The German Federal IT security agency has set security levels for manufacturing companies. An organization aspiring for Level 5 (the highest level) must prove that all its suppliers and vendors in its supply chain are also certified for Level 5. This ensures consistency in security along the supply chain or value...
The Philippines' Department of Environment and Natural Resources, DENR, is undergoing a rapid transformation. After taking over as technology director, Arlene Romasanta implemented a three-year strategic plan that can deliver robust ICT operations and an agile digital workforce.
Backed by an annual tech budget of $8 billion, alongside an additional $1 billion specifically for supercomputing and high-performance computing, DOE is swiftly propelling its transformative agenda with a well-documented cloud strategy, robust cybersecurity measures and a commitment to digital innovations.
The future of organizational cyber resilience hinges on how proactive a CIO or CISO is. As adversaries increasingly employ advanced AI for automated attacks and leverage quantum computing to enhance speed, it becomes imperative to have a deeper understanding of threats and defense mechanisms.
Yigal Unna, former DG, National Cyber Directorate, Israel, emphasized the importance of continued collaboration between defenders and the formation of a Global Cyber Cabinet consisting of more than 20 national CISOs from leading countries working to dismantle cybercrime syndicates.
TikTok says the Biden administration has demanded that the company's Chinese owners divest their stake in the company or risk seeing the app get banned in America. The U.S., Canada, EU, U.K. and New Zealand have all banned the use of TikTok on government devices, citing national security concerns.
The U.K. government recently embarked on a plan to create its own version of the EU's General Data Protection Regulation, but attorney Jonathan Armstrong says he is "pretty skeptical" that this second attempt at privacy reform will successfully make it through the country's Parliament.
President Joe Biden's budget request for fiscal 2024 includes a big proposed boost for the federal office charged with enforcing privacy and security within the healthcare industry. The proposal asks for $78 million in appropriations for the Office of Civil Rights.
The Biden administration has unveiled its new national cybersecurity strategy, detailing top challenges facing the U.S. and plans for addressing them. Goals include minimum security requirements for critical infrastructure sector organizations and liability for poor software development practices.
The European Commission has directed employees to remove the ByteDance-owned, short-form video app TikTok from their phones and corporate devices, citing security concerns. The decision follows similar bans in the U.S. and other countries, driven by fears of Chinese hacking and influence.
Ireland's child and family agency, Tusla, says it is beginning a months-long process to notify 20,000 individuals that their personal information was exposed in the May 2021 ransomware attack against the Health Service Executive, which formerly managed Tusla's IT systems.
An eleven-day outage, prior to his joining as CIO at the United States Patent and Trademark Office, was the turning point for Jamie Holcombe to not only reset the culture and mindset but also align technology teams with business product teams to optimize the latter for better outcomes and experiences.
As the massive ESXiArgs ransomware campaign continues to target unpatched VMware ESXi hypervisors, cybersecurity experts have released a script that can decrypt at least some affected virtual machines. Ransomware trackers count at least 2,803 victims, primarily in France, the U.S. and Germany.
U.S. federal authorities are establishing a new office to tackle supply chain security issues and help industry partners put federal guidance and policies into practice. Former GSA administrator Shon Lyublanovits says she is spearheading the launch of the new organization.
An update to acquisition regulations within the Department of Veterans Affairs says that contractors have one hour to report a security and privacy incident. The clock starts ticking after the incident has been discovered. The department says the rule change only codifies an existing requirement.