The Gramm-Leach-Bliley Act (GLBA) plays a vital role in safeguarding nonpublic personal information (NPI) within the financial sector. The revised Safeguard Rule going in effect June 9 2023 has laid out a fairly detailed set of recommendations in setting up an information security program and also to protect customer data. Conforming to GLBA cannot be […]
Data security news & resources
What are the HIPAA Privacy Rule changes for 2023?
Is insurance industry data safe in cloud apps?
Mastering GLBA Compliance 2.0: How to Safeguard Customer Data with Polymer DLP?
What you need to know about the US National Cybersecurity Strategy
How to protect patient data against insider threats?
How to manage SaaS data sprawl?
Software-as-a-service (SaaS) platforms are wonderful for boosting employee productivity and collaboration. Apps like Slack, Microsoft Teams and Google Workspace are essentially a prerequisite in the modern workplace, facilitating remote and hybrid work setups, while empowering employees to enhance efficiency. However, while executives and employees love SaaS, security teams often have a different opinion. These apps […]
Why it’s time to say goodbye to proxy-based SaaS security
SaaS security solutions like cloud access security brokers (CASB) and cloud-based data loss prevention (DLP) have become a must-have to prevent data leakage and exfiltration in popular cloud apps like Slack, Google Workspace and Office 365. In theory, these tools give security administrators much needed visibility and control over the sensitive information that resides in […]
What is SaaS security posture management (SSPM)?
We all know that cloud apps like Slack, Teams and Google Workspace are the backbone of modern business. But they’re also a huge risk to compliance and security. Research shows that the average company has a $28 million data breach risk because of exposed data in SaaS environments. Risks like data leakage, compromised credentials and […]
How to achieve zero trust in Slack?
Zero trust. You know it’s important. You know you want to implement it in your organization. And you know it could make Slack way more secure – especially given the recent Uber breach! But there’s a problem. Moving from concept to reality is proving mighty difficult. You’re not alone. 96% of security decision-makers state that […]
Should your business be worried about Slack security in 2023?
In September 2022, tech giant Uber had to shut down its company Slack channels after a malicious actor sent a Slack message to multiple employees, stating: “I am a hacker.” Yikes! This incident isn’t the first time hackers have leveraged Slack in a cyber-attack, and we’ve got a feeling it certainly won’t be the last. […]
What are 5 most common SaaS security mistakes?
All great business leaders are adept at managing and mitigating risks. In the middle of an economic downturn, for example, you probably wouldn’t start increasing your overheads. Or, if you opened an office in an area with high-crime rates, you’d ensure to install CCTV cameras and other physical security measures at all entry points. And […]
6 Step guide to securely off-board employees
Did you know that 40% of ex-employees have admitted to stealing corporate data for their next role? Worse still, it’s estimated that 25% of departed employees still have access to company resources and data. Here’s a hard truth. If any of your employees have left your company with sensitive data downloaded onto their personal devices, […]
Why does the $1.8B fine on US big banks make data loss prevention essential for all financial services firms?
This week, The U.S. Securities and Exchange Commission (SEC) hit more than a dozen banks with fines totaling almost $2 billion. The likes of Bank of America, Barclays, Morgan Stanley and more must pay $125 million each to the SEC for improper use of messaging apps, collaboration tools and other unauthorized services for communication, without […]
How did Slack lead to ‘Grand Theft Auto’ leak?
Gaming fans got an unexpected treat last weekend when in-development gameplay footage of the upcoming Grand Theft Auto (GTA) game was leaked online. No, this wasn’t an attempt by Rockstar Games—the publisher of GTA— to drum up anticipation for the pending launch. The company was hacked. And badly. The hacker managed to break into an […]
How to win at cybersecurity training for remote & hybrid employees
If you’re like most organizations with knowledge workers, you probably allow your employees to work remotely at least some of the time. This trend is on the rise and, by 2028, it’s expected that 75% of organizations across the world will enable hybrid and remote work. While the work-from-anywhere approach has its perks, it also […]