Cyber Security Archive
What is a DPIA? A DPIA (data protection impact assessment) is, effectively, a type of risk assessment. A core part of a DPIA is identifying risks and working out how likely they are to occur and the impact they would …
Not a day goes by when you don’t read about a data breach or hack. In the past year, organizations of all sizes and in all sectors have been attacked. These include Apple, Facebook, the Girl Scouts of Orange County, …
ISO 27001 is heavily focused on risk-based planning. This is to ensure that identified information risks are appropriately managed according to threats and the nature of these threats. Under ISO 27001:2013, an organization must choose the relevant risk assessment methodology. Although not …
Black Friday and Cyber Monday are almost upon us. Let the shopping begin! However, the flurry of purchases and the data that they represent means cybercriminals will also be looking to cash in. What are the risks? As well as genuine …
The office of Brian Kemp, Georgia Secretary of State, has launched an investigation into the Georgia Democratic Party. It believes the Democrats were connected to an attempted hack of Georgia’s voter registration system. The Democrats deny the charge. Cybersecurity in elections Whether or not the allegation is true, cybersecurity is a …
The Radisson Hotel Group has suffered a data breach that impacts members of the organization’s loyalty and rewards program. The breach was discovered on October 1, and Radisson Rewards members were informed on October 30 and 31. Another security incident …
In the middle of a market suffering lower-than-expected earnings reports, two tech companies stand out for their approaches to privacy. Google, which recently shuttered its social media service Google Plus following a major data breach, is now under scrutiny from …
The NYDFS (New York State Department of Financial Services) has updated the cybersecurity FAQ for the 23 NYCRR 500 cybersecurity requirements. It now specifies that covered entities using outside agents for utilization review must treat those agents as third-party service …
If you were to suffer an information security incident, would you know what your top priorities are? Would you know what to do first, who to inform, or how to handle it? To help you better understand the trends and …
Many small businesses fail to recognize that they are vulnerable to cyber attacks, incorrectly believing that they won’t be targeted. However, small businesses are often more vulnerable than larger organizations. They don’t have the resources to put strong cybersecurity practices …
