IT Security and Compliance Blog Archive
Read the news, developments and opinion pieces from years gone by about IT security and compliance from industry experts New Net Technologies.
Orbitz, a subsidiary of the online travel agency, Expedia Inc, announced today that hackers have stolen personal information from around 880,000 payment cards.
The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 deadline has come and gone, but can your organization guarantee compliance? If not, the consequences for non-compliance will alarm you.
The Industrial Internet Consortium (IIC) has released its Endpoint Security Best Practices whitepaper aimed at simplifying internet of things (IoT) security.
New research from McAfee Labs Threat Report claims the volume of cyber threats found every second doubled between Q3 and Q4 2017, proving cybercriminals have no intention of slowing down anytime soon.
The National Institute of Standards and Technologies plans to soon release new updates to some of its publications, including its Cybersecurity Framework, to reflect new IT modernization priorities.
As the healthcare industry continues to become increasingly more digital, more global healthcare organizations (HCOs) continue to suffer from data breaches.
Last Friday, RMH Franchise Holdings revealed that malware had been found on point-of-sale (PoS) systems at the Applebee’s restaurants it operates as a franchise.
Last Wednesday, GitHub was hit by the largest DDoS attack ever recorded, measuring 1.3 Tbps of sustained traffic for eight minutes.
The personal information of thousands of Marines, sailors, and civilians has been disclosed in a major data breach emanating from the US Marine Corps Forces Reserve.
Details are being revealed about what the Department of Defense (DoD) cybersecurity scorecard 2.0 will look like and how it plans to harness automation to better protect against threats to our infrastructure.
The U.S. Department of Justice (DOJ) announced a new cybersecurity task force aimed at improving ways the U.S combats cyber threats and improving cyber threat response.
Do you currently have contracts with the United States Department of Defense (DoD), or are you a subcontractor to a prime contractor with DoD contracts? If so, your organization must comply with the National Institute of Standards and Technology’s latest framework, NIST 800-171.
The U.S. Securities and Exchange Commission issued new guidance calling on public companies to be more forthcoming when disclosing cyber security risks within their organization, even before a breach or cyber-attack occurs.
The city of Allentown, Pennsylvania is struggling to remediate a recent malware attack that’s said to cost the city nearly $1 million to mitigate.
The White House Council of Economic Advisers released a report last Friday that sought to quantify “malicious cyber activity directed at private and public entities”, including denial of service attacks, data breaches, theft of intellectual property, and sensitive financial and strategic information.
The US, Canada, Australia, and New Zealand have joined forces with the UK by blaming Russia for the devastating NotPetya ransomware attack from last year.
Over 30 lawsuits have been filed by Intel customers and shareholders following the disclosure of the Meltdown and Spectre attack methods.
New documents provided recently by Equifax to US senators revealed that the breach the company experienced last year may have involved types of data not mentioned in the initial disclosure of the incident.
A database on a third party computer server comprised of over 19.5 million Californians voter records was exposed to the public internet before being held for ransom by hackers.
Swiss telecom giant Swisscom has announced they suffered a data breach late in 2017, exposing the personal details of roughly 800,000 customers.