Emerging geopolitical rivalry in the Asia-Pacific region made cybercrime a handy tool for nations to mount disruptive attacks on their rivals in 2023, forcing many countries to double down on cyber defense plans. Here's how some of the leading APAC countries responded to growing threats.
In this weekly update, four editors at Information Security Media Group delve into key 2023 cybersecurity issues, spotlighting efforts by the Biden administration, proposed U.S. healthcare cybersecurity laws, and crucial upcoming dates for the information security community.
Google reached a preliminary settlement in a class action lawsuit that alleged the tech giant had misled consumers about their privacy protections when using the private browsing Incognito mode of its Chrome web browser. The settlement came on the heels of a court ruling clearing the case for trial.
Albania's Parliament and a telecommunications service provider faced online attacks on Christmas day, according to the Albanian National Authority for Electronic Certification and Cyber Security. Iranian hackers called Homeland Justice have claimed responsibility for the latest wave of attacks.
This week in the cryptocurrency industry, Thunder Terminal successfully prevented a hack, Changpeng Zhao ranking 34th on a list of billionaires, Coinbase refuted a senator's allegations of subverting crypto regulations, and scammers stole $3 million in 24 hours using fake ads.
AI holds great promise for automating and improving many healthcare processes and tasks - including clinical decision support - but if some users become overly dependent on these systems, that could be potentially detrimental to patients, says attorney Lee Kim of HIMSS.
A new GAO report says federal agencies fail to provide health are providers and patients with enough resources and information to address critical vulnerabilities in a majority of medical devices in the U.S. that can result in "potential catastrophic impact to hospital operations and patient care."
India's new telecommunications law has raised concerns over the possibility of data privacy infringements and enhanced government surveillance but addresses the need for a strong legal mechanism to clamp down on worsening SIM fraud and shadow telecom networks.
The Federal Trade Commission has banned Rite Aid from using AI-based facial recognition technology for security surveillance for five years after the retail drug store chain failed to implement safeguards such as mitigating risks for inaccurate outputs based on race and gender.
Lobbyists for U.S. hospitals oppose a Biden administration proposal for mandatory cybersecurity requirements and possible financial disincentives for organizations that fail to meet those expectations. Industry experts contend that some type of government actions are needed.
China's industrial and information technology ministry unveiled plans to classify data security incidents based on severity and the extent of damage to victims. It proposes color-coding incident types to help regulatory agencies respond appropriately to specific events faster.
Co-chairs of the Cyberspace Solarium Commission praised the annual U.S. national defense bill for enacting recommendations from its 2020 report, saying the bill marks "meaningful" advancements for cybersecurity. With the bill, 58 out of the commission's 82 recommendations will have been enacted.
Public companies must soon meet the SEC's material incident reporting requirements. Already, one ransomware threat actor has tried to report a victim for not reporting an attack. Veteran security leader Edna Conway opens up on how to approach materiality and the weaponization of reporting.
Singapore's cybersecurity agency is asking for public comments on a proposed list of amendments to the country's Cybersecurity Act to enhance its ability to monitor supply chain security and digital technologies that fall outside the definition of critical information infrastructure.
New York State regulators have smacked one of the largest dental administrators in the state with a $400,000 fine for a 2021 incident in which an attacker gained access to an employee email account containing 12 years' worth of messages, including many holding sensitive member information.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.in, you agree to our use of cookies.