SecureWorld News

FEBRUARY 5, 2025

The State of Cybersecurity in Canada 2025 report, published by the Canadian Cybersecurity Network (CCN) and the Security Architecture Podcast , delivers an in-depth analysis of the evolving threat landscape, emerging risks, and strategic recommendations for Canadian organizations. Retail: Supply chain vulnerabilities contribute to $7.05

InfoSec

SecureWorld News

MAY 2, 2025

At the same time, government and industry regulations are tightening: new FDA cybersecurity requirements for medical devices have come into effect, demanding stronger security controls before devices hit the market. Breaches can disrupt care delivery and put lives at risk, not to mention lead to hefty compliance fines.

Healthcare

Security Boulevard

OCTOBER 21, 2024

It is good to see US government leaders realize that ransomware is a growing existential threat to our country, at the hands of our adversaries. A top US national cybersecurity advisor stated in a recent op-ed , “This is a troubling practice that must end.” The government is looking at ways to disrupt ransomware attacks.

Ransomware

SecureWorld News

JULY 24, 2025

Only 28% have conducted a full AI-specific security risk assessment. Most organizations lack visibility, governance, or access control over these entities, undermining Zero Trust principles and cryptographic hygiene. Despite today's risk gaps, 85% of organizations plan to increase AI security budgets in the next 12–24 months.

Cybersecurity

Centraleyes

MAY 21, 2025

Leading a university also means managing a very complex set of risks: cyberattacks, financial instability, regulatory shifts, and reputational fallout, just to name a few. These risks threaten an institutions ability to educate, innovate, and serve its community. Top Challenges in Risk Management for Colleges and Universities 1.

Education

Centraleyes

JULY 27, 2025

What is Cyber Essentials Plus (v3.2 – Technical Testing Prep)? Cyber Essentials Plus (CE+) is a UK government-backed cybersecurity certification scheme developed by the National Cyber Security Centre (NCSC) and overseen by IASME Consortium, the official certification body.

Insurance

Centraleyes

JULY 28, 2025

Use a self-assessment checklist to evaluate documentation, scope, risks, and your Statement of Applicability. Cyber insurance providers and B2B clients increasingly expect formal certification- especially in sectors like finance, SaaS, healthcare, and defense. Do your risk assessments align with your controls?

Risk

Centraleyes

JUNE 26, 2025

Boards Step into the War Room Governance experts say tougher rules have shifted the conversation from IT backrooms to the board table. Centraleyes, an AI-powered risk-management platform with customers in the Asia-Pacific region, reports a similar trend.

Cyber Insurance

The Last Watchdog

DECEMBER 15, 2024

Silva Joe Silva , CEO, Spektion Reflecting on attacks in 2024, many organizations lacked visibility into their third-party software leaving themselves open to exploitation.Until organizations can shift software risk management leftbeyond reactive patchingthey will remain. Software sprawl continues to expand the attack surface. If the U.S.

Cybersecurity

Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. The emergence of shadow AIunauthorised AI tools used without IT approvalamplifies these vulnerabilities.

Cybersecurity

BH Consulting

FEBRUARY 24, 2025

Cyber insurance industry faces a pivotal year The cyber insurance industry faces a pivotal year, influenced by evolving ransomware threats, regulatory changes, and the integration of artificial intelligence (AI). A reminder here that the UK Government is considering a ban on ransomware payments.

Cyber Insurance

Centraleyes

APRIL 24, 2025

Organizations must adopt solutions that integrate continuous risk management , real-time threat intelligence, and dynamic response capabilitiesensuring that their systems are resilient. Centraleyes) How it works: Centraleyes uses AI to deliver unmatched risk management and automates compliance monitoring, keeping your security posture strong.

Penetration Testing

SecureWorld News

MARCH 5, 2025

This article explores how the latest tariffs could reshape cybersecurity for enterprises, cybersecurity vendors, and government agencies. Cybersecurity professionals are already grappling with the risks of supply chain attacks, and these tariffs add another layer of complexity. Taking another perspective on new risks, maybe a U.S.

Cyber Risk

Security Boulevard

APRIL 18, 2025

Insight No. 1 CVE programs near-death exposes security's single point of failure The recent near-halt of the CVE program due to funding issues highlights a critical vulnerability in our industry's reliance on single points of failure.

CISO

Schneier on Security

JULY 1, 2021

Here’s one more contribution to that issue: a research paper that the insurance industry is hurting more than it’s helping. Although it is a societal problem, cyber insurers have received considerable criticism for facilitating ransom payments to cybercriminals.

Insurance

Joseph Steinberg

JULY 8, 2021

Ironically, while many larger enterprises purchase insurance to protect themselves against catastrophic levels of hacker-inflicted damages, smaller businesses – whose cyber-risks are far greater than those of their larger counterparts – rarely have adequate (or even any) coverage. Cyberattacks can even kill businesses.

Insurance

Security Boulevard

FEBRUARY 11, 2021

In 2021, rethinking your cyber insurance strategy should be a top priority for CISOs and executive leadership. The elevated risk landscape is driving growing demand for cyber insurance: Nearly four out of five organizations. The post Is it Time to Update Your Cyber Insurance Strategy?

Cyber Insurance

Security Boulevard

OCTOBER 13, 2021

Will NYDFS’s Cyber Insurance Framework Set a Precedent for the Cyber Insurance Industry? As ransomware attacks reach unprecedented numbers and the number of record exposures continues to skyrocket, an increasing number of organizations are at risk of attack—and the cyber insurance industry is taking note.

Cyber Insurance

Schneier on Security

SEPTEMBER 10, 2019

From the conclusion: Policy makers have long held high hopes for cyber insurance as a tool for improving security. Cyber insurance appears to be a weak form of governance at present. The private governance role of cyber insurance is limited by market dynamics.

Insurance

SecureWorld News

JANUARY 11, 2024

In this digital battlefield, cyber insurance has emerged as a crucial shield, offering financial protection against data breaches, ransomware attacks, and other cyber incidents. This rapid ascent begs the question: what's driving the price hike, and are businesses fully prepared for the escalating cost of cyber defense?

Cyber Insurance

SecureWorld News

APRIL 17, 2023

When considering adding a cyber insurance policy, organizations, both public and private, must weigh the pros and cons of having insurance to cover against harm caused by a cybersecurity incident. Having cyber insurance can help ensure compliance with these requirements. Can companies live without cyber insurance?

Cyber Insurance

Krebs on Security

OCTOBER 1, 2020

federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today. government, they still can be fined either way, said Ginger Faulk , a partner in the Washington, D.C. Image: Shutterstock. jurisdiction) and making it a crime to transact with them.

Ransomware

Security Boulevard

NOVEMBER 12, 2021

The post Are Cyber Insurers Cybersecurity’s New Enforcers? That means cyberattacks targeting enterprises and individuals are happening at a rate of about one attack every few seconds. The average ransom payment made by a business to. appeared first on Security Boulevard.

Cyber Insurance

eSecurity Planet

MAY 27, 2021

The explosion of ransomware and similar cyber incidents along with rising associated costs is convincing a growing number of insurance companies to raise the premiums on their cyber insurance policies or reduce coverage, moves that could further squeeze organizations under siege from hackers. Insurers Assessing Risks.

Cyber Insurance

SC Magazine

JUNE 28, 2021

The rise of the cyber insurance has largely failed to promote better cybersecurity practices among the industries they cover, according to a new report released Monday from British security think tank RUSI. Photo by Spencer Platt/Getty Images). But recent research shows that’s not happening.

Cyber Insurance

CyberSecurity Insiders

MARCH 18, 2021

After the SolarWinds cyber attack on Govt infrastructure, the government of United States seems to have taken Cybersecurity as a top priority to rectify any flaws that could make way to any future cyber attacks in the future. Maintain a senior management and board approved cyber insurance risk strategy. ·

Cyber Insurance

Schneier on Security

FEBRUARY 13, 2019

Zurich Insurance has refused to pay Mondelez International's claim of $100 million in damages from NotPetya. Those turning to cyber insurance to manage their exposure presently face significant uncertainties about its promise. Yet no cyber insurance policies cover this entire spectrum. Mondelez is suing.

Cyber Insurance

SecureWorld News

MAY 26, 2021

New research reveals that a record number of organizations are buying cyber insurance policies as a tool for protecting themselves against cyber risk. However, the cost for those policies is rising dramatically as cyber insurance premiums soar up to 30% vs. the previous year. cyber insurance market.

Cyber Insurance

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. Photo by Spencer Platt/Getty Images).

Cyber Insurance

Security Boulevard

JANUARY 25, 2024

The growing number and sophistication of cyberattacks and the financial impact such incidents can have a company’s financial picture are driving more organizations to take out cybersecurity insurance, according to a survey from endpoint management firm Recast Software.

Cyber Insurance

Security Boulevard

DECEMBER 7, 2022

The post Demystifying Cyber Insurance: 7 Key Security Controls Every Organization Should Have appeared first on Security Boulevard. 7 Key Security Controls Every Organization Should Have. .

Cyber Insurance

The Last Watchdog

SEPTEMBER 14, 2018

It’s easy to think of it as a problem the federal government must address or something that enterprises deal with, but cybersecurity has to be addressed closer to home, as well. His company supplies a co-managed SIEM service to mid-sized and large enterprises, including local government agencies. Here are key takeaways: Local risks.

Government

Joseph Steinberg

AUGUST 5, 2021

While leveraging cyber-liability insurance has become an essential component of cyber-risk mitigation strategy, cyber-liability offerings are still relatively new, and, as a result, many parties seeking to obtain coverage are still unaware of many important factors requiring consideration when selecting a policy.

Insurance

Security Boulevard

JUNE 1, 2022

cyber insurance carriers in 2021 rose 92% year-over-year, largely in response to a surge in ransomware. Cyber risk insurers are also declining coverage to companies with substandard cybersecurity controls, as well as changing the fine print for sublimits to reduce coverage for types of losses one by one.

Cyber Insurance

SC Magazine

MAY 19, 2021

Today’s special columnist, Scott Register of Keysight Technologies, says government and industry must come together to secure the nation’s critical infrastructure in the wake of the Colonial Pipeline hack. The post How the ransomware explosion is reshaping the cyber insurance market appeared first on SC Media.

Cyber Insurance

SecureWorld News

MAY 1, 2024

Department of the Treasury's Federal Insurance Office (FIO) announced a major new initiative this week to improve the insurance industry's capabilities around modeling and underwriting terrorism and catastrophic cyber risks.

Cyber Risk

SC Magazine

APRIL 19, 2021

AIG is one of the top cyber insurance companies in the U.S. Today’s columnist, Erin Kennealy of Guidewire Software, offers ways for security pros, the insurance industry and government regulators to come together so insurance companies can continue to offer insurance for ransomware.

Insurance