Cyber attacks

The number of incidents has risen rapidly in recent years, but organizations are learning from their mistakes and making improvements.

Leading organizations embrace information security from the top down, and employees are given the right resources to defend against a breach.

The latest mandate encourages greater sharing of data between public and private organizations, and establishes protections of privacy and liability for those sharing the information.

Carrier is required to pay $5.5 million, employ two breach specialists in its IT department and conduct audits of its systems yearly.

SOCs devote 50 percent more time than their counterparts on actual threat hunting, according to a new study from McAfee.

Firms should be looking at whether they have the right culture and people in place to understand data and how to best keep it safe.

Researchers have seen at least three cyber espionage operations using this technique, says Alexey Shulmin of Kapersky Lab.

The Internet of Things Cybersecurity Improvement Act of 2017 calls for Internet-connected devices to be patchable, meet minimum data safety standards and have changeable password capability.

The rampant proliferation of easy-to-use hacking tools and number of bad actors willing to deploy them means that everyone needs to 'up their game' to stay safe.

Following a cyberattack, the things an organization should not do often go overlooked. Company leaders could end up spreading the fire, rather than smothering it, says John Suit.

A majority of IT professionals still think perimeter security is effective at keeping unauthorized users out of their networks, a new study reveals.

New York law will have ripple effects on insurers around the country.

While many computer systems have been patched up to protect against malware such as WannaCry, this new infection has additional capabilities that let it spread by other means.

The latest cyber attacks, as well as certain regulations, pressure insurers to bring on a full-time security professional, says Novarica's Mitch Wein.

A system upgrade from accounting software producer M.E.Doc unwittingly contained the virus, Ukrainian police said.

Your objective is to dodge the hack coming up or to fully mitigate its impact if a breach occurs. Here, then, are seven best practices to put into action before that exploit hits.

Enterprise-wide digital transformation efforts are putting information at greater risk for compromise.

As companies around the world defend against the WannaCry ransomware attack, a new study finds basic defensive measures are often lacking.

The malware used a technique purportedly stolen from the U.S. National Security Agency.

More than one third of firms were attacked at least five times in past 12 months, says security expert Nat Kausik.