President Biden in the last few days of his administration issued an expansive cybersecurity EO that touched on issues like software supply chain, AI, and foreign adversaries. Many approved of the effort, though there were concerns that the incoming administration will simply shelve it.

The post The Good, the Bad, and the Politics of Biden’s Cybersecurity Order appeared first on Security Boulevard.

Wow. Just Wow: Joseph Robinette Biden Jr. hits the emergency “do something” button.

The post This is HUGE: Biden’s Cybersecurity Exec. Order — Big Parting Gift to Trump appeared first on Security Boulevard.

Advanced persistent threats (APTs) use sophisticated tools and techniques to breach systems and maintain access—all while remaining undetected. Unlike other cyberattacks, APTs work over an extended period, using more resources to achieve specific objectives, such as stealing sensitive data or bringing down operations.

The post Advanced Persistent Threat (APT): Examples and Prevention appeared first on Security Boulevard.

Insight No. 1: HIPAA amendments: More bureaucratic BS? 

Most media reports are hyping proposed HIPAA amendments, claiming they'll magically close security gaps. Yeah, right. Like forcing already overwhelmed healthcare providers to jump through more hoops with multifactor authentication (MFA) and encryption is going to stop determined attackers. This smells like security theater, designed to give the illusion of action while shifting blame to providers when the inevitable breaches happen. Time to call out this regulatory smokescreen and demand real solutions — say, no-fault liability for software security liabilities a la the new 2024 EU Product Liability Directive (PLD) — not just more paperwork.

The post Cybersecurity Insights with Contrast CISO David Lindner | 01/17/25 appeared first on Security Boulevard.

Get details on this new cybersecurity Executive Order and its implications. 

The post White House Executive Order: Strengthening and Promoting Innovation in the Nation’s Cybersecurity appeared first on Security Boulevard.

It’s almost time. After several years in the making, the long-awaited compliance deadline for the EU Digital Operational Resilience Act (DORA) is finally here. After Friday, January 17, non-compliant organizations serving customers inside the bloc could theoretically be hit with multimillion-euro fines. The repercussions will be felt not just within Europe, but globally.

The post The DORA Deadline Is Here: But There’s Still Time to Comply appeared first on Security Boulevard.

Generative AI applications can be a rich source of opportunity for increased productivity and innovation for organizations. At the same time, they are fast becoming a headache for security teams. In a recent report, titled "The State of Attacks on GenAI," Pillar Security cautioned that "the unchecked proliferation of AI technologies without robust security measures poses significant risks."

The post Securing generative AI: 5 action items to protect your organization appeared first on Security Boulevard.

Don’t Mess With Texas Privacy: “We will hold all these companies accountable,” rants state attorney general Ken Paxton (pictured).

The post Allstate Violates Drivers’ Privacy, Texas AG Alleges appeared first on Security Boulevard.

CISA in two years has seen the number of critical infrastructure organizations signing up for its CPG services double, which has improved the overall security in most sectors, but more needs to be done to strengthen what has become a target adversarial state-sponsored threat groups.

The post Critical Infrastructure Seeing Benefits of Government Program, CISA Says appeared first on Security Boulevard.

The new rules come in the wake of the Change Healthcare breach, which exposed the electronic personal health information of about 100 million Americans.

The post HHS Proposes Major Overhaul of HIPAA Security Rule in the Wake of Change Healthcare Breach  appeared first on Security Boulevard.