The COVID-19 pandemic has resulted in many changes to the way organizations operate. It’s estimated that the number of remote workers increased from just over 4% of the workforce to almost half, with about 80% of employers allowing at least …
Recently, a client told me that he did not have any personal information on his systems, so he wasn’t subject to privacy laws. At that point, I knew he was in trouble. The problem is that there is no one …
The U.S. government has stepped in to help organizations tackle the wave of state-sponsored cyber attacks that exploit flaws in Microsoft Exchange Server. The tech giant disclosed four zero-day bugs earlier this month, which were being used to steal sensitive …
COVID-19 changed life as we knew it, and few understand that better than those working in the health care industry. Business as usual turned to chaos as the virus led to overrun hospitals, overworked staff, and a surge in cyber …
On December 10, 2020, the Department of Health and Human Services published its proposed changes to the HIPAA (Health Insurance Portability and Accountability Act). The changes, which would not be effective until March 22, 2021, concern the right of patients …
When the EU GDPR (General Data Protection Regulation) took effect in 2018, many organizations – particularly on this side of the Atlantic – considered it a bureaucratic nightmare. For most U.S. businesses, Europeans are a fraction of their customer and …
As lockdown restrictions forced many stores to close, the significance of safe Internet shopping became bigger than ever. However, many organizations simply aren’t giving customers the level of trust they expect and need. Your website needs to be safe, otherwise …
Organizations in the U.S. spent $8.64 million on average responding to cyberattacks last year, according to a Ponemon Institute report. This figure is more than double the global average, which leads us to ask why things are so bad in …
Ransomware has instilled fear in individual users, businesses, nonprofits, and governments since the early 2010s. Nowadays, this ‘classic’ extortion tactic through malicious encryption is intertwined with things like DDoS (distributed denial-of-service) attacks and data leaks, which can have serious reputational …
Flo Health, the developer of a period- and fertility-tracking app, recently settled federal charges alleging that it had misled users about the way it uses their data. The organization’s privacy policy states that it would protect users’ health care data, …
