Latest editorial and guest blogs on information risk management

The Virtual CISO with Steve King

Insights from a veteran cybersecurity pro

Why Penetration Tests Are So Essential

Steve King • January 13, 2020

Corporate network security breaches, which can prove costly to remediate and expose a company to lawsuits, are frequently the result of vulnerabilities that could have been fixed for a relatively low cost. A a brute force penetration test is a critical first step in finding those vulnerabilities.

A CISO's Security Predictions for 2020

Ransomware Risk Management: 11 Essential Steps

Euro Security Watch with Mathew J. Schwartz

Tracking security and privacy trends across UK, Europe and beyond

5G Security in the Balance as Britain Navigates Brexit

Mathew J. Schwartz • January 15, 2020

The British government continues to delay deciding whether it will ban Chinese networking gear from its national 5G rollout, as the Trump administration demands. But with future trade deals on the line as the U.K. navigates its "Brexit" from the EU, Britain cannot afford to anger either Beijing or Washington.

What Orwell's '1984' Missed: Free Social Media Apps

Iranian Cyberattacks: 10 Must-Have Defenses

Safe & Sound with Marianne Kolbasuk McGee

Insights on the security and privacy of healthcare information.

Health Data Breaches: 3 Lessons Learned

Marianne Kolbasuk McGee • November 29, 2019

The healthcare sector has had plenty of significant data breaches so far this year. What can be learned from organizations' experiences? Here are three key lessons.

HIPAA Enforcement: A Look Ahead

Pushing for Better Cyber Threat Info Sharing in Healthcare

The Expert's View with Jeremy Kirk

Insights from industry experts

A $200,000 Internet Fraud: Will Anyone Investigate?

Jeremy Kirk • December 9, 2019

Internet crime has grown so rapidly that law enforcement is outpaced. Here's the story of how a Manhattan doctor lost $200,000 in an internet scam, and why he's struggling to get law enforcement's attention.