Ongoing Digitization of UK Legal Sector Elevates Exposure to Cyber Risks -- Nic Miller, Counter-Ransomware (C-RW)
The threat landscape in which law firms across the United Kingdom operate is worsening in frequency and intensity, challenging leaders in the sector to reassess how to better mitigate risks and protect the interests of clients and other stakeholders. So says Nic Miller, Virtual CISO and Consultant with London-based Counter-RansomwareTM (C-RW) in a podcast interview for journalists.
Attorney General James Sues Citibank for Failing to Protect and Reimburse Victims of Electronic Fraud
The lawsuit alleges that Citi does not implement strong online protections to stop unauthorized account takeovers, misleads account holders about their rights after their accounts are hacked and funds are stolen, and illegally denies reimbursement to victims of fraud. The Office of the Attorney General (OAG) has found that the bank fails to respond to fraudulent activity appropriately and quickly.
Allianz Risk Barometer: A Cyber Event Is the Top Global Business Risk for 2024
Cyber incidents such as ransomware attacks, data breaches, and IT disruptions are the biggest worry for companies globally in 2024, according to the Allianz Risk Barometer.
State and local Government Agencies -- Along with Education -- Must Reevaluate Cyber Risk Strategies to Remain Eligible for Cyber Insurance
The demonstrated inability of state and local government agencies -- as well as educational institutions -- (SLED) to effectively manage cyber risk in today's worsening threat landscape has prompted many major insurance carriers to charge more for premiums and cover fewer losses with many underwriters taking a pass altogether on preparing policies for this sector.
Sony-Owned Insomniac Games’ Breach Illustrates Impact of New Malicious Actor Behavior on Cyber Insurance and Risk Management Community
The revelation today of the extent and severity of Sony-owned Insomniac Games' breach reveals a disturbing shift in tactics being applied by threat actors, according to Kirsten Bay, CEO of Cysurance.
Cysurance Certified Nano Cyber Solutions Brings Behavioral Analysis Capabilities to Small- and Mid-Sized Information Security Initiatives
As the sophistication of attacks on small- and mid-sized enterprises explodes, business leaders and owners must reconsider current point-solution-based strategies and implement more dynamic solutions that integrate behavioral analysis into their risk-management posture. So say Nano Cyber Solutions' CEO Motti Danino and CTO Yochai Greenberg in a recent vidcast interview for the Cysurance Institute.
British Business Group panel shares advice on cybersecurity for the C-suite and company owners
A panel of experts convened by the British Business Group Dubai and Northern Emirates (BBG) has shared the latest advice on cybersecurity best practices amid an emerging trend of increasingly sophisticated attacks.
New Report Reveals Critical Cybersecurity Insights in K-12 Schools
For the second year, the Center for Internet Security, Inc. (CIS®) and the Multi-State Information Sharing and Analysis Center (MS-ISAC®) have released insights and analysis of the cybersecurity landscape in our nation’s K-12 public schools.
Stricter Cybersecurity Regulations Proposed for New York Hospitals
Governor Kathy Hochul announced the proposed measures on Monday, which are expected to be published in the State Register on December 6, 2023, provided they are adopted by the Public Health and Health Planning Council this week. The new cybersecurity requirements will then undergo a 60-day public comment period, which will end on February 5, 2033.
Bureau of Industry and Security and FinCEN Issue Joint Notice and New Key Term for Reporting Evasion of U.S. Export Controls Globally
Today, the Department of Commerce’s Bureau of Industry and Security (BIS) and the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) issued a joint notice highlighting a new Suspicious Activity Report (SAR) key term (“FIN-2023-GLOBALEXPORT”) for financial institutions to reference when reporting potential efforts by individuals or entities seeking to evade U.S. export controls not related to Russia’s invasion of Ukraine.
Only 37% of Companies with Low Risk Management Capabilities Recognize How Crucial They Are in Navigating Crises
Recent global crises like the COVID-19 pandemic and the Ukraine war have spotlighted the crucial need for mature risk management capabilities across all industries and sectors. Boston Consulting Group (BCG) is today publishing a report that examines the current state of risk management within the business world and sets out the practical measures that companies can take to move from aspiration to achievement.
Five mounting pressures require the accelerated transformation of the risk function – New KPMG Chief Risk Officer survey finds
Chief Risk Officers (CROs) are facing five mounting pressures – de-risking, growth and strategy, regulatory compliance, effectiveness & efficiency, and cost-takeout - that require the acceleration in the transformation of the risk function to adapt to change, according to the new 2023 KPMG Chief Risk Officer survey.
IBM Report: Half of Breached Organizations Unwilling to Increase Security Spend Despite Soaring Breach Costs
IBM Security released its annual Cost of a Data Breach Report, showing the global average cost of a data breach reached $4.45 million in 2023 – an all-time high for the report and a 15% increase over the last 3 years. Detection and escalation costs jumped 42% over this same time frame, representing the highest portion of breach costs, and indicating a shift towards more complex breach investigations.
SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures
The Securities and Exchange Commission today announced charges against Austin, Texas-based software company SolarWinds Corporation and its chief information security officer, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities.
Everest Group Research: C-Suite Must Recognize Critical Difference Between Cybersecurity and Cyber Resilience
Everest Group is calling on enterprises to make the critical shift in focus from cybersecurity to cyber resilience. While cybersecurity focuses on safeguarding against threats, cyber resilience emphasizes the ability to withstand, respond and recover quickly from them.
Cybercrime To Cost The World $9.5 Trillion USD Annually In 2024 — Cybersecurity Ventures
According to Cybersecurity Ventures, the global annual cost of cybercrime is predicted to reach $9.5 trillion USD in 2024.
All Segments of Enterprise Security Spending for 2024 to Experience Double-Digit Growth — Gartner
Worldwide IT spending is projected to total $5.1 trillion in 2024, an increase of 8% from 2023, according to the latest forecast by Gartner, Inc.
IT Auditors Identify Cyber Risks, Data Privacy and Talent Shortages Among the Biggest Technology Challenges Companies Face — Protiviti Reports
As the scale of emerging technology risks facing companies continue to multiply, IT auditors play a key role in identifying these threats and helping their organizations to navigate them.
The New Rules for Successfully Underwriting Mid-Market Cybersecurity IT Risk -- Kirsten Bay, Cysurance
Managing risk in the mid-market sector has evolved into a complicated -- and often intractable -- challenge for senior leaders. Bad actors increasingly see companies in this segment as attractive targets because they often under-resource security initiatives.
Cyber Insecurity: Report Finds Majority of Enterprises Expect an Imminent Cyber Attack
Commvault, a leading provider of data protection and cyber resilience solutions for hybrid cloud organizations, today released a new IDC report commissioned by Commvault entitled, “The Cyber-Resilient Organization: Maximum Preparedness with Bullet-Proof Recovery Survey.”