<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1175921925807459&amp;ev=PageView&amp;noscript=1">


Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

How the State of the Union Will Affect American Information Security

In his 2015 State of the Union Address, President Barack Obama mentioned the importance of improving America's cybersecurity and what he believes it will take to make it happen. Below is a review of the most interesting statements and...


2015 Information Security Predictions Round-up

It's the time of year that every media outlet talks about predictions and resolutions. We've compiled a list of the most interesting and/or relevant information security predictions for 2015 and added a few of our own, courtesy of BitSight...


The Data Breach is Over... let the Phishing Begin!

Last week it was revealed that more than 53 million email addresses were stolen as part of the Home Depot breach discovered last September. Combined with the 76 million email addresses stolen in the JPMC data breach in June, we're talking...


What You Can Learn from the JPMorgan Breach

Ever since the JPMorgan Chase breach was made public, companies have been watching closely to see the aftermath, the bank's course of action, and any best practices that may be developed as a result.

In this post, I've highlighted some of...


Why Third Party Risk Questionnaires Lead To A False Sense of Security

As it appears now, the entire Target breach may be the result of a compromised heating, ventilation, and air conditioning subcontractor that had worked for Target and many other retailers.

According to KrebsonSecurity.com, “Sources close...


Target Breach Investigation Shows Tangled Web of Third Party Risks

As more and more details surrounding the Target breach continue to unfold, it's becoming evident just how complicated it can be for investigators and journalists to follow the trail of evidence left behind. The latest reports suggest that...


The Third Party Risk Perspective: JPMorgan Chase UCARD Data Breach

Earlier this month, tech security blogs and mainstream news outlets reported on a large data breach that affected banking giant JPMorgan Chase. During the event, which lasted from mid-July to mid-September, the personal information of...


UPDATED: So many vendors ... but who's to blame for the breach?

The local news is abuzz with a story of Boston convention attendees being victims of a credit card data breach.  The impact is small -  only about 300 people have been affected - but there seems to be a lot of finger pointing and shuffling...


Are you aware of the security risks in your partner networks?

Earlier this year, The Ponemon Institute published a report that we at BitSight have referenced many times.  The report is called "Securing Outsourced Consumer Data" and discusses the results of a survey of 748 organizations who share...

Load More

Subscribe to get security news and updates in your inbox.