUARY 11, 2024

Cybersecurity Researchers Detail Defenses Against Attackers Abusing Cloud Services While cybercriminals and advanced persistent threat groups have long abused legitimate internet services both to scale and disguise various types of attacks, a new report warns of a growing challenge posed by the illegitimate use of GitHub and offers essential defenses (..)

Risk

Risk Cloud Cybersecurity

News alert: SquareX shows how Google’s MV3 standard falls short, putting millions at risk

The Last Watchdog

OCTOBER 3, 2024

Ramachandran Vivek Ramachandran , Founder & CEO of SquareX , warned about the mounting risks: “Browser extensions are a blind spot for EDR/XDR and SWGs have no way to infer their presence. Singapore, Oct. SquareX’s research team publicly demonstrated rogue extensions built on MV3.

Risk

Risk Phishing Passwords Security

The Power of Storytelling in Risk Management

Speaker: Dr. Karen Hardy, CEO and Chief Risk Officer of Strategic Leadership Advisors LLC

Communication is a core component of a resilient organization's risk management framework. However, risk communication involves more than just reporting information and populating dashboards, and we may be limiting our skillset. Storytelling is the ability to express ideas and convey messages to others, including stakeholders.

Risk

Regulating AI Catastophic Risk Isn't Easy

Alert: Hackers Hit High-Risk Individuals' Personal Accounts

Trending Sources

Mimecast Acquires Elevate Security to Address Human Risk

Threat Watch: Russia-Ukraine War Remains Top CISO Risk

IT Leadership Agrees AI is Here, but Now What?

Bitsight, SecurityScorecard, Panorays Lead Risk Ratings Tech

Electric Vehicle Charging Stations at Risk From Hack Attacks

OMB Issues First Governmentwide AI Risk Mitigation Rules

UK NSCS Highlights Risks to Critical Infrastructure

Why “Build or Buy?” Is the Wrong Question for Analytics

The Concentrated Cyber Risk Posed by Enormous Vendors

US Regulators Warn of AI Risk to Financial Systems

Mitigating AI Risks: UK Calls for Robust Guardrails

Experts Say Chinese Safes Pose Risks to US National Security

Lessons Learned in PostgreSQL®

Careless OAuth Implementation Puts Billions at Risk

OpenAI Formulates Framework to Mitigate 'Catastrophic Risks'

How AI Is Transforming Payment Risk and Fraud at Genpact

How to Account for Disinformation Risks in Election Security

5 Early Indicators Your Embedded Analytics Will Fail

Experts Probe AI Risks Around Malicious Use, China Influence

How Mega Attacks Are Spotlighting Critical 3rd-Party Risks

Report Says CISA is Failing to Identify High-Risk Exploits

Critical Flaw in R Language Poses Supply Chain Risk

How to Package and Price Embedded Analytics

Coast Guard Warns of Continued Risks in Chinese Port Cranes

Addressing Security Gaps and Risks Post-M&A in Healthcare

United Nations AI Body to Advise on Risks, Global Governance

NY AG Warns of ID Theft Risk in Medical Transcription Hack

ERM Program Fundamentals for Success in the Banking Industry

DHS Says National Security at Risk as Key Authorities Expire

Banking Tech Forecast: Cloudy, With a Chance of Cyber Risk

Zscaler Taps Generative AI to Measure Risk, Predict Breaches

GUEST ESSAY: Best practices to shrink the ever-present risk of Exchange Server getting corrupted

Everything You Need to Know About Crypto

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

Oil and Gas Firms Aware of Cyber Risks

DHS Warns Election Security Risks May Persist Into 2025

Report Warns of 'Catastrophic' Medical Device Security Risks

The Unexpected Cost of Data Copies

Unforeseen Risks to Medical Devices in Ransomware Attacks

White House Official Warns of AI Risks in 2024 Elections

Attackers' GitHub Abuse Poses Growing Risk, Researchers Warn

News alert: SquareX shows how Google’s MV3 standard falls short, putting millions at risk

The Power of Storytelling in Risk Management

Stay Connected