IT

Biden threatens to void contracts from non-secure vendors

US president Joe Biden’s recent order on cybersecurity threatens to pull business from software vendors who don’t update their systems by next May – although some observers wonder how the government plans to execute on this threat, given how entrenched many companies are in the global supply chain.

24 June 2021

Cyber insurers struggle to measure risk as attacks increase

Cyber insurance providers are struggling to measure risk amidst skyrocketing demand for their services, according to a recent report from the US federal government.

25 May 2021

Biden cybersecurity order “late” but addresses common concerns

A Biden administration executive order aims to remove restrictions that prevented public- and private-sector entities from sharing information with each other in the wake of the SolarWinds hack.

17 May 2021

SolarWinds hack didn’t compromise HHS healthcare data

While the SolarWinds hack affected some 18,000 computer networks and compromised an untold amount of data, the US Department of Health and Human Services has said that it was largely unscathed by the cyberattack.

12 May 2021

SolarWinds revenue grows in wake of massive breach

Software vendor SolarWinds has seen its revenue grow, retained most of its customers, and has yet to be sued following the massive cyberattack against the company, according to the firm’s latest quarterly financial results.

30 April 2021

Zoom fails to shake privacy litigation

A US federal court has dismissed some, but not all, of a class action lawsuit over Zoom’s allegedly shoddy privacy and data security practices.

12 March 2021

Amazon blasted for skipping SolarWinds hearing

Several US senators have chastised Amazon Web Services for declining to testify at a congressional hearing on the SolarWinds hack, saying the lack of participation illustrates the need for stronger data breach notification rules.

24 February 2021

Vendor involved in SolarWinds declined to share info, former CISA head says

Former US Cybersecurity and Infrastructure Security Agency director Chris Krebs has told Congress that a contractor involved in the SolarWinds hack declined to disclose information about the breach – illustrating how public contractual confidentiality requirements can block investigations into large-scale breaches.

11 February 2021

Trump mandates KYC for cloud providers

In one of his administration’s final acts, former US President Donald Trump issued an executive order requiring web service providers to verify the identity of foreign persons to whom they sell infrastructure-as-a-service (IaaS) products.

26 January 2021

Brazil mandates internet equipment security by design

Brazil’s telecommunications regulator has issued requirements for the country’s internet infrastructure to have built-in security features aimed at thwarting cyberattacks.

22 January 2021

Get unlimited access to all Global Data Review content