Over the past 18 months, the Securities and Exchange Commission (SEC) has levied an onslaught of fines against public companies for inadequate disclosures of cybersecurity issues. In the latter half of 2021, British company Pearson agreed to pay $1 million, while First American Financial agreed to a settlement of $500,000. Then, just last week, the […]
Data security news & resources

What must companies disclose to the Securities and Exchange Commission (SEC) in the event of a data breach?

How to manage SaaS data sprawl?
Software-as-a-service (SaaS) platforms are wonderful for boosting employee productivity and collaboration. Apps like Slack, Microsoft Teams and Google Workspace are essentially a prerequisite in the modern workplace, facilitating remote and hybrid work setups, while empowering employees to enhance efficiency. However, while executives and employees love SaaS, security teams often have a different opinion. These apps […]

What is the difference between SaaS security posture management (SSPM) vs cloud data loss prevention (DLP)?
So, you want to secure your SaaS apps. You’ve realized that Slack and Teams are a potent source of data leakage and you’re increasingly worried about the threat of credentials compromise. Chances are, you’ve taken to the web to look for a security solution to solve all your SaaS woes, only to end your search […]

Lessons from Reddit data breach of internal documents and source code
News just in! Reddit, the hugely popular social news website and forum, has suffered a data breach. How did it happen? What did hackers steal? Should you be worried? We’ll answer all that and more below. Let’s dive in. How did the Reddit breach happen? As with many breaches these days, the Reddit incident has […]

Psychology, security & SaaS: A better approach to security awareness training
Human error and negligence are among the top causes of data breaches and leaks today. Most organizations have cybersecurity awareness initiatives in place, but these programs fail to drive impactful, long-term change. Why? Well, research shows it’s probably because your people haven’t been given the right ‘nudge.’ Cybersecurity through the eyes of psychology Five years […]

Top SaaS breaches of 2022
What do Uber, LastPass and Marriott have in common? They all suffered pretty huge cloud data breaches in 2022. Read on to discover how these incidents–and more–happened, and how you can stop the same thing from happening to your organization. Uber How it happened On 15th September 2022, Uber employees received a Slack message from […]

How to achieve zero trust in Slack?
Zero trust. You know it’s important. You know you want to implement it in your organization. And you know it could make Slack way more secure – especially given the recent Uber breach! But there’s a problem. Moving from concept to reality is proving mighty difficult. You’re not alone. 96% of security decision-makers state that […]

AstraZeneca breach exposes sensitive patient data
This week, the pharmaceutical giant, AstraZeneca, hit the headlines after security researchers discovered credentials for one of the company’s internal servers on the code sharing platform, GitHub. While this is a relatively small-scale breach, there are a lot of lessons here about the risks of data exfiltration across SaaS environments. Here’s everything you need to […]

GitHub security best practices you need to know
What software developer doesn’t love GitHub? This amazing—and free—platform is a fantastic way to share code files, connect with fellow developers and collaborate on projects seamlessly. It’s no wonder that the platform has over 32 million monthly users. But, unfortunately, many people aren’t using the platform securely. Just recently, security researchers scanned GitHub for sensitive […]

What is the cost of PII on the dark web in 2022?
How much money do you think a cybercriminal needs to steal your identity on the dark web? $1000? $2000? Maybe less; $800? Actually, the figure is much, much lower. According to recent research, cybercriminals can start purchasing personally identifiable information (PII) for as little as $15. That would buy you a hacked credit card with […]

What is shared cybersecurity defense?
Hands up if your organization uses cloud applications like Microsoft 365, Google Workspace, Slack or AWS? If you do, you’re in the majority. It’s estimated that 90% of companies use the cloud. It’s a huge part of the future of work. But the cloud is complex—especially when it comes to security. This is because it […]