Security News
The NSA and CIA exploit leaks have thrown the spotlight on US government stockpiles of 0-day exploits -- and possibly led to this week's government declassification of the Vulnerabilities Equities...
The White House released a charter document on Wednesday outlining how the U.S. government will disclose cyber security flaws and when it will keep them secret.
read more
Jay Clayton Testifies Before Senate Banking Committee on SEC, Equifax BreachesPublicly traded companies should do a better job of disclosing cyber risks they face in their filings with the...
Wall Street Regulator Eyes Cyber Shortfalls, Plus Initial Coin OfferingsThe head of the U.S. Securities and Exchange Commission says publicly traded businesses must better describe their...
Instituting a vulnerability disclosure program (aka bug bounty program) that won’t blow up in the organization’s face can be a daunting task. Some will prefer to enlist outside experts to advise...
The U.S. Department of Justice (DOJ) Criminal Division’s Cybersecurity Unit has created a framework designed to help organizations develop formal vulnerability disclosure programs. read more
The Electronic Frontier Foundation sued the United States Department of Justice demanding to know whether the agency is complying with rules that mandate a periodic review of National Security...