Risk Assessments/Management

Financial executives say fraud more pervasive than previously thought

Karen HoffmanSeptember 15, 2022

Financial institutions are concerned about implementing more security features that challenges convenience, according to a new report by Featurespace.

Cyber veterans

UnitedHealth Group’s Ann Williamson: Protecting privacy through security

Jessica DavisSeptember 12, 2022

Said UnitedHealth Group's chief privacy officer: Synergy between privacy and security leaders on a regular basis is critical “because it's truly important that we’re not operating in silos.”

Screens show stocks being traded at the New York Stock Exchange

Compliance Management

New cyber rules for New York financial firms signal nationwide changes

Karen HoffmanSeptember 5, 2022

Proposals ratcheting up cybersecurity requirements for institutions under the New York Department of Financial Services may indicate additional regulations for U.S. banks.

An anesthesiologist monitors a patient's vital signs during surgery.

Vulnerability Management

Nonprofit hospitals possess fewer resources for risk mitigation

Jessica DavisAugust 30, 2022

A new analysis warns that nonprofit health systems are facing an uphill battle: a rise in threats, but fewer risk mitigation resources for cybersecurity.

A hard drive is seen in the light of a projection of a thumbprint.

Zero trust

Health-ISAC shares zero trust implementation guide for healthcare CISOs

Jessica DavisAugust 29, 2022

A new white paper from Health-ISAC adds to its previous identity management framework and aims to support healthcare CISOs with zero-trust adoptions.

Provider organizations are being urged by HC3 to review guidance on vishing and social engineering attacks given the rise in successful attempts against healthcare. (Photo credit: “Emergency Call Center” by Kecko is licensed under CC BY-ND 2.0.)

Vulnerability Management

HC3 alerts to social engineering risk, rise in vishing attacks on healthcare

Jessica DavisAugust 19, 2022

Two new HC3 alerts share threat tactics and recommended remediation to combat ongoing social engineering attempts and the rise of vishing attacks on the healthcare sector.

A Navy cardiologist enters patient information into a pacemaker programming system aboard the hospital ship USNS Mercy on April 29, 2020. (Navy)

Endpoint/Device Security

What if the onus of medical device security were shifted to manufacturers?

Jessica DavisAugust 11, 2022

In the last year, the FDA has signaled that the responsibility of medical device security is moving to manufacturers, designing with security in mind; an effort that could address systemic issues.

Risk Assessments/Management

Related events

A Third-Party Risk Management Implementation Guide and Toolkit

Related Videos

Transform cybersecurity with process mining