The General Data Protection Regulation (GDPR) is a comprehensive data protection law covering the European Union (EU) and is widely regarded as one of the world’s strictest privacy regulations. The GDPR unifies data regulation within the EU and provides individuals… Read More "GDPR Compliance: The Critical Role of Data Protection Officers"
The International Organization for Standardization created ISO 9001 to provide an archetypal standard for quality management systems (QMS) worldwide. The most up-to-date version of the framework is ISO 9001:2015, which highlights the importance of risk-based thinking and decision-making to improve… Read More "What is ISO 9001? Quality Management System (QMS) Standards"
The Digital Operational Resilience ACT (DORA) regulation becomes enforceable in the European Union on 17 January 2025. With stress testing on 109 banks already underway by the European Central Bank (ECB), the rest of the EU financial sector should follow… Read More "DORA Compliance Checklist | UpGuard"
The International Organization for Standardization (ISO) released ISO 37301 in 2021 to replace ISO 19600 and further refine its compliance management systems (CMS) guidelines and standards. ISO 37301 is the leading international standard organizations follow to construct and maintain effective… Read More "A Deep Dive Into ISO 37301: Compliance Management Systems"
The Chinese-language artificial intelligence app Haotian is so effective that it’s made millions of dollars selling its face-swapping technology on Telegram. The service integrates easily with messaging platforms like WhatsApp and WeChat and claims that users can tweak up to… Read More "The Ultra-Realistic AI Face Swapping Platform Driving Romance Scams"
NIST 800-53 outlines a list of security controls for protecting federal information systems from cyber threats and vulnerabilities leading to data breaches. With third-party vendors comprising a major region of federal attack surfaces, these entities also need to be monitored… Read More "NIST 800-53 Security Standard Questionnaire (Free Template)"
As the White House pushes to intensify internal leak investigations, Immigration and Customs Enforcement is quietly renewing a cybersecurity contract that governs how employee activity on agency systems is monitored, recorded, and preserved for investigation. The operation, known as Cyber… Read More "ICE Seeks Cyber Upgrade to Better Surveil and Investigate Its Employees"
The Essential Eight is a cybersecurity posture maturity model created by the Australian Signals Directorate to help Australian businesses achieve the minimum baseline of cybersecurity recommended by the Australian government to defend against cyber threats. To become Essential Eight compliant,… Read More "Essential Eight Compliance Questionnaire (Free Template)"
Infection usually starts through malicious links and fake apps, but it is also taking place via “more subtle methods,” says Richard LaTulip, a field CISO at security company Recorded Future, which collaborated with Google’s threat intelligence team on the Predator… Read More "How to Protect Your iPhone or Android Device From Spyware"
The General Data Protection Regulation (GDPR) is one of the world’s most stringent data protection laws, designed to safeguard individuals’ personal data in Europe. Since its implementation in May 2018, GDPR has significantly impacted how organizations collect, store, and process… Read More "GDPR: Penalties for Noncompliance and How to Avoid Them"
