Security News

The compliance illusion: Why your company might be at risk despite passing audits

2025-02-26 06:00

For many CISOs, compliance can feel like a necessary evil and a false sense of security. While frameworks like ISO 27001, SOC 2, and PCI DSS offer structured guidelines, they don’t automatically...

#audit #compliance

TSA’s airport facial-recog tech faces audit probe

2025-02-03 22:30

Senators ask, Homeland Security watchdog answers: Is it worth the money? The Department of Homeland Security's Inspector General has launched an audit of the Transportation Security...

#airport #audit #tech #TSA

CERT-UA Warns of Cyber Scams Using Fake AnyDesk Requests for Fraudulent Security Audits

2025-01-21 05:27

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of ongoing attempts by unknown threat actors to impersonate the cybersecurity agency by sending AnyDesk connection requests....

#anydesk #audit #cert #scam #security #securityaudit

CERT-UA warns against “security audit” requests via AnyDesk

2025-01-20 09:22

Attackers are impersonating the Computer Emergency Response Team of Ukraine (CERT-UA) via AnyDesk to gain access to target computers. The request (Source: CERT-UA) “Unidentified individuals are...

#anydesk #audit #cert #security #securityaudit

New HIPAA Rules Mandate 72-Hour Data Restoration and Annual Compliance Audits

2024-12-30 12:43

The United States Department of Health and Human Services' (HHS) Office for Civil Rights (OCR) has proposed new cybersecurity requirements for healthcare organizations with an aim to safeguard...

#audit #compliance #hipaa

Major security audit of critical FreeBSD components now available

2024-11-18 15:19

The FreeBSD Foundation, in partnership with the Alpha-Omega Project, has released the results of an extensive security audit of two critical FreeBSD components: the bhyve hypervisor and the...

#audit #critical #freebsd #security #securityaudit

Audit finds notable security gaps in FBI's storage media management

2024-08-25 14:14

An audit from the Department of Justice's Office of the Inspector General (OIG) identified "significant weaknesses" in FBI's inventory management and disposal of electronic storage media...

#audit #FBI #management #security

Where internal audit teams are spending most of their time

2024-08-09 03:30

Over half of key stakeholders including audit committees, company boards, and chief financial officers are looking to internal audit teams to take on more risk-related work, according to AuditBoard. The study revealed that these expanding expectations are coming at a time when internal audit has limited bandwidth for advisory-related services - and increasing risk demand and insufficient risk management capacity are creating a risk coverage gap for the business.

#audit #teams

SolarWinds fixes 8 critical bugs in access rights audit software

2024-07-18 15:51

SolarWinds has fixed eight critical vulnerabilities in its Access Rights Manager software, six of which allowed attackers to gain remote code execution on vulnerable devices. Access Rights Manager is a critical tool in enterprise environments that helps admins manage and audit access rights across their organization's IT infrastructure to minimize threat impact.

#audit #critical #solarwinds

OWASP dep-scan: Open-source security and risk audit tool

2024-05-16 05:00

OWASP dep-scan is an open-source security and risk assessment tool that leverages information on vulnerabilities, advisories, and licensing restrictions for project dependencies. Depscan utilizes cdxgen to produce Software Bill-of-Materials, which allows us to support many different languages and source code configurations.

#audit #opensource #security

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News