Like every big retailer — and every big company — Walmart faces plenty of challenges when it comes to cybersecurity. But if you ask Walmart Global Tech VP of security engineering Nick Givens about what is top of mind in terms of trends for the company, talent and recruitment are way up there. “Talent in […]
Continuous integration (CI)/continuous development (CD) platform CircleCI released a security alert on January 4, recommending its customers rotate all secrets and keys stored with the company. It also warned customers to watch for unauthorized access to their systems from December 21, 2022, to January 4, 2023. CircleCI Response and Guidance On January 7, the company […]
All enterprises, regardless of their size and scope, face cyber risk. As technology grows increasingly sophisticated, so do cyber-attacks. This is why it pays to be prepared with both a cybersecurity plan and cyber-liability insurance. Any organization that depends on an IT infrastructure to create cash flow, or conduct business, should look to cyber insurance […]
Healthcare Management Solutions (HMS), a subcontractor of The Centers for Medicare & Medicaid Services (CMS), was subject to a ransomware attack on October 8. On December 14, CMS released a response to the breach, which affects up to 254,000 Medicare beneficiaries. The federal agency sent a letter informing those beneficiaries, and it is issuing them […]
An awakened awareness of personal data, how it can be manipulated, and the control individuals have over their own information continues to frame regulatory and commercial interests for the coming year. The freewheeling days when data collection and usage might be conducted with little scrutiny from individuals or government entities are winding down. Now organizations […]
The importance of DevOps and the benefits of automating of DevSecOps were at the epicenter of a keynote during last Thursday’s All Day DevOps conference. Benjamin Wolf, CTO of capital access platforms with Nasdaq, spoke on the “Journey to Auto-DevSecOps at Nasdaq” for the online event, which was hosted by Sonatype. Wolf said he asks […]
The Department of Homeland Security has developed and released new cybersecurity performance goals for critical infrastructure through the Cybersecurity and Infrastructure Security Agency (CISA). Cyber threats facing critical infrastructure are on the rise, and these new goals are designed to give stakeholders the foundation they need to reduce cyber risk. Critical Infrastructure Cyberthreats The FBI’s […]
A surprise livestream from the besieged country, and other speakers, gave a look at ways cybersecurity can affect tangible issues in the physical world.
In 2016, Joseph Sullivan was chief security officer (CSO) at Uber when a data breach exposed the personal information of 57 million users. Earlier this month, after three weeks of trial, Sullivan was found guilty of concealing the data breach and obstructing the Federal Trade Commission’s (FTC) investigation. He now awaits sentencing, where he faces […]
The perfect blend of development, security, and operations (DevSecOps) can elude many organizations and hamper the digital transformation efforts, even if they think they are on the right path. Sorting out stumbling blocks in DevSecOps and dealing with outright failures in the process took center stage in two keynotes at last week’s ONUG Fall 2022 […]