Security News

OCR Director Roger Severino Offers Update at HIMSS18 ConferenceHHS Office for Civil Rights Director Roger Severino told an audience at the HIMSS18 conference Tuesday that there will be "no...

Why Do Some Companies Reject Security Scrutiny?A government watchdog agency alleges that insurer Health Net of California has refused to cooperate in a security audit called for under a federal...

Facebook decided to increase a researcher’s bug bounty payout after discovering that that a bug he reported could lead to account takeover.   read more

Cybercriminals, such as malicious insiders, use SSH keys to access systems from remote locations, evade security tools and escalate privileges, according to a study conducted by Dimensional...

IG Identifies Significant Deficiencies in Agency's IT Management StructureThe acting director of the U.S. Office of Personnel Management cites "audit fatigue" as a factor that explains why the...

OCR Official Avoids Spelling Out Plans for the ProgramWill HHS, under the Trump administration, create a permanent HIPAA compliance audit program? And what's next for the ongoing second phase of...

TunnelBear has commissioned a third-party audit of its virtual private network (VPN) application and only a few vulnerabilities have been found in recent versions of the product. read more

Uber has agreed to implement a comprehensive privacy program and obtain regular, independent audits to settle Federal Trade Commission charges that they deceived consumers by failing to monitor...

Auditors: Systems at 'Greater Risk' Till OPM Properly Implements All Security RequirementsOffice of Personnel Management Chief Information Officer David DeVries says negative aspects of a...

Mozilla has asked Germany-based security firm Cure53 to conduct an audit of the Firefox Accounts system and researchers identified a total of 15 issues, including vulnerabilities rated critical...