June 25, 2024 at 06:07AM SecurityWeek Network offers cybersecurity news, webcasts, and virtual events. It covers a wide range of topics, including malware, cybercrime, ransomware, vulnerability, threat intelligence, and CISO strategy. It also focuses on industrial cybersecurity and provides updates on cybersecurity funding and M&A activities. It seems like the meeting notes are a list … Read more
June 13, 2024 at 05:17PM In 2023, cyber-insurance claims hit a new high, with over 1,800 claims from the US and Canada. The surge was attributed to more complex cyberattacks, increased privacy claims, a rise in organizations purchasing cyber insurance, and the MOVEit file transfer supply chain breach. Healthcare had the highest claims at 17%, … Read more
May 29, 2024 at 04:42PM BforeAI unveiled the PreCrime Guarantee, a breach protection pledge in collaboration with a global cyber insurance provider. The initiative offers customers reimbursement up to ten times the service contract value if impacted by a cyberattack due to a failure in BforeAI’s predictive solution. The platform’s reliability was validated in a … Read more
May 29, 2024 at 06:53AM In litigation, the standard of proof varies for criminal and civil cases. Regulators overseeing enterprise cybersecurity practices rely on the concept of “reasonable cybersecurity,” which lacks a precise definition. Quantifying cyber risk is crucial in determining what constitutes a “reasonable” cybersecurity defense, with regulatory frameworks such as NIST CSF and … Read more
May 21, 2024 at 08:16AM CISOs must form strong relationships with C-suite executives and boards to advocate for cybersecurity efforts and navigate new SEC rules. They now focus on storytelling and business context in addition to technical expertise to engage and communicate effectively with different audiences. Direct access to board members and elevated positions within … Read more
May 12, 2024 at 04:11PM Last year saw a record high in ransomware attacks, affecting over 4,500 victims. Drew Schmitt, a professional negotiator for ransomware incidents, discussed evolving tactics of criminal gangs and the debate over banning ransom payments. Schmitt emphasized the complexity of the issue and the need for a multi-pronged approach to combating … Read more
May 8, 2024 at 02:06PM The ransomware attack on Change Healthcare has underscored the vulnerability of data-rich healthcare companies to cyber theft. With ransomware attacks becoming more frequent and sophisticated, businesses must focus on cyber resilience to better prepare and recover from such incidents. Organizations should prioritize strategic readiness, prevention measures, and incident response in … Read more
May 6, 2024 at 05:10PM AXA XL introduces a new cyber insurance endorsement tailored for public companies to address costs associated with meeting updated SEC reporting compliance obligations after a cyber incident. The endorsement covers expenses for investigating breaches, legal fees, and filing Form 8-K within four days of determining a material cyber breach. This … Read more
May 2, 2024 at 04:51PM Legal legwork is underway to hold software vendors accountable for insecure products, but actual laws and penalties are still a decade away, according to a policy expert speaking at the RSA Conference. The Biden Administration supports greater accountability, aiming to address the issue through proposed legal frameworks for software liability. … Read more
March 19, 2024 at 10:36AM Organizations face rising cyber insurance rates due to remote work expansion, increased cyberattacks, more claims, and higher ransomware payouts. Active Directory security plays a crucial role in insurers’ risk assessment, focusing on security audits, password control, access management, patch updates, and privileged account protection. Implementing robust Active Directory security measures … Read more