Information security laws, investigations and ethics news, help and research

Information security laws, investigations and ethics News

December 10, 2020 10 Dec'20
HHS proposes changes to HIPAA privacy rule

HHS wants to modify the HIPAA privacy rule to encourage better care coordination and make it easier for patients to access their health data.
November 19, 2020 19 Nov'20
White House questions election security; experts do not

A number of infosec experts, election officials and government agencies say Election Day was free from hacking and cyber attacks, but the White House disagrees.
October 21, 2020 21 Oct'20
Microsoft: 94% of Trickbot's infrastructure disabled

In a new blog post, Microsoft said its legal takedown last week, which sought to decrease Trickbot activity, disabled the vast majority of the botnet's servers.
October 20, 2020 20 Oct'20
After a brief pause, Trickbot rebounds from takedown efforts

Attempts to disrupt the notorious Trickbot botnet, most recently through Microsoft's legal takedown, have proven short-lived as ransomware attacks have resumed.

Bring yourself up to speed with our introductory content

cybercrime

Cybercrime is any criminal activity that involves a computer, networked device or a network. Continue Reading
Best practices for ethically teaching cybersecurity skills

Jonathan Meyers has recommendations that teachers and students can use to enhance their teaching and learning of cybersecurity skills to remain relevant in this fast-paced industry. Continue Reading
cyberterrorism

According to the U.S. Federal Bureau of Investigation, cyberterrorism is any 'premeditated, politically motivated attack against information, computer systems, computer programs, and data which results in violence against non-combatant targets by ... Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

CMMC requirements set to ripple throughout DOD supply chain

The Department of Defense's CMMC requirements target defense contractors, but organizations throughout the DOD supply chain -- and beyond -- are prepping for the standards. Continue Reading
The future of facial recognition after the Clearview AI data breach

The company that controversially scrapes data from social media sites for law enforcement clients announced a data breach. What does it mean for the future of facial recognition? Continue Reading
How the future of data privacy regulation is spurring change

Some companies have taken steps to improve data governance in anticipation of data privacy rules. Experts discuss the challenges of compliance in a shifting regulatory landscape. Continue Reading

Learn to apply best practices and optimize your operations.

Updating the data discovery process in the age of CCPA

Privacy regulations are changing the enterprise data discovery process. Now, automation is key for fulfilling data discovery mandates, including those for CCPA and GDPR. Continue Reading
Top tips for using the Kali Linux pen testing distribution

It's the best Linux distro for penetration testers' toolkits, but it's not just any Linux. Get tips on Kali Linux pen testing from project lead Jim O'Gorman. Continue Reading
Compliance rules usher in new era for personal data privacy policy

With the rollout of data privacy regulations, individual data rights and the right to be forgotten are forcing organizations to re-examine how they handle customer information. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to create a ransomware incident response plan

The increase in recent attacks makes clear the need for a ransomware incident response plan. Here's how to limit the effect of such attacks, as well as what to do if infected. Continue Reading
What are the roles and responsibilities of a liaison officer?

While liaison officer responsibilities vary depending on the company they work for, their strong organizational and communications skills make them critical to incident response. Continue Reading
CISO tackles banking cybersecurity and changing roles

Over the course of his career in security, Thomas Hill has held varied positions that inform his views on both technological specifics and strategic roles in modern corporations. Continue Reading