Information security laws, investigations and ethics

Get news, advice and commentary on information security laws such as the CFAA, CAN-SPAM and CALEA. Learn about information security legislation, ethical vulnerability disclosure, digital surveillance laws and more.

New & Notable

Download this free guide

Free Guide: Root Causes of the Cybersecurity Skills Shortage

Our editorial director sat down with David Shearer, CEO of (ISC)², for a Q&A where they discussed what is (and isn’t) contributing to the cybersecurity skills shortage in the United States and how to fix the problem.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Information security laws, investigations and ethics News

April 08, 2019 08 Apr'19
Data breach legislation proposes jail time for CIO, HR execs

Sen. Elizabeth Warren takes a swing at corporate negligence in new legislation that may create jail risk for the C-suite. The bill is unlikely to advance, however.
February 08, 2019 08 Feb'19
Risk & Repeat: Apple restores enterprise certificates for Facebook, Google

This week's Risk & Repeat podcast looks at Apple's decision to temporarily revoke Facebook's and Google's enterprise certificates following reports of questionable app activity.
January 22, 2019 22 Jan'19
DNC lawsuit claims Russian hackers attacked again after midterms

A Democratic National Committee lawsuit regarding Russian cyberattacks in the lead-up to the 2016 election now also claims Russia attacked DNC systems after the 2018 midterms.
January 11, 2019 11 Jan'19
Kaspersky Lab aided NSA hacking tools investigation

News roundup: According to a new report from Politico, Kaspersky Lab aided the NSA in catching alleged data thief Harold Martin. Plus, telecoms are selling customer data, and more.

View All News

Information security laws, investigations and ethics Get Started

Bring yourself up to speed with our introductory content

How to comply with the California privacy act

Organizations that handle California consumer data have a year to comply with CCPA. Expert Steven Weil discusses what enterprises need to know about the California privacy law. Continue Reading
hacktivism

Hacktivism is the act of hacking, or breaking into a computer system, for a politically or socially motivated purpose. Continue Reading
Self-sovereign identity: How will regulations affect it?

Will laws like GDPR and PSD2 force enterprises to change their identity management strategies? Expert Bianca Lopes talks regulations, self-sovereign identity and blockchain. Continue Reading

View All Get Started

Evaluate Information security laws, investigations and ethics Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Diversity at cybersecurity conferences is too important to ignore

Diversity at cybersecurity conferences became a hot topic in early 2018. Innovation Women founder Bobbie Carlton discusses why it takes more work to get women in security on stage. Continue Reading
Active Cyber Defense Certainty Act: Should we 'hack back'?

With the proposal of the Active Cyber Defense Certainty Act, individuals would be able to 'hack back' when information is stolen. Matt Pascucci makes the case against the bill. Continue Reading
Consumer expectations, GDPR complicate data privacy protection

Xerox CISO Alissa Johnson says U.S. companies will be forced to reconsider their information protection strategies as consumers' data privacy protection expectations evolve. Continue Reading

View All Evaluate

Manage Information security laws, investigations and ethics

Learn to apply best practices and optimize your operations.

CISO tackles banking cybersecurity and changing roles

Over the course of his career in security, Thomas Hill has held varied positions that inform his views on both technological specifics and strategic roles in modern corporations. Continue Reading
Why a unified local government security program is crucial

When considering a local government cybersecurity program, companies must understand the dangers of not having one. Matt Pascucci explains why a program designed to monitor the public sector is crucial. Continue Reading
Citrix's Peter Lefkowitz on impact of GDPR privacy requirements

New consumer privacy laws are changing the global privacy landscape. Citrix's Peter Lefkowitz explains how Citrix is approaching GDPR compliance and privacy issues in general. Continue Reading

View All Manage

Problem Solve Information security laws, investigations and ethics Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Women in cybersecurity: How to make conferences more diverse

The lack of women speaking at security conferences might be representative of the low number of women in cybersecurity, but efforts are finally being made to close the gender gap. Continue Reading
When does the clock start for GDPR data breach notification?

As new GDPR data breach notification rules go into effect, companies must be ready to move faster than before. Mimecast's Marc French explains what will change and how to cope. Continue Reading
What will GDPR data portability mean for enterprises?

Enforcement of the EU's Global Data Protection Regulation is coming soon. Mimecast's Marc French discusses the big questions about GDPR data portability for enterprises. Continue Reading

View All Problem Solve