Topic: cybersecurity practices
-
CISA Unveils New Tool to Secure Software Procurement
The US Cybersecurity and Infrastructure Security Agency has launched a free interactive web tool to help organizations evaluate software assurance and manage supply chain risks during procurement. This tool adapts to user inputs, offering tailored security recommendations and generating exportabl...
Read More » -
Major AI Firms Expose Sensitive Data in Security Breaches
A majority of top AI companies have exposed sensitive data like API keys and security credentials through code-sharing platforms, affecting firms with a combined valuation over $400 billion. The rapid pace of AI innovation has led to cybersecurity lapses, with vulnerabilities present regardless o...
Read More » -
NSA Zero Trust: Where Guidance Meets Enterprise Reality
The NSA has released a phased implementation guide for Zero Trust security, translating principles into actionable tasks to help organizations build defenses based on their maturity level. The guidance emphasizes continuous evaluation and coordinated policy enforcement beyond initial login, treat...
Read More » -
Tunisie Telecom Secures ISO 27001:2022 for Enhanced Data Security
Tunisie Telecom has achieved ISO/IEC 27001:2022 certification for its Information Security Management System, validated by TÜV Rheinland, highlighting its commitment to top-tier security protocols. The certification applies to all processes of the Customer Relations Directorate, ensuring customer...
Read More » -
CEOs' Top Worries: Cyber Risk and Slowing Growth
Cyber risk has become a top immediate threat for CEOs globally, now rivaling macroeconomic instability as confidence in short-term revenue growth declines. Nearly one-third of CEOs see a high risk of substantial financial loss from cyber threats in the coming year, with concern levels varying sig...
Read More » -
Whistleblower: DOGE Leaked Social Security Data on Unsecured Server
A whistleblower alleges that the Social Security Administration's DOGE department uploaded hundreds of millions of sensitive records to an unsecured cloud server, risking exposure of personal data for nearly all Americans. The complaint claims senior officials approved the transfer despite warnin...
Read More » -
FCC to Roll Back ISP Cybersecurity Mandate
The FCC is reversing a cybersecurity mandate for internet providers after industry lobbying, with Chairman Brendan Carr arguing it overstepped legal authority and that companies have already improved security voluntarily. The original 2025 ruling responded to state-sponsored cyberattacks like Chi...
Read More »