The results of the SEC’s second cybersecurity sweep examinations are in, and they paint a picture of an industry that has come to grips with the need to address cybersecurity risk, but where the canvas is incomplete in many respects.
On the heels of the recently adopted New York State Department of Financial Services Cybersecurity Regulation (23 NYCRR 500), Colorado…
According to a new alert from the U.S Department of Homeland Security, nine minutes is all it takes for your compromised personal information to be widely accessible and for sale
‘WannaCry’ is a wide-reaching ransomware attack that led to a May 17, 2017 SEC Risk Alert. Ascendant offers advice on how to battle ransomware in today’s environment.
NIST has proposed an update to its Cybersecurity Framework to address service provider oversight
Some SEC exams might not focus on cyber at all, but the ones that do are likely to now include a more in-depth examination of it.
New York’s 23 NYCRR 500 Cybersecurity rule goes into effect on March 1, 2017 requiring banks and other financial services companies to establish and maintain a cybersecurity program designed to protect consumers and ensure the safety and soundness of the state’s financial services industry.
The SEC has expanded its cybersecurity examinations to include testing of firms’ implementation of procedures and controls
In a first for the country’s growing body of state breach notification laws, Tennessee has recently amended its law to…
For some attacks, the amount of time to compromise and exfiltrate data is measured in seconds. Time is of the essence when a potential incident occurs.
