No cloud implementation – in any business unit at any company – is perfect. That’s a given. IT administrators, directors, and CIOs have always been forced to make compromises between convenience, cost, and security.
Over the last few months, we’ve talked extensively about the GDPR – but the GDPR isn’t the only data protection regime on the planet. In Japan, legislators have just enacted changes to the nation’s flagship data privacy regime. Let’s look at how these changes will affect those hoping to do business there.
The rise of "as a Service" companies mean that the corporate supply chain is more complicated than ever. Your company probably doesn't do its own hiring, accounting, or software development in-house.
Imagine having to put rubber boots on to fix the damage from a cyberattack. This act was a reality for researchers at a simulated coal plant in Sweden, where a paid penetration tester proved the vulnerability of the plant’s physical systems by tampering with its cooling system.
In theory, the digital aspect of industrial control systems is supposed to be air-gapped from run of the mill corporate networks. In practice, however, there will often be bridges – left either accidentally or on purpose – between industrial controls and the general-purpose internet.
As of this writing, we’re just a month into 2018, and it’s already looking like an interesting year in the realm of information security. Here, interesting means fraught. The first few days of the year ushered in devastating news in the form of the Specter and Meltdown vulnerabilities.
We’ve already spoken extensively about the need for enterprises to occasionally offer access to their data to nearly anyone who asks for it.