On April 4, 2024, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) officially published its Notice of Proposed Rulemaking (NPRM) detailing ...

A new report from Binalyze outlines how gaps in cyber incident response, delayed forensics, and limited visibility are ...

The regulatory environment has transformed cybersecurity failure into a core legal, financial, and compliance risk. Today, organizations must ...

This article focuses on the requirements of CISA's proposed cyber incident reporting rule, the compliance requirements for covered entities and the steps entities can take to protect themselves.

This select list provides an overview of key cyber incident reporting requirements globally. You may find more updated information on each agency’s website. Aside from CISA, the Securities and ...

It doesn't matter how large your organization is, you are at risk and sooner or later cyber criminals will try to attack you. It’s not a matter of whether your organization will face a security ...

UnitedHealth CEO Andrew Witty addressed separate hearings in the Senate and House on May 1 to testify about the devastating Change Healthcare cyberattack in February that affected millions of ...

Interviews with over a dozen CISOs, lawyers, and government officials suggest that cyber incident reporting rules are leading to increased corporate cybersecurity governance. But there's no evidence, ...

Marks & Spencer says it has recovered £100m from insurance, almost fully offsetting the financial costs of the cyber attack, and placed cyber resilience at the heart of its transformation agenda.

Cyber readiness is stalling as over-confident teams ignore the reality that incident response times have not improved despite ...

The UK has experienced a long string of disruptive cyber incidents, but the announcement of the cyber resilience bill cites ...