GDPR 2021 – Compliance and Penalties; 3 Years Later Steve TcherchianSeptember 21, 20210332 views The General Data Protection Regulation, or GDPR, is a major piece of legislation adopted in 2018. It is designed to address the protection and responsible use of every European Union citizen’s personal data. However, GDPR is not an EU-only regulation. It affects ANY business or individual handling the data of EU citizens, regardless of where that business or individual is based. Read more
Payments Apps and Database Security. It’s Business as Usual. Until it’s Not. Steve TcherchianSeptember 21, 20210268 views CashApp, Zelle, Venmo, ApplePay, Square - the payments industry is growing and expanding into areas we hadn’t imagined. Everyone relied on it before the pandemic - now it’s critical infrastructure and embedded into our everyday habits. Read more
PCI DSS 4.0 Is Coming. Will You Be Ready? Steve TcherchianJune 15, 20210325 views Since the release of PCI-DSS 3.0 in 2013, the PCI Security Standards Council has been quite busy. A little over a year after it was published, the council released PCI-DSS 3.1, followed by several new templates and supplements, including the “Migrating from SSL and early TLS Information Supplement” in April 2015 which highlighted the risks of SSL and TLS 1.0. The supplement described a migration plan as well as set a migration deadline of 1 July, 2016. Read more
Ransomware Data Recovery — Protect and Recover Your Data CohesityJune 15, 20210362 views A ransomware attack is devastating. Compromised businesses and organizations suffer steep financial losses (an estimated $10.5 trillion annually by 2025) compounded by the loss of customer and partner trust. If a healthcare organization is a victim, it can even risk human life. By virtue of the increased value of data to organizations, not only are the number of ransomware attacks growing, but so too are the different types of this threat. According to Bitdefender’s Mid-Year Threat Landscape Report 2020, global ransomware reports increased by 715% year over year. Read more
President Biden’s Cybersecurity Order 101: The Essential Guide Steve TcherchianJune 15, 20210304 views On May 12th, 2021, President Biden released the “Executive Order on Improving the Nation’s Cybersecurity”. Its primary goal is to secure our national digital landscape. What we’re seeing is an overdue, full-force reaction to the threats to cybersecurity and operational infrastructure. Read more
Meeting Your Security Integration Objectives – CyberArk, ServiceNow, Splunk and more… Steve TcherchianMarch 23, 20210408 views COVID-19 and its security ramifications continue in 2021 and well beyond. All of the threats brought to the fore when we were sent to work from home got added to the already-growing set of risks we were already trying to mitigate. Read more