Self Improvement Site
On The Internet! Take the Self Improvement Tour
On The Internet! Take the Self Improvement Tour
Risk Management Articles
We are currently looking for an Official SelfGrowth.com Guide to "Risk Management". If you have expertise in Risk Management and your own website and/or product for this topic, please review this form for complete details. The Official Guide Position is part of our Premium Placement Package
- Get Ready for Greater SEC Cyber Security Enforcement - by Submitted on Jul 12, 2017 from Michael PetersSEC cyber security enforcement is set to intensify in light of recent global attacks and new enforcement chiefs Public companies and firms operating in regulated industries, especially finance, should expect more SEC cyber security enforcement in the wake of new and emerging threats, like ...
Views: 533 - Cyber Cooperation Is Crucial in the Era of NotPetya - by Submitted on Jul 08, 2017 from Michael PetersThe NotPetya attacks weren’t as bad as WannaCry; they were worse, and we all need to start cooperating to prevent the next attack. It’s looking more and more like last week’s NotPetya malware attacks, which infected computers around the world but hit Ukraine particularly hard, were designed ...
Views: 532 - Business Continuity Management - Part2 - by Submitted on Jul 03, 2017 from Spiros TsaltasBusiness Continuity Management is a topic that should be of concern to any organization, whether non-profit or for profit, whether small or large, whether a startup or a well- established and mature business; it is basically an integral component to your Crisis and Risk Management planned ...
Views: 564 - The Risk Of Not Running A Social Media Background Check On Your Future Hires - by Submitted on Jul 01, 2017 from Max DruckerHiring a third party to run a social media background check on your applicants may seem unethical for some. A number of people think that having an online investigation is like spying and that these subjects are entitled to have their private lives that are separate from their professional ones. ...
Views: 465 - Outsourcing Can Help Bridge the Cyber Security Skills Gap - by Submitted on Jun 29, 2017 from Michael PetersThe cyber security skills gap is real and growing; there simply aren’t enough cyber security employees to go around. Cyber crime is rapidly escalating, and board rooms are taking notice. KPMG’s 2017 U.S. CEO Outlook survey shows cyber security risks to be among CEOs’ top concerns, yet only ...
Views: 567 - Will Cryptocurrency Regulation Attempts Do More Harm Than Good? - by Submitted on Jun 23, 2017 from Michael PetersWhite-Hat Hackers Are Already Being Caught in the Cryptocurrency Regulation Net Cryptocurrencies have long been associated with cyber crime. The cryptocurrency Bitcoin was the de facto currency of the notorious online black market Silk Road, it remains the preferred payment method on the Dark ...
Views: 1058 - Cyber Criminals Are Hijacking Computers for Cryptocurrency Mining - by Submitted on Jun 14, 2017 from Michael PetersCryptocurrency mining malware may end up being a bigger problem than WannaCry Organizations that think they dodged a bullet when their older systems did not fall prey to the WannaCry ransomware may want to think again. Weeks prior to the WannaCry attacks, a group of hackers was taking ...
Views: 812 - U.S. Federal Task Force Urges Proactive Healthcare Cyber Security - by Submitted on Jun 09, 2017 from Michael PetersThe Healthcare Industry Cybersecurity Task Force’s report on healthcare cyber security echoes a similar study on medical device security issued by Synopsys and the Ponemon Institute. On the heels of a damning study by Synopsys and the Ponemon Institute, which provides a blow-by-blow ...
Views: 555 - Medical Device Security Is Largely Nonexistent - by Submitted on May 31, 2017 from Michael PetersA new report by Synopsys and the Ponemon Institute finds that medical device security is plagued by a lack of standards, testing, and accountability. Healthcare organizations tend to focus their cyber security efforts on HIPAA compliance, protecting patient data, and defending against ...
Views: 567 - Four Takeaways from the WannaCry Ransomware Attacks - by Submitted on May 24, 2017 from Michael PetersThe recent WannaCry ransomware attacks put cyber security on the front page of every newspaper in the world. Now, everyone knows what ransomware is and how destructive it can be, but will anything change? Following are four critical lessons that both organizations and individuals should take ...
Views: 501 - New York State Cyber Security Regulations Mandate Common-Sense Practices - by Submitted on May 18, 2017 from Michael PetersNew York State Cyber Security Regulations for Financial Institutions Could Be Model for Other States The first phase of the New York state cyber security regulations, which apply to insurance companies, banks, and other financial institutions operating within the state, finally went into ...
Views: 690 - WannaCry Ransomware Attack Forcing Everyone to Pay Attention to Cyber Security - by Submitted on May 18, 2017 from Michael PetersThe WannaCry ransomware attack was the end result of years of ignorance on the part of governments, private-sector firms, and the public regarding how serious cyber threats have become. The 2016 Shadow Brokers NSA hack came home to roost in a big way last week, when a code execution ...
Views: 511 - Phishing for Dollars: Email Scams Costing Companies Billions - by Submitted on May 10, 2017 from Michael PetersWhy Your Employees Keep Clicking on Phishing Emails, and How You Can Stop It The 2017 Verizon Data Breach Report is out, and it’s full of great news – if you’re a hacker. The study, which examined over 1,900 breaches and more than 42,000 attempts in 84 countries, showed that cyberespionage ...
Views: 590 - Cyberespionage a Growing Threat, Says Verizon DBIR - by Submitted on May 10, 2017 from Michael PetersThe 2017 Verizon Data Breach Report Reveals that Hackers Aren’t Just After Payment Cards and Identities Anymore Cyberespionage is a growing problem, especially in the manufacturing industry, professional services, education, and the public sector, according to the 2017 Verizon Data Breach ...
Views: 652 - Best Antivirus 2017: Norton Security Protection - by Submitted on May 08, 2017 from Marsha KellyEver have that dream where you are standing in front of an audience with no pants? Well, using your computer without the best antivirus in 2017 is even more exposed. Every day that you send emails and read your facebook feed you are showing yourself as vulnerable and technically naked to ...
Views: 689 - Data Breach Lawsuits a Reminder of the High Cost of Reactive Cyber Security - by Submitted on Apr 26, 2017 from Michael PetersHacked Companies Are Facing Data Breach Lawsuits Filed by Financial Institutions Data breaches aren’t cheap to clean up. Just ask Rosen Hotels, whose costs to clean up a 2016 breach could end up exceeding $2.4 million. Shockingly, that’s below the $4 million average cited by IBM. In addition ...
Views: 1004 - Who Takes the Fall When a Company Gets Hacked? - by Submitted on Apr 21, 2017 from Michael PetersYahoo is trying to pass the buck, but data breach responsibility starts at the top. Who should be held responsible when a company’s systems get breached? Historically, the CIO, the CISO, or both have shouldered the lion’s share of data breach responsibility; well over half of security ...
Views: 600 - SCADA Security of Deep Concern as Cyber Attacks Against Government Escalate - by Submitted on Apr 19, 2017 from Michael Peters“ClearEnergy” May Have Been Fake News, But Threats Against ICS / SCADA Security Are Quite Real Accusations of “fake news” rocked the cyber security industry last week after infosec provider CRITIFENCE implied that it had detected a brand-new “in the wild” ransomware variant called ClearEnergy ...
Views: 634 - What Is RegTech, and What Can It Do For You? - by Submitted on Apr 19, 2017 from Michael PetersHow RegTech Simplifies Governance, Risk, and Compliance Complying with standards such as HIPAA, PCI DSS, FISMA, and SSAE 16 SOC reporting is complex, costly, and time-consuming, especially for organizations that must comply with multiple standards. You may have heard the term “RegTech” ...
Views: 469 - New PCI DSS Ecommerce Guidelines Stress TLS 1.1 Migration - by Submitted on Apr 19, 2017 from Michael PetersNew PCI DSS Ecommerce Best Practices Replace Previous Guidelines Issued in 2013 Consumers love shopping online and are abandoning malls for mobile shopping apps in droves. However, online shopping environments offer multiple opportunities for hackers to steal payment card data. Even worse, as ...
Views: 571 - Why Do Schools Keep Getting Hacked? - by Submitted on Apr 19, 2017 from Michael PetersK-12 schools, colleges, and universities are attractive targets for hackers. Their networks contain an enormous amount of identifying information on staff members, students, and students’ families, including names, birth dates, addresses, Social Security numbers, and even health records. ...
Views: 576 - 5 Ransomware Threats to Watch Out for in 2017 - by Submitted on Apr 18, 2017 from Michael PetersBe Prepared for these New and Emerging Ransomware Threats Ransomware threats are everywhere, and the problem is going to get much worse before it gets any better. According to a recent survey, about half of all businesses have experienced a ransomware attack at least once in the last 12 ...
Views: 586 - 5 Tips for Keeping Your Ecommerce Store Secure Over the Holidays - by Submitted on Apr 18, 2017 from Michael PetersOnline shopping is booming, but customers will shun ecommerce if they do not feel their data is secure. Just as “Video Killed the Radio Star,” ecommerce is making shopping malls go the way of the horse and buggy. In 2016, consumers reported making 51% of their purchases online, up from 48% in ...
Views: 596 - UC Berkeley Offers Cyber Security Advice to Donald Trump - by Submitted on Apr 18, 2017 from Michael PetersIn a new report, UC Berkeley’s Center for Long-Term Cybersecurity offers suggestions to President Elect Trump. Now that the election is over, the nation’s attention has turned to President Elect Donald Trump and what a Trump Administration will mean for cyber security. Notably, information ...
Views: 510 - What a Trump Administration Means for Cyber Security - by Submitted on Apr 18, 2017 from Michael PetersWhat will the state of cyber security look like under a Donald Trump administration? The election is over, the votes have been counted, and thankfully, other than a few isolated reports of malfunctioning voting machines, Election Night was unremarkable from a cyber security perspective. Now, ...
Views: 494 - Mirai Botnet Attacks Likely Pulled Off By Bored Teenagers - by Submitted on Apr 18, 2017 from Michael PetersThe Mirai botnet DDoS attacks were the largest on record – and they were likely masterminded by teenagers. In October, a massive DDoS attack on the Dyn DNS “Managed DNS” infrastructure brought down a number of major websites, including PayPal, Twitter, Amazon, Netflix, and Spotify. The attack ...
Views: 614 - The Yahoo Breach and M&A Due Diligence - by Submitted on Apr 18, 2017 from Michael PetersThe Yahoo hack demonstrates that cyber security has become a fundamental part of M&A transactions. Data breaches and a failure to comply with governmental and industry standards can impact a company in many ways, as Yahoo is finding out the hard way. The company’s recent disclosure of a ...
Views: 602 - Proactive Cyber Security Can Prevent Vote Hacking - by Submitted on Apr 18, 2017 from Michael PetersIn a heated political climate, even the appearance of vote hacking could threaten our nation’s democracy. The most contentious issue this election season may not be immigration or minimum wage laws but cyber security; specifically, the specter of vote hacking. Shortly after the discovery that ...
Views: 474 - DNC Email Hack Highlights Need for Proactive Email Security - by Submitted on Apr 18, 2017 from Michael PetersThe NSA isn’t the only Washington organization being embarrassed by a data breach. The sorry state of cyber security in America has taken center stage in this year’s presidential election. In June, it was discovered that Russian cyber criminals had managed to hack the Democratic National ...
Views: 557 - The NSA Hack and the Sorry State of Cyber Security - by Submitted on Apr 18, 2017 from Michael PetersIn the hit USA Network series Mr. Robot, a rogue group of hacktivists target major corporations and the government. In a recent episode, the group enlists the help of a malicious insider to hack the FBI. Sound far-fetched? Maybe not: Around the same time this episode aired, an anonymous group of ...
Views: 468 - How to Protect Your Organization From Malicious Insiders - by Submitted on Apr 18, 2017 from Michael PetersNo organization wants to think that one of its own trusted employees is out to get the firm. However, a study by Intel found that 43% of data losses are the result of “internal actors” – and about half of these incidents were due to the intentional acts of malicious insiders, not accidents or ...
Views: 444 - Hackers’ Next Target: Smart Toys - by Submitted on Apr 18, 2017 from Michael PetersCyber criminals don’t care who they hurt. This was made obvious during the rash of ransomware attacks on healthcare facilities this year, where hackers locked down electronic health records systems, putting patients at grave risk. There is great concern that the proliferation of Internet of ...
Views: 630 - The Six Worst Data Breaches of 2016 - by Submitted on Apr 18, 2017 from Michael PetersAs 2016 comes to an end, we look back at six of the year’s worst data breaches and what went wrong. It seems like not a day went by this year without reports of yet another major data breach, or two or three data breaches. From healthcare to fast food to adult entertainment, no industry was ...
Views: 517 - 5 Ways to Protect Your Retail Store from Data Breaches - by Submitted on Apr 18, 2017 from Michael PetersBoth brick-and-mortar and ecommerce retail stores make attractive targets for hackers, especially during the holidays. Retail stores are favorite targets of cyber criminals, especially during the holiday shopping season, when brick-and-mortar and ecommerce stores are flooded with customers, ...
Views: 441 - Mirai DDoS Attacks Illustrate Vulnerability of IoT Devices - by Submitted on Apr 18, 2017 from Michael PetersIoT manufacturers should take heed from the recent Mirai DDoS attacks. Late last year, a widespread attack on Dyn DNS “Managed DNS” infrastructure wreaked havoc across the internet and brought down a number of major websites, including PayPal, Twitter, Amazon, Netflix, GitHub, and Reddit. ...
Views: 570 - Yahoo Hack Was the Result of Years of Poor Cyber Security Practices - by Submitted on Apr 14, 2017 from Michael PetersFor Years, Yahoo Put Usability Ahead of Cyber Security The massive Yahoo data breach, which compromised 500 million user accounts and put its acquisition by Verizon at risk, happened because the company repeatedly put product user experience ahead of security, the New York Times ...
Views: 521 - IoT Cyber Security Threatens Consumer Adoption of Smart Devices - by Submitted on Apr 14, 2017 from Michael PetersIf IoT cyber security concerns aren’t addressed, consumers will reject self-driving cars and other smart devices. Shortly after rideshare company Uber launched a pilot test of self-driving cars in Pittsburgh, competitor Lyft made the bold prediction that most of its cars would be self-driving ...
Views: 461 - Cyber Security Issues Could Stall Self-Driving Cars - by Submitted on Apr 14, 2017 from Michael PetersHow quickly self-driving cars roll out is dependent on the industry addressing some very serious cyber security issues with smart cars and IoT devices in general. Self-driving cars are what everyone is talking about, but many people question whether the machine learning and artificial ...
Views: 576 - HIPAA Compliance Does Not Equal Data Security - by Submitted on Apr 14, 2017 from Michael PetersHealthcare is one of the most regulated industries in the U.S. HIPAA, or the Health Insurance Portability and Accountability Act of 1996, requires healthcare organizations and their third-party service providers, such as labs and billing companies, to have data security measures in place protect ...
Views: 457 - PCI DSS Compliance Alone Won’t Protect Your Customer Data - by Submitted on Apr 14, 2017 from Michael PetersPCI DSS compliance is serious business for any organization that processes or accepts major payment cards, including SaaS providers that offer payment processing solutions to their customers. Retailers or payment processors who are found to be in violation of PCI DSS can be fined millions of ...
Views: 438 - Poor Cyber Security Led to Houston Astros Hack - by Submitted on Apr 14, 2017 from Michael PetersBaseball may be America’s favorite pastime, but from the Black Sox scandal to Pete Rose to the “Steroid Era,” cheating schemes have long tarnished the game. Sadly, it was only a matter of time before cheating went high-tech. Last summer, former St. Louis Cardinals executive Chris Correa was ...
Views: 453 - 3 Cyber Security Lessons from the SWIFT Network Attacks - by Submitted on Apr 14, 2017 from Michael PetersOver several months last year, an international group of cyber bank robbers, possibly funded by the North Korean government, stole nearly $100 million, threw the integrity of a decades-old banking industry messaging system into question, and remained at large. Sound like the plot of the latest ...
Views: 527 - Is Your Company Protected Against Insider Threats? - by Submitted on Apr 14, 2017 from Michael PetersThe Hollywood portrayal of a hacker is a mysterious hooded figure sitting in a dark room, furiously tapping away at a keyboard in search of a back door into an organization’s system. However, the real enemy may be sitting in a brightly lit cubicle right outside the CEO’s office; insider threats ...
Views: 414 - Understanding SSAE 16 Compliance - by Submitted on Apr 10, 2017 from Michael PetersWhen contracting with a service provider, such as a data center, it is important for companies to ensure that their provider possesses the cyber security-related certifications and compliance standards that are applicable to the company’s industry. Data centers, as well as service providers who ...
Views: 426 - POS Data Security an Issue as Fast-Food Restaurants Automate Ordering - by Submitted on Apr 10, 2017 from Michael PetersThe next time you buy a burger at McDonald’s or Wendy’s, a computer may be the one asking, “Would you like fries with that?” After decades of depending on human workers to take orders – and payments – American fast food chains are finally moving into the computer age, driven by rising minimum ...
Views: 524 - Smart Medical Devices are the Next Target for Hackers - by Submitted on Apr 10, 2017 from Michael PetersUp until now, healthcare cyber security has been focused on protecting patient data, ensuring HIPAA compliance, and, more recently, protecting systems from ransomware attacks. However, as healthcare technology advances, a new threat is emerging: the potential for hackers to attack smart medical ...
Views: 900 - 5 Tips to Secure Your Healthcare Organization's Systems Against Hackers - by Submitted on Apr 10, 2017 from Michael PetersIn a previous blog, we discussed the recent epidemic of ransomware attacks on U.S. healthcare organizations and the importance of the industry taking this very serious cyber security threat – and information security in general – seriously. The good news is that although a ransomware attack can ...
Views: 439 - Ransomware Attacks Show that Healthcare Must Take Cybersecurity Seriously - by Submitted on Apr 10, 2017 from Michael PetersWhile healthcare providers and healthcare industry vendors cannot afford to ignore HIPAA compliance, a new threat emerged in 2016 and has only gotten bigger in the past year: ransomware attacks on hospitals and healthcare providers that are not seeking to breach patient information but instead ...
Views: 486 - What is PCI DSS Compliance? - by Submitted on Apr 10, 2017 from Michael PetersConfused about PCI DSS compliance and what your business needs to do to comply with it? This article will explain PCI DSS and the importance of complying with this important information security standard. What is PCI DSS? PCI DSS stands for the Payment Card Industry (PCI) Data Security ...
Views: 492 - What is HIPAA Compliance? - by Submitted on Apr 09, 2017 from Michael PetersConfused about HIPAA and whether your business must comply with it? This article will explain HIPAA and the importance of complying with this complex federal law. What is HIPAA? HIPAA is the Health Insurance Portability and Accountability Act of 1996, which was signed into law by President ...
Views: 474