IT

Biden cybersecurity order “late” but addresses common concerns

A Biden administration executive order aims to remove restrictions that prevented public- and private-sector entities from sharing information with each other in the wake of the SolarWinds hack.

17 May 2021

SolarWinds hack didn’t compromise HHS healthcare data

While the SolarWinds hack affected some 18,000 computer networks and compromised an untold amount of data, the US Department of Health and Human Services has said that it was largely unscathed by the cyberattack.

12 May 2021

SolarWinds revenue grows in wake of massive breach

Software vendor SolarWinds has seen its revenue grow, retained most of its customers, and has yet to be sued following the massive cyberattack against the company, according to the firm’s latest quarterly financial results.

30 April 2021

Zoom fails to shake privacy litigation

A US federal court has dismissed some, but not all, of a class action lawsuit over Zoom’s allegedly shoddy privacy and data security practices.

12 March 2021

Amazon blasted for skipping SolarWinds hearing

Several US senators have chastised Amazon Web Services for declining to testify at a congressional hearing on the SolarWinds hack, saying the lack of participation illustrates the need for stronger data breach notification rules.

24 February 2021

Vendor involved in SolarWinds declined to share info, former CISA head says

Former US Cybersecurity and Infrastructure Security Agency director Chris Krebs has told Congress that a contractor involved in the SolarWinds hack declined to disclose information about the breach – illustrating how public contractual confidentiality requirements can block investigations into large-scale breaches.

11 February 2021

Trump mandates KYC for cloud providers

In one of his administration’s final acts, former US President Donald Trump issued an executive order requiring web service providers to verify the identity of foreign persons to whom they sell infrastructure-as-a-service (IaaS) products.

26 January 2021

Brazil mandates internet equipment security by design

Brazil’s telecommunications regulator has issued requirements for the country’s internet infrastructure to have built-in security features aimed at thwarting cyberattacks.

22 January 2021

“Assume there was a full compromise” – DC cybersecurity expert talks Capitol Hill riots

In the midst of the political chaos stemming from last week’s riots on Capitol Hill, IT experts remain focused on the cybersecurity risks associated with the fateful events. GDR spoke with Washington, DC cybersecurity consultant Norma Krayem – the head of the data practice at lobbying firm Van Scoyoc Associates (VSA) – about the risks associated with such a massive physical breach.

13 January 2021

FTC-mandated data sharing agreement to end early

A company has benefitted from a US Federal Trade Commission data remedy to such an extent that the authority has agreed to end a mandatory data-sharing agreement two years early.

04 December 2020

Get unlimited access to all Global Data Review content