A multi-layered approach known as "context-aware security" is the most effective strategy for fighting both insider and external cyberthreats, says Gartner analyst Avivah Litan, who explains how this strategy works.
In the wake of large-scale breaches against retailers, including Target, the Retail Industry Leaders Association has launched an information sharing center in an effort to strengthen defenses against cyber-attacks.
Internet users in the European Union can ask Google and other search engines to remove certain sensitive information from Internet search results, Europe's highest court ruled on May 13. ENISA praised the "landmark decision" on privacy.
Embedding some information security practitioners within business units could help improve IT security awareness in many enterprises, reducing security risk, says Steve Durbin, global vice president of the Information Security Forum.
As the HHS Office for Civil Rights ramps up HIPAA enforcement activities, a key leader of the agency's HIPAA initiatives has retired, and the director of the agency may soon be leaving as well. Find out the very latest details.
A judge has dismissed most of the claims in a consolidated class action lawsuit stemming from the 2011 data breach involving SAIC and the military health program TRICARE, which affected 4.9 million individuals.
Community banking leaders should be preparing for more stringent oversight of cybersecurity awareness and initiatives in their upcoming FFIEC assessments, according to industry experts, including Doug Johnson of the American Bankers Association.
To address new features and new threats, the National Institute of Standards and Technology has revised its guidance for transport layer protocol. Learn about the recommendations for protecting data during transmission.
URL shortening service Bitly is reporting a data breach that has compromised account credentials, including encrypted passwords, API keys and OAuth tokens. Find out the mitigation steps the company recommends.
Snapchat has agreed to an FTC settlement over security and privacy misrepresentations. The settlement follows an investigation of a breach that compromised the usernames and phone numbers of as many as 4.6 million users.
The chairman of a House committee has requested that the GAO conduct "end-to-end testing" of the HealthCare.gov website for Obamacare, greatly expanding GAO's security review plans. But federal officials say extensive testing of the site is ongoing.
Third-party risks and the Fed's plans for emerging payments will be highlighted at ISMG's Fraud Summit Chicago on May 14. How banking institutions and retailers are expected to respond to new risks posed by external parties will be a focus for our keynote panel.