Luke Irwin Archive
A new version of the information security management system ISO 27001 has been published, introducing significant changes in the way organizations are expected to protect their sensitive data. ISO 27001:2022 marks the first major changes to the Standard in almost a …
Earlier this year, version 4.0 of the PCI DSS (Payment Card Industry Data Security Standard) was introduced, bringing with it several new requirements that are designed to make compliance more flexible yet resilient. Chief among the changes is the introduction …
An information security policy is a crucial document in an organization’s repertoire, providing an overview of its data protection requirements. A central information security policy provides a broad summary of necessary actions, which is supported by specific policies related to …
If you’re fed up with clicking pictures of traffic lights and boats when trying to visit a website, Cloudflare might have the solution. The content delivery giant announced a new project this week called Turnstile, which it hopes will provide …
In the early hours of September 18, a criminal hacker posted an hour’s worth of footage from Grand Theft Auto VI to an online forum in what has been described as the biggest security breach in video game history. In …
A data breach is a type of security incident that leads to the accidental or unlawful destruction, loss, alteration, authorized disclosure of, or access to, sensitive information. These incidents occur when personal information is mishandled, whether through malicious intent, carelessness, …
As organizations struggle with the rising threat of cyber attacks and data breaches, the cyber insurance market has skyrocketed. But with significant payouts being made regularly, many insurers are reluctant to continue offering comprehensive cyber insurance coverage. A report by …
The U.S. has had an uneasy relationship with cybersecurity regulation. Its rules are largely governed on a state level, creating a patchwork of overlapping requirements that makes it a nightmare for organizations that operate across state lines. Depending on the …
Organizations are being warned with increasing urgency about the threat of cyber attacks. There are regular news stories of companies leaking sensitive information, receiving multi-million dollar fines, and halting production after being infected with malware. But what exactly is a …
The Department of Energy announced this week that it’s investing $45 million to protect the power grid from cyber attacks. Energy Secretary Jennifer Granholm said in a statement that the money will be used to fund up to 15 research …
