November 21, 2024 at 08:19AM Public relations experts play a crucial role during cybersecurity incidents by safeguarding a company’s reputation. They build trust beforehand, ensure transparent communication, utilize social media effectively, collaborate with cybersecurity teams for accurate messaging, and focus on long-term trust rebuilding through education and advocacy after an attack. ### Key Takeaways from … Read more
October 30, 2024 at 03:33PM The Open Source AI Definition (OSAID) v.1.0 was launched at All Things Open 2024 after extensive community collaboration. This definition establishes standards for evaluating AI systems as Open Source, emphasizing transparency in training data. The Open Source Initiative (OSI) aims to guide the industry in fostering an Open Source AI … Read more
September 6, 2024 at 10:05AM Summary: Protecting critical infrastructure from state-sponsored cyber threats, such as Volt Typhoon, is crucial for public safety and national security. Transparency, information sharing, and strong partnerships between public and private sectors are essential for combating these threats. Utilizing software bills of materials and observability can help enhance cybersecurity efforts and … Read more
July 24, 2024 at 07:54AM SafeBase addresses the issue of security questionnaires, which are a burden to organizations and teams. They advocate for a Trust Center-first approach to reduce or eliminate security questionnaires. SafeBase’s Trust Center platform aims to lessen the burden of security questionnaires through automation, AI questionnaire assistance, and a Chrome extension. After … Read more
July 11, 2024 at 10:12AM UnitedHealth CEO Andrew Witty testified about the costly cyberattack on Change Healthcare before the Senate and House. He pledged to address security flaws and backed a centralized cyber-incident reporting system. The existing National Cyber Incident Response Plan, supported by the Biden administration, seeks to streamline reporting and improve coordination. This … Read more
June 7, 2024 at 02:36AM SORBS, a popular source for identifying spam servers, has been shut down by Proofpoint, its owner. The DNS-based Block List contained over 12 million known spam and phishing servers and was used by over 200,000 organizations. The service, in existence for 20 years, may be acquired, but high operational costs … Read more
May 31, 2024 at 10:07AM The American Privacy Rights Act of 2024 (APRA) is a comprehensive national legislation aiming to hold organizations accountable for privacy. It includes requirements like CEO-signed compliance certification, biennial audits, and publishing privacy policies. However, concerns remain about transparency, ethics, and the impact of GenAI models, indicating the need for further … Read more
May 30, 2024 at 08:48AM GenAI is a key focus for enterprise IT strategies, with security teams working to establish best practices. They must ensure data privacy, content accuracy, responsible usage, and security-focused design and development. By addressing these four areas, security teams can understand and enhance the safety and reliability of GenAI technology. Based … Read more
May 24, 2024 at 09:59AM In October 2023, the SEC filed a landmark lawsuit against SolarWinds Corp. and its CISO, Timothy Brown, over alleged false statements about cybersecurity. CISOs should enhance communication with financial teams, ensure all statements are rigorously reviewed, maintain top-notch security policies, collaborate with assurance providers, and seek legal counsel amidst evolving … Read more
April 14, 2024 at 06:35PM OpenTable faced backlash for revealing members’ names and profile pictures in past anonymous restaurant reviews. After user feedback, the decision was reversed, and old reviews will remain anonymous. However, new reviews will include first names and profile pictures, aiming to increase transparency in restaurant reviews. The new policy’s implementation date … Read more