article thumbnail

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

Enacted in 2017, this regulation is all about minimizing risk in the financial services sector, which, lets face it, is prime real estate for cybercriminals. It emphasizes AIs dual role as a tool for both advancing cybersecurity defenses and amplifying cyber risks.

article thumbnail

New York SHIELD Act: Everything You Need to Know for Compliance

Centraleyes

The New York Department of Financial Services (DFS) Cybersecurity Regulation, introduced in 2017, was groundbreaking, setting a high bar for financial institutions. Technical Safeguards These involve leveraging technology to prevent, detect, and address cyber risks: Regularly assess IT infrastructure for vulnerabilities.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Internet Security Threats at the Olympics

Schneier on Security

Meanwhile, a Russia-linked cyber attack has already stolen and leaked documents from other Olympic organizations. Even the United States Department of Homeland Security has issued a notice to those traveling to South Korea to remind them to protect themselves against cyber risks. EDITED TO ADD: There was already one attack.

Internet 283
article thumbnail

Video: GCS 2017 panel: The human factor of cyber-risk

Tech Republic Security

End users are the most vulnerable part of any network. What will it take to drastically reduce the supermajority of attacks caused by a user's bad digital hygiene and practices? What can we hope for, at best? What's realistic?

article thumbnail

Scanning for Flaws, Scoring for Security

Krebs on Security

For years, potential creditors have judged the relative risk of extending credit to consumers based in part on the applicant’s credit score — the most widely used being the score developed by FICO , previously known as Fair Isaac Corporation. Data accidentally released by FICO about the Cyber Risk Score for ExxonMobil.

article thumbnail

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

Third-party cyber risks are likely to persist at the current scale for a while longer. According to a recent Ponemon Institute study , some 59% of companies experienced a third-party data breach in 2018, yet only 16% believe they are effectively mitigating third-party risk. Uphill battle.

article thumbnail

Kroll Employee SIM-Swapped for Crypto Investor Data

Krebs on Security

A major portion of Kroll’s business comes from helping organizations manage cyber risk. Kroll’s website says it employs “elite cyber risk leaders uniquely positioned to deliver end-to-end cyber security services worldwide.”

Mobile 246