Jane Frankland

JULY 22, 2025

Could this mean that large enterprises are actually more at risk than smaller ones? The irony is stark: choosing a partner based on who’s safest to blame—not who’s best at protection—can increase the risk of a breach in the first place. That’s what I’m exploring in this blog. Let’s dive in. ” The outcome?

Risk

Jane Frankland

JUNE 24, 2025

And today, with an increasing volume of digital challenges – from malicious to mistakes and malfunction, it’s vital we move beyond this narrative and focus on governance and empowerment instead. But a governance issue that sits squarely with those who lead. The good news? Change is happening. Not a bolt-on. Not a bolt-on.

Cyber Risk

Security Boulevard

NOVEMBER 22, 2024

Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. OWASP — the Open Worldwide Application Security Project — released its first “Top 10 Risks for LLMs” last year. government, can also help software developers create safer applications. Plus, the ranking of the most harmful software weaknesses is out.

Cyber Risk

Security Boulevard

DECEMBER 30, 2024

These rules , which mandate that all public companies disclose material cybersecurity incidents within four business days and detail their risk management strategies, highlight that cybersecurity is a board-level risk management concern. Tenable CEO Amit Yoran had a clear point of view when he wrote about the rules as they took effect.

Cybersecurity

SecureWorld News

FEBRUARY 25, 2025

From the report: "AI-driven access controls allow organizations to dynamically adjust permissions based on real-time risk assessments, reducing the attack surface." Organizations should integrate AI-driven risk scoring into their Zero Trust architecture.

Cybersecurity

Centraleyes

AUGUST 4, 2025

Key Takeaways Risk assessments often miss business alignment. Appendix K offers a simple, repeatable risk scoring method. Clear risk data improves decisions and accountability. Regular updates and ownership keep risks managed. 60% of companies are just beginning to explore formal risk quantification.

Risk

Jane Frankland

JULY 17, 2025

That rugby-box insight wasn’t just banter—it reflected a deeper truth that’s reshaping the cyber landscape. Around the world, governments are weaponising regulation—using cyber laws to block foreign firms, force data localisation, and demand access to proprietary systems under the guise of compliance.

Cybersecurity

The Last Watchdog

DECEMBER 5, 2024

One Identity embodies three major features we judges look for with the potential to become winners: understanding tomorrows threats today, providing a cost-effective solution and innovating in unexpected ways that can help mitigate cyber risk and get one step ahead of the next breach, said Gary S.

InfoSec

SecureWorld News

JUNE 19, 2025

government agencies, the document underscores both the promise and peril of AI technologies when integrated into enterprise systems. The document highlights risks such as data poisoning, model inversion, and membership inference attacks. Produced through collaboration among U.S.

Cybersecurity

SecureWorld News

MAY 2, 2025

At the same time, government and industry regulations are tightening: new FDA cybersecurity requirements for medical devices have come into effect, demanding stronger security controls before devices hit the market. Breaches can disrupt care delivery and put lives at risk, not to mention lead to hefty compliance fines.

Healthcare

Security Boulevard

DECEMBER 11, 2024

A warning issued by the new head the United Kingdom's National Cyber Security Centre (NCSC) should be sobering to cybersecurity pros everywhere. Speaking at the agency's headquarters on Tuesday, Richard Horne declared that the cyber-risks faced by his nation and its allies are widely underestimated. The post U.K.

Risk

Security Affairs

OCTOBER 13, 2024

Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

SecureWorld News

JANUARY 12, 2025

A 2022 PwC study found that 59% of directors admitted their board is not very effective in understanding the drivers and impacts of cyber risks for their organization, emphasizing the critical role of board members in these moments. Only a select group of properly trained individuals should escalate cyber incidents to the board.

Cybersecurity

SecureWorld News

JANUARY 16, 2025

Regularly updating and patching systems, including antivirus software, firewalls, and SCADA networks, can mitigate this risk. This significantly reduces the risk of unauthorized access. Develop backup and recovery plans: Data recovery plans are essential to mitigate the impact of cyber incidents.

Energy and Utilities

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. In addition, find out how AI is radically transforming cyber crime. And get the latest on open source software security; cyber scams; and IoT security. Plus, get fresh guidance on how to transition to quantum-resistant cryptography.

Risk

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects. The issue serves as a reminder of the potential risks inherent in widely used software.

Internet

Cisco Security

JULY 7, 2025

During his time with Cisco and at Robust Intelligence before that, Hyrum has been on a self-proclaimed crusade to get people to understand the cybersecurity risks from AI/ML. Nguyen also praised Hyrum for his contribution in “one of the fastest-emerging areas of cyber risk.

Cyber Risk

Malwarebytes

JULY 2, 2025

The breach at a third party provider is extra painful since Qantas concluded an uplift of third and fourth-party cyber-risk governance processes in 2024. They target large corporations and their third-party IT providers, which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk.

Social Engineering

SecureWorld News

JUNE 25, 2025

As connected healthcare devices become more pervasive and critical to patient outcomes, the cyber risks tied to their design, production, and deployment grow exponentially. According to the report, "Cybersecurity risk management should begin during product concept and continue throughout the total product lifecycle (TPLC)."

Manufacturing

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

Cyber Risk

Centraleyes

DECEMBER 11, 2024

Governments and regulatory authorities may also mandate compliance with IATA standards to align with broader cybersecurity strategies. These include: Cybersecurity Risk Assessment: Organizations must perform a comprehensive risk assessment to identify potential vulnerabilities in their operations. and the EU Cybersecurity Act.

Risk

Security Boulevard

JANUARY 24, 2025

The latest guidance for adopting AI securely comes from the World Economic Forum, whose new Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards report seeks to explain how organizations can benefit from AI while reducing their cybersecurity risks. Do we have a process to govern and track AI deployments?

Banking

Security Boulevard

JUNE 27, 2025

government’s latest call for developers to use memory-safe programming languages, as well as its warning for cybersecurity teams regarding cyber risk from hackers tied to Iran. Plus, get the latest on ransomware trends, the quantum computing cyber threat and more! Low-level cyber attacks against U.S. and the U.K.)

Cyber threats

Security Boulevard

MARCH 7, 2025

Check out best practices for shoring up data security and reducing cyber risk. And get the latest on cyber scams; zero-day vulnerabilities; and critical infrastructure security. 1 - CSA: How to boost data security and reduce cyber risk Risk assessment gaps. Siloed cyber tools. Misaligned priorities.

Cybersecurity

Centraleyes

NOVEMBER 24, 2024

This isn’t just a talking point; it’s the groundwork for a deeply integrated approach that balances regulatory needs with active cyber risk management. Unlike compliance-first solutions, these platforms are designed with cybersecurity risk management at their core.

Risk

SecureWorld News

FEBRUARY 20, 2025

This development, announced on February 19 , has wide-reaching implications for industries, enterprises, governments, and, critically, cybersecurity both as an opportunity and a challenge. As quantum computers grow, current encryption methods like RSA and ECC may soon become vulnerable," said Kip Boyle , vCISO, Cyber Risk Opportunities LLC.

Encryption

BH Consulting

JANUARY 30, 2025

Cyber risk remains top of mind for business leaders A regular January fixture, the World Economic Forums Global Risk Report 2025 features two technology-related threats among the top five risks for the year ahead and beyond. The report ranks risks by severity over two-year and 10-year timeframes.

Cyber Risk

SecureWorld News

APRIL 29, 2025

Whether it was caused by a sophisticated cyberattack or an ordinary technical failure, the outcome remains the same: millions disrupted, critical services compromised, and economic damage," said Kip Boyle , Instructor and vCISO at Cyber Risk Opportunities LLC.

Cyber Attacks

Security Boulevard

AUGUST 6, 2025

With over $100 million on the table in FY25 cybersecurity grants, state, local and tribal governments have until August 15, 2025 to apply to secure critical cyber funding to strengthen their defenses. million for state and local governments Tribal Cybersecurity Grant Program (TCGP) : $12.1 On August 1st, the U.S.

Government

Thales Cloud Protection & Licensing

JUNE 3, 2025

What is Data Security Risk? Risks are introduced to the databases, file servers, data lakes, cloud repositories, and storage devices through all the access paths to and from these systems. Why does complexity factor into data security risk? Many factors drive organizations growth and at the same time security complexity.

Risk

Jane Frankland

APRIL 18, 2025

Organisations invest heavily in governance, risk, and compliance (GRC) and risk management efforts while neglecting foundational elements like leadership and culture. Risk Management Brings Clarity (Belonging and Love Needs) The middle of the hierarchy addresses our need for connection and clarity. The result?

Cybersecurity

Security Boulevard

MAY 2, 2025

Back in September 2024, CISA sounded the alarm on critical infrastructure organizations susceptibility to common, well-known attack methods in its CISA Analysis: Fiscal Year 2023 Risk and Vulnerability Assessments report. Coast Guard conducted in 2023. Enforce multi-factor authentication across all software development environments.

Cybersecurity

Security Boulevard

JUNE 6, 2025

Embrace change: Stay attuned to emerging cyber risks and be ready to modify cybersecurity processes accordingly. Show how this capacity to adapt to new cyber threats helps strengthen the organization’s resilience. critical infrastructure organizations must have a plan in case a lengthy, widespread cyber war breaks out.

CISO

Centraleyes

MARCH 13, 2025

Enacted in 2017, this regulation is all about minimizing risk in the financial services sector, which, lets face it, is prime real estate for cybercriminals. The program should be tailored to your specific business risks. Insight: Many businesses make the mistake of copying templates without understanding their unique risks.

Cybersecurity

Centraleyes

MAY 21, 2025

Leading a university also means managing a very complex set of risks: cyberattacks, financial instability, regulatory shifts, and reputational fallout, just to name a few. These risks threaten an institutions ability to educate, innovate, and serve its community. Top Challenges in Risk Management for Colleges and Universities 1.

Education

IT Security Guru

MARCH 26, 2025

At an individual level, this will change how we interact with each other as citizens, with our governments, perform our jobs and consume goods and services. Autonomous AI agents as our workforces or perhaps as the foot soldiers to decentralised applications in a Web 3.0

Cybersecurity

Duo's Security Blog

AUGUST 11, 2025

Forrester consultants interviewed seven decision-makers about their experiences with Duo and the benefits, costs, risks, and flexibility of their investments. Companies that do not have strong identity security face higher risk from phishing attacks, credential theft, and brute-force intrusions. and 10k full-time employees (FTEs).

Cyber Insurance