So, You’ve got Cyber Insurance and You’re all Set, Right?  

Cyber Insurance

How about we play a little cyber insurance trivia to find out?  Trust me; it’s more interesting than you might think. In an interview between Carole Theriault and Martin Overton, Theriault plays, “Covered by cyber Insurance, True or False” with Overton, who once worked for a large cyber insurance company. Overton describes himself as a

“Next Gen” Devices Aren’t Going to Solve Your Current Security Problems

next gen security, cybersecurity

Are you sick of the marketing hype suggesting some “Next Gen” security device can solve all your security problems? Yes? Good. If not, maybe you should be. Let’s pick on the Redmond giant for a moment to illustrate an example. Microsoft announced last month that after a legal victory, it had taken down 99 websites

Enhanced Ransomware Protection

Although the industry acknowledges a decline in the number of ransomware attacks in 2018, this news isn’t anything to get excited about. The trend has moved from targeting individuals via mass email campaigns to companies by way of manual attacks. Perhaps the reason for this is security awareness programs have been effective, and end users

Regulatory Fines, The Dollars are in the Details

Regulatory Fines, data privacy, GDPR, Cybersecurity framework

I was just speaking with a colleague about the news that Google has been fined the largest penalty to date for failing to comply with GDPR obligations. The penalty was around $56 million USD, but  the Marriott data breach penalty is estimated to be around $1 billion. Why such a discrepancy between the two?  That

Data Privacy is not an Illusion, but the Solution might be

We have all been exposed, if not inundated, with the fact that so much of our personal information has been systematically harvested for years. Both with and without our knowledge or consent. Combine this with a never-ending stream of data breaches that have left vast amounts of our personal lives scattered about the dark web

Dark Web? We don’t need no stinking Dark Web…

Wait what? Need the Dark Web? What are you talking about? The truth is so much information about you is already available in all the places where it’s supposed to be secure. Imagine for a second that your personal information only existed in the Dark Web.  Ironically, it might really be less accessible – well

Apathy: CyberSecurity’s biggest HURDLE

WE ARE COMFORTABLY NUMB, AND THE DATA AGGREGATORS KNOW IT…. Who knew Pink Floyd’s classic rock hit could be the theme song to the current state of data breaches.  Given the lack of any lasting public outrage for data breaches and leaks of personal data, I find myself wondering if the masses really care?  Meaning,

Along the Fault Line: CA takes on Data Privacy Rights & Silicon Valley Freaks

What’s to worry about California taking on Data Privacy Rights legislation that aims to protect the individual’s data and punish businesses that make their cash by peddling it? Well, it seems that if you Google “California GDPR”, ironically you might find results indicating that Google is none-too-happy, for one. Yes, that’s right, California has passed,

Dangerous SAML SSO vulnerability?

Several sources have recently reported the discovery of a ‘flaw’ in certain SAML implementations that could allow a ‘bad actor’ to alter the identity carried in a Single Sign-On SAML assertion and legitimately log in as a different user as reported by TechTarget. Wow – that’s bad!  That was my initial reaction, and I envisioned

A Multi-layered Approach to Securing Data Assets

In this 3rd of 6 Vblogs, CTI’s Ben Thurston explains to Mark Janowicz that there is no one cybersecurity solution that will solve all problems when it comes to data security.  The best approach, Ben explains is a multi-layered one. The data that is owned by your marketing team contains a lot of important and