Information security laws, investigations and ethics

Get news, advice and commentary on information security laws such as the CFAA, CAN-SPAM and CALEA. Learn about information security legislation, ethical vulnerability disclosure, digital surveillance laws and more.

New & Notable

Download this free guide

Your Guide to Info Sec Certifications

We’ve collected 30+ certifications for you. Which vendor-neutral and vendor-specific security certifications are best for you? Save time by downloading our list organized by experience level.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Information security laws, investigations and ethics News

June 21, 2018 21 Jun'18
Accused CIA leaker charged with stealing government property

The DOJ has officially charged the accused CIA leaker, Joshua Schulte, with theft of government property and gathering national defense information in the Vault 7 case.
June 21, 2018 21 Jun'18
Risk & Repeat: New election security bill introduced

In this week's Risk & Repeat podcast, SearchSecurity editors discuss the Protecting American Votes and Elections Act of 2018, which requires paper ballots and audits.
June 13, 2018 13 Jun'18
Risk & Repeat: What do Google's AI principles mean for cybersecurity?

In this week's Risk & Repeat podcast, SearchSecurity editors discuss Google's new principles for artificial intelligence and how they may impact the use of AI for cybersecurity.
June 08, 2018 08 Jun'18
New MalwareTech indictment adds four more charges

The U.S. government added four new charges against Marcus Hutchins in the MalwareTech indictment, but questions have surfaced about the legal standing of the new charges.

View All News

Information security laws, investigations and ethics Get Started

Bring yourself up to speed with our introductory content

Self-sovereign identity: How will regulations affect it?

Will laws like GDPR and PSD2 force enterprises to change their identity management strategies? Expert Bianca Lopes talks regulations, self-sovereign identity and blockchain. Continue Reading
cyberextortion

Cyberextortion is a crime involving an attack or threat of an attack coupled with a demand for money or some other response in return for stopping or remediating the attack. Continue Reading
Cybercrime

Cybercrime is any criminal activity that involves a computer, networked device or a network. Continue Reading

View All Get Started

Evaluate Information security laws, investigations and ethics Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Active Cyber Defense Certainty Act: Should we 'hack back'?

With the proposal of the Active Cyber Defense Certainty Act, individuals would be able to 'hack back' when information is stolen. Matt Pascucci makes the case against the bill. Continue Reading
Consumer expectations, GDPR complicate data privacy protection

Xerox CISO Alissa Johnson says U.S. companies will be forced to reconsider their information protection strategies as consumers' data privacy protection expectations evolve. Continue Reading
Electronic voting systems in the U.S. need post-election audits

Colorado will implement a new system for auditing electronic voting systems. Post-election audits have been proven to help, but are they enough to boost public trust in the systems? Continue Reading

View All Evaluate

Manage Information security laws, investigations and ethics

Learn to apply best practices and optimize your operations.

What GDPR requirements mean for U.S. companies

The EU's General Data Protection Regulation legislation goes into effect in May 2018. Don't assume your European business is too insignificant to need to comply. Continue Reading
Monitoring employee communications: What do EU privacy laws say?

The European Court of Human Rights recently placed strict regulations on monitoring employee communications. Matt Pascucci compares EU privacy laws to the U.S.'s standards. Continue Reading
How FBI cyber investigations handle obfuscation techniques

An FBI agent discusses cyber investigations, how they handle obfuscation techniques, the anonymizing features of the deep web and how to catch the right person. Continue Reading

View All Manage

Problem Solve Information security laws, investigations and ethics Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

When does the clock start for GDPR data breach notification?

As new GDPR data breach notification rules go into effect, companies must be ready to move faster than before. Mimecast's Marc French explains what will change and how to cope. Continue Reading
What will GDPR data portability mean for enterprises?

Enforcement of the EU's Global Data Protection Regulation is coming soon. Mimecast's Marc French discusses the big questions about GDPR data portability for enterprises. Continue Reading
How hard will the GDPR right to be forgotten be to get right?

Under GDPR, the right to be forgotten is granted to all EU data subjects. Mimecast's Marc French explains why enterprises will need to be careful about how they manage the process. Continue Reading

View All Problem Solve