Tag: vendor risk management
-
Slashdot: Microsoft Used China-Based Support for Multiple U.S. Agencies, Potentially Exposing Sensitive Data
Source URL: https://it.slashdot.org/story/25/07/25/1613250/microsoft-used-china-based-support-for-multiple-us-agencies-potentially-exposing-sensitive-data?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Microsoft Used China-Based Support for Multiple U.S. Agencies, Potentially Exposing Sensitive Data Feedly Summary: AI Summary and Description: Yes Summary: The text discusses Microsoft’s use of China-based engineering teams for maintaining cloud services for various U.S. federal departments, highlighting concerns over data security in sensitive environments. Following scrutiny, Microsoft…
-
CSA: How Can Automation Cut Security Costs in 2025?
Source URL: https://www.vanta.com/resources/time-consuming-security-functions-to-automate Source: CSA Title: How Can Automation Cut Security Costs in 2025? Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the increasing security risks faced by organizations and emphasizes the need for automation in cybersecurity tasks to improve efficiency and reduce the burden on security teams. It highlights three main…
-
CSA: What Are the Proposed Updates to HIPAA?
Source URL: https://cloudsecurityalliance.org/articles/the-hipaa-security-rule-is-changing-here-s-what-you-need-to-know Source: CSA Title: What Are the Proposed Updates to HIPAA? Feedly Summary: AI Summary and Description: Yes Summary: The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is proposing significant changes to the HIPAA Security Rule, aiming to modernize cybersecurity practices for healthcare entities amid evolving threats.…
-
CSA: What is Third-Party Risk Management and Why Does It Matter?
Source URL: https://www.schellman.com/blog/cybersecurity/what-is-tprm-and-why-does-it-matter Source: CSA Title: What is Third-Party Risk Management and Why Does It Matter? Feedly Summary: AI Summary and Description: Yes Summary: The text emphasizes the growing importance of Third-Party Risk Management (TPRM) in the cybersecurity landscape as organizations increasingly rely on vendors. It outlines key components of TPRM and stresses the necessity…
-
CSA: How SMBs Can Allocate Cybersecurity Responsibility
Source URL: https://www.scrut.io/post/lanes-in-the-road-how-small-and-medium-businesses-can-allocate-cybersecurity-responsibility Source: CSA Title: How SMBs Can Allocate Cybersecurity Responsibility Feedly Summary: AI Summary and Description: Yes Summary: The text describes the legal implications and strategic cybersecurity lessons learned from a ransomware attack on Mastagni Holstedt, leading to a lawsuit against their Managed Service Provider (MSP). It emphasizes the importance of clearly defined…
-
CSA: Modern Vendor Compliance Begins with the STAR Registry
Source URL: https://cloudsecurityalliance.org/blog/2024/12/20/modern-day-vendor-security-compliance-begins-with-the-star-registry Source: CSA Title: Modern Vendor Compliance Begins with the STAR Registry Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the evolution of cybersecurity frameworks in light of the growing reliance on cloud services and the increasing complexity of third-party risk management. It emphasizes the importance of modern frameworks like…
-
Slashdot: Amazon Paused Rollout of Microsoft Office for a Year After Hacks
Source URL: https://it.slashdot.org/story/24/12/12/1523248/amazon-paused-rollout-of-microsoft-office-for-a-year-after-hacks?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Amazon Paused Rollout of Microsoft Office for a Year After Hacks Feedly Summary: AI Summary and Description: Yes Summary: Amazon has delayed the adoption of Microsoft’s cloud-based Office suite for its workforce due to security concerns arising from a recent cyber attack linked to a Russian hacking group. This…