Have you noticed that many of the firms suffering high profile, serious, and expensive information security breaches have nonetheless been 'compliant' with certain laws, regulations, or standards? Consider the case of credit card processor Heartland Payment Systems, which recently suffered the unauthorized disclosure of over 100 million credit card and debit card transactions. The firm handles the transactions of over 175,000 merchants. Hundreds of banks have already had to reissue cards as a result of the breach. Note that Heartland was, at the time, certified as fully Payment Card Industry (PCI) compliant. Many other organizations that fall under various Federal, state, and industry regulations are continually experiencing breaches as well.
- Microsoft's $25k AI challenge: predict which Windows PCs will be infected with malware
- The evolving threat landscape – What to look out for in 2019
- Supermicro third-party motherboard audit finds no spy chips
- Google+ leak affects 52 million users and G Suite users
- Microsoft's big Windows Defender ATP update: bad macros, fileless malware and faster response