All over the country, students are heading to school unwittingly, placing their personal data at risk. Schools, universities and colleges collect a wide range of sensitive data on each of their students. Digitized student data often includes health data, social security numbers, and birth dates, as well as financial, academic, and personal contact information. If cyber criminals acquire even a few pieces of this data, the results for the student could be lifelong.
Equifax will pay at least $575 million to settle a variety of federal and state claims related to its 2017 data breach. This amount may be relatively small, especially divided by the 140+ million Americans whose data was lost, not to mention data from non-Americans. Read more from our Director of Cybersecurity.
As a healthcare provider, you are responsible for costs when your business associate suffers a data breach. The Health Insurance Portability and Accessibility Act (HIPAA) defines a business associate as a person or entity performing functions or activities that involve the use or disclosure of protected health information (PHI) or electronic PHI (ePHI).
Zeguro is an end-to-end cyber safety platform and insurance provider for small to mid-sized businesses (SMEs), offering a comprehensive suite of tools for risk mitigation and compliance, as well as insurance premiums that are tailored to the size, sector and profile of a company.
As SMEs increase their reliance on interconnected cloud-based products like Software-as-a-Service (SaaS) or Infrastructure-as-a-Service (IaaS), they add new cybersecurity risks that can impact their bottom line. This is why continuous monitoring is a core principle of a robust cybersecurity compliance program.
IoT and wearable sensors are a vital source of data in the knowledge economy. How can we start to address the risks posed by these devices? Below is a set of five key risk factors and associated countermeasures to help mitigate them.
Governments and industry standards organizations use compliance as a way to ensure security. However, security is not the same as compliance, which may leave organizations struggling to check boxes while still leaving themselves open to data security risks. Cybersecurity-as-a-Service may be the solution to their problems.
The financial services industry is especially vulnerable to cyber attacks. ATM card skimming, Trojan botnets on web app logins, denial of service attacks, and vendor management problems plague financial services organizations, regardless of size.
60% of small businesses fold within six months of a cyber attack. (Inc.com) Insuring your SME against business interruption arising from a cyber attack can keep disruption from turning into dissolution.
A look back at cyber breaches in 2018 provides three big lessons for companies,. Third party data access, leaky web apps, and risks from mobile and IoT devices provide some insight into where you will want to button up your data ecosystem in 2019. Automaion, AI, and employees training are the three things to focus on in the New Yeak.
Frameworks like Enterprise Risk Management help guide process. The technology recommended to enforce Integrated Risk Management are a natural and important followup. You need to understand both to make sure you mitigate and manage your exposure.
When it comes to employee or customer healthcare information, accidents can bankrupt a company. Maintaining a corporate culture of security-first compliance to create a cyber aware workforce prepares and protects your practice or your enterprise from common HIPAA violations associated with employee actions - whether you’re in the healthcare field or not.
Zeguro, a pioneer in cyber risk management for small and medium-sized enterprises, closed $5 million in funding from a prominent group of investors to launch its Cyber SafetyPlatform to help companies assess and mitigate their cyber risks. The round was led by Mosaik Partners, joined by Healthy Ventures, Munich Re / HSB Ventures, QBEVentures, Social Capital, Plug and Play, and Sparkland Capital.
The GDPR went into effect in May, and was immediately followed by an initial round of consumer rights lawsuits. Small and medium enterprises anywhere in the world that collect data on EU citizens (knowingly or not) need to be prepared.