#TechCompliance

CISA proposes new security requirements to protect govt, personal data

by

October 22, 2024 at 06:12PM The U.S. Cybersecurity & Infrastructure Security Agency (CISA) proposes new security requirements to protect Americans’ personal and government-related data from adversarial states. Aimed at organizations handling sensitive information, the measures include asset management, vulnerability remediation timelines, and encryption protocols. Public input is encouraged via regulations.gov. Here are the key takeaways … Read more

SEC charges tech companies for downplaying SolarWinds breaches

by

October 22, 2024 at 02:39PM The SEC charged Unisys Corp, Avaya Holdings, Check Point Software, and Mimecast for misleading investors about cybersecurity breaches from the 2020 SolarWinds hack. The companies agreed to pay civil penalties totaling approximately $6 million, with fines based on downplayed disclosures regarding their incidents and data access during the breach. ### … Read more