DarkReading.com reported that “Data breach costs have reached a new record high of $4.24 million per incident, representing a 10% increase from the year prior — the largest single year cost increase in the last seven years.”  The July 28, 2021 report entitled “Data Breach Cost Hits Record

Continue Reading $4.24M Now the Average Cost Per Data Breach!

BankInfoSecurity.com reported that “U.S. Customs and Border Protection [CBP] has not always protected its Mobile Passport Control applications, making travelers’ personally identifiable information vulnerable to exploitation, according to a new report from the Department of Homeland Security’s Office of the Inspector General [OIG].”  The July 23, 2021 entitled “

Continue Reading PII at risk on Mobile Passport Control Apps!

My good friend Judy Greenwald reported at BusinessInsurance.com that “After AIG refused the claim, Landry’s filed suit, and the U.S. District Court in Houston ruled in the insurer’s favor and dismissed the case.  A unanimous three-judge appeals court panel overturned that decision.”  The July 22, 2021 article entitled

Continue Reading AIG Must Defend Landry’s in a Data Breach From 2014-15!

HelpNetSecurity.com reported that “Using AI and ML through powerful cloud-based environments is allowing more organizations to access high-performance computing features which creates additional opportunities to benefit from real-time data analytics.” The July 13, 2021 report entitled “It takes more than MFA to beat human hacking” included these comments:

Continue Reading AI and ML maybe better than MFA for Cybersecurity!

Reuters reported that the “Chinese authorities step up efforts to draft regulations to better govern data storage, data transfer, and personal data privacy.”  The July 12, 2021 report entitled “China drafts new cyber-security industry plan” included these comments:

China’s Ministry of Industry and Information Technology said on Monday

Continue Reading China’s new Cybersecurity Plan will be worth $38.6 Billion by 2023!

NIST responded to the May 12, 2021 President’s Executive Order which directed “NIST to solicit input from the private sector, academia, government agencies, and others and to identify existing or develop new standards, tools, best practices, and other guidelines to enhance software supply chain security.”  The July 9, 2021 NIST

Continue Reading Supply Chain Security gets help from NIST!

Reuters reported that “Between 800 and 1,500 businesses around the world have been affected by a ransomware attack centered on U.S. information technology firm Kaseya…”  The July 6, 2021 report entitled “Up to 1,500 businesses affected by ransomware attack, U.S. firm’s CEO says” included these comments from

Continue Reading Kaseya Ransomware Update is NO surprise!

Darkreading.com reported that “CISOs in the security industry hold a unique position: as security leaders, they have the influence and access to purchase products and make decisions that can drastically affect the security posture of an organization. They are also expected to fall on their sword in the event of

Continue Reading CISOs can help in many ways, but they have to speak in plain language, not techno jargon!

BankInfoSecurity.com reported that the latest lawsuit “…claims the company lacked a cybersecurity program encompassing ransomware issues at the time of the attack, which led it to shut down pipeline operations serving much of the East Coast. It claims the company ignored warnings about cyber risks to interstate pipeline systems.” The

Continue Reading Big Surprise – Colonial Pipeline now defending class action lawsuits!