Security News
Companies subject to PCI DSS security requirements are audited once per year, yet many of these companies continue to be breached. It is not that PCI DSS fails, but that companies fail to maintain...
As organizations continue to collect customer and employee data, chief audit executives (CAEs) are increasingly concerned about how to govern and protect it. Gartner conducted interviews and...
Protiviti and ISACA surveyed 2,252 chief audit executives (CAEs), internal audit professionals and IT audit vice presidents and directors worldwide. Asked to identify their biggest technology...
A security audit funded by Mozilla has led to the discovery of a critical remote command execution vulnerability in the popular iTerm2 macOS terminal emulator. read more
HITRUST, a leading data protection standards development and certification organization, released updated guidance for placing reliance on the results of previously performed audits, assessments,...
Auditing 1.5 million lines of code is a heroic undertaking. With resources provided by the Cloud Native Computing Foundation (CNCF), the Kubernetes Project leadership created the Security Audit...
Report Also Highlights Cybersecurity Concerns About Use of Equipment Made in ChinaThe U.S. Department of Defense has purchased IT gear known to have significant cybersecurity vulnerabilities,...
GAO Makes More Security Recommendations; IRS Now Has 127 Issues to ResolveThe Internal Revenue Services' internal financial reporting systems and IT infrastructure have 14 new security...
GAO Makes More Security Recommendations; IRS Now Has 127 Issues to ResolveThe Internal Revenue Services' internal financial reporting systems and IT infrastructure have 14 new security...
No admission of guilt, but plenty of new rules to follow Taiwanese networking equipment vendor D-Link will have to submit to a decade of product security audits after agreeing to settle a lawsuit...