Tag: Cybersecurity

Hackers are frauding companies

New Guide Aids Internal Auditors on Auditing Cyber Incident Response

Cyberattacks are among the most debilitating events that companies and other organizations can experience, and internal auditors and risk managers consistently rank them among the biggest risks to the business. They know that how companies respond and react to such attacks can be the difference between a small blip and Read More

Cybersecurity risk

ESG, Cybersecurity Among Proposed Rules on SEC’s To-Do List

The Securities and Exchange Commission has released its 2021 “Agency Rule List” to give companies an idea of the regulations in its pipeline and when they can expect them to move forward. The list includes a schedule of proposed and final rules on such topics such as climate change disclosures, Read More

security

Biden Administration Calls on Companies to Improve Cybersecurity

President Biden signed an executive order Wednesday aimed at hardening the federal government’s cybersecurity defenses, as his administration tackles a slew of overlapping cyber hacks, including a ransomware attack on a major fuel artery that has caused gas shortages in at least seven states across the Southeast. The executive order Read More

deduping data

Three Steps for Better Compliance with ISO 27001 on InfoSec

The recent hack of the Colonial Pipeline, which has crippled the transmission of fuel in the Southeast United States, serves as a stark and alarming reminder to all businesses of the vulnerability of information systems to security breaches, hacks, and ransomware attacks. Over the last several years, most businesses have Read More

Cybersecurity risk

Cybersecurity Again Tops Chartered IIA’s Risk in Focus Survey

Amidst a wide range of challenges in 2020, including a global pandemic and social unrest, cybersecurity and data security risks remain top-of-mind for chief audit executives and audit committee members in Europe, the annual Risk in Focus survey from the Chartered Institute of Internal Auditors (IIA) finds. For the third Read More

Audit timeline

CISOs Struggling with Upcoming Audit Timelines

Timelines for security and compliance audits are largely unchanged in 2020, despite the disruptive impacts of COVID-19 on teams that are now working remotely, according to a recent survey of North American CISOs assessing the challenges facing security and compliance professionals. The survey, a joint effort between Shujinko and Pulse, Read More

COVID-19 Phishing Scams Target Remote Workers

As the global COVID-19 pandemic worsens, security firms and law enforcement, including the FBI, are warning of increasing phishing and other cybercriminal scams targeting a largely at-home workforce. Meanwhile, researchers also are finding that cyber-criminals are continuing to spoof organizations that are providing COVID-19 updates to the public. For example, Read More

Experts: Ransomware Attacks Likely to Surge

Targeted ransomware attacks against companies and government agencies are likely to surge in the coming months as ransomware-as-a-service continues to evolve into a lucrative model for cybercriminals, security experts warned at the 2020 RSA conference. The spike in demand for ransomware-as-a-service tools in underground forums, coupled with the anonymity offered Read More

CFTC to Become First to Adopt New NIST Privacy Framework

The Commodity Futures Trading Commission announced it will become the first federal agency to adopt the recently released privacy framework from the National Institute of Standards and Technology (NIST). The framework is a voluntary tool designed to improve privacy through enterprise risk management. The CFTC will integrate the framework into Read More