Stay informed on the latest in cyber regulations, ensuring your data stays secure in the evolving landscape of information security laws.
Search across headline titles and summaries.
Background for this topic.
Information security regulations often dictate specific requirements for risk assessments, security policies, incident response procedures, and user access controls. They aim to preserve the confidentiality, integrity, and availability of information across industries and sectors. Compliance with these regulations is crucial for companies that store, process, or transmit personal data, as it helps maintain trust with customers and avoid legal and financial penalties.
Weekly headline count for the current query.
A judge said Democrats and civil groups filed the lawsuit too early to demonstrate harm, but that could change after newly proposed postal regulations. The post USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order appeared first on CyberScoop.
June Meetings Could Shape Which Entities Must Report Cyber IncidentsThe Cybersecurity and Infrastructure Security Agency's June town halls will give critical infrastructure operators a final opportunity to influence how the agency defines covered entities, reportable incidents and compliance requirements before issuing long-awaited CIRCIA regulations.
South Korea's local elections next month will be a test bed for how effective regulations might be to stymie the flow of deepfakes.
Artificial intelligence that is embedded in newer editions of software and other technology tools but is not explicitly revealed by vendors is a substantial risk on par with shadow AI, said regulatory attorney Elizabeth Hodge with the law firm Akerman LLP.
Blackbaud's Attorneys Jon Olson and Ron Raether on Legal Risk, Trust and RecoveryIn part three of the Anatomy of a Breach series, attorneys Jon W. Olson and Ron Raether examine what happens in the aftermath of a breach crisis. The experts discuss legal exposure, regulatory scrutiny and how early decisions can shape long-term trust, litigation outcomes and recovery.
Trilogue Deal Carves Out Industrial AI, Adds Nudifier BanLawmakers from Europe's political institutions agreed to water down the continent's landmark artificial intelligence regulation at a moment when the 2024 AI Act has barely started to be implemented. The law's requirements for high-risk AI will likely only be enforced starting in December 2027.
Investigators Find Violations of State Cyber RegulationsNew York fined Delta Dental $2.25 million for the company's response to the mass exploit of a zero-day vulnerability in Progress Software' MOVEit file transfer application. Delta Dental is one of thousands of organizations caught up in the blast radius of an automated 2023 Memorial Day hack.
Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach looks like when those controls are missing. [...]
Security teams often present MTTR as an internal KPI. Leadership sees it differently: every hour a threat dwells inside the environment is an hour of potential data exfiltration, service disruption, regulatory exposure, and brand damage. The root cause of slow MTTR is almost never "not enough analysts." It is almost always the same structural problem: threat intelligence that exists
Regulatory differences, interconnected digital ecosystems, and the rise of AI have created a complex supply chain Asian organizations must wrangle.
EU AI Regulation May Hold Implications for Powerful New Anthropic ModelAnthropic jolted the tech and policy worlds this week with it announcement of Claude Mythos Preview. Europe's leaders - who recently passed legislation that affect Anthropic's strategy with risky systems such as this - are taking a keen interest.
HHS OCR Director Says Cost of Inaction May Outweigh Compliance BurdensThe Trump administration has yet to decide whether to continue a proposed overhaul of the HIPAA Security Rule floated by its predecessor administration. But the nation's top federal enforcer of health regulation provided some insight into what regulators are thinking.
Financial Institutions Are Rethinking Controls to Ensure Frictionless TransactionsWhen the Federal Reserve lifted FedNow's transaction limit from $1 million to $10 million last November, the regulatory change transformed instant payments from a retail convenience to a corporate treasury rail. AML decisions on high-value instant wire transfers must now be made in real time.
TrendAI reviews the White House National Cyber Strategy, outlining six pillars to strengthen U.S. cybersecurity—from deterrence and regulation to federal modernization, critical infrastructure protection, AI leadership, and workforce development.
European Commission Publishes Draft Guidance for Cyber Resilience ActKey implementation deadlines loom for one of Europe's most consequential cybersecurity laws and draft guidance from the European Union may help manufacturers comply - up to a point.
Federal Proposal Pushes AI Adoption While Avoiding Regulatory DetailThe White House AI framework urges rapid deployment and federal alignment to counter China while proposing guardrails on fraud, safety and speech - but leaves unresolved conflicts on IP, content regulation and state preemption that Congress must navigate.
35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs
Program Offers Up to $100K for Security Upgrades and $50K for AssessmentsNew York is rolling out new cybersecurity regulations for water and wastewater utilities, requiring operators to conduct risk assessments and deploy security controls while offering $2.5 million in grants to strengthen defenses against rising cyberthreats targeting critical infrastructure.
Five federal regulatory agencies encourage financial institutions to work with customers affected by the federal government shutdown.