Topic: third-party risks
-
New National OT Security Guidelines Released
An international coalition of cybersecurity agencies has released new operational technology (OT) security guidelines to protect critical infrastructure worldwide, providing a structured framework for organizations to enhance system resilience. The framework outlines five core principles, includi...
Read More » -
Urgent New OT Security Mandate: Maintain Real-Time System Inventory
International cybersecurity agencies have issued updated guidance requiring operational technology organizations to create and maintain a real-time, definitive inventory of their entire system architecture as a foundation for effective cybersecurity. The framework emphasizes a prioritized approac...
Read More » -
Law Firms Under Siege: Cybercriminals Target Client Data
Law firms are prime targets for cyberattacks due to the vast amounts of sensitive client data they hold, with smaller practices being particularly vulnerable due to a lack of dedicated security staff. Common security weaknesses include weak passwords, outdated software, poor data handling by empl...
Read More » -
5 Ways CISOs Can Tackle Cloud Concentration Risk
Cloud concentration risk is a major challenge for CISOs, as heavy reliance on a few providers increases exposure to vendor-specific disruptions, regulatory conflicts, and service outages. This risk includes vendor, availability, business continuity, and regulatory aspects, with mitigations like c...
Read More » -
Cybercriminals Target Drug Formulas and Patient Data
Cybercriminals target pharmaceutical companies for valuable clinical trial data, patient records, and proprietary formulas, posing significant financial and public health risks. Data breaches in the sector average $4.61 million per incident, with ransomware and third-party vulnerabilities leading...
Read More »
