ISO 42001
What is ISO 42001 (AI)? Artificial intelligence (AI) has emerged as a transformative technology, imbuing machines with human-like intelligence to perform tasks across various domains. However, with its exponential growth comes a pressing need for governance and regulation to ensure its responsible and ethical deployment. ISO 42001, the world’s pioneering ... Read More
NIS2
What is NIS2? NIS2 is a high-level directive, strengthening cybersecurity. To enhance Europe’s resilience against existing and emerging cyber threats, the NIS2 Directive introduces new requirements and obligations for organizations in four key areas: 1. Risk Management: Organizations are mandated to implement measures aimed at minimizing cyber risks in alignment ... Read More
What is NIST AI RMF?
As artificial intelligence gains traction and becomes increasingly more popular, it is critical to understand the risks that apply to companies who are creating AI tools. As NIST explains, the main risks associated with developing an AI system are not the same as the risks that can impact traditional software ... Read More
Navigating the Cyber Currents: Ensuring a Watertight Critical Infrastructure
Addressing recent cyber threats, a top White House national security official emphasized the imperative for increased cybersecurity measures following attacks on U.S. water authorities and ransomware incidents in healthcare. The Iranian hacker group “Cyber Av3ngers” targeted American organizations, including a Pennsylvania water authority, with attacks deemed “unsophisticated” but impactful. Despite ... Read More
Critical Atlassian Flaw Has a Simple Fix
Atlassian has issued a warning about CVE-2023-22518. The severe flaw is described as an “improper authorization vulnerability in Confluence Data Center and Server,” the on-premises versions of their products. This security vulnerability affects all versions of Confluence, and Atlassian rates its severity at 9.1 out of 10. What Does This ... Read More
D.C. Voter Data Leak: What We Know So Far
The District of Columbia Board of Elections (DCBOE) has reported a security incident involving the breach of a web server hosted by DataNet Systems, a hosting provider. This breach, which occurred in early October, potentially allowed unauthorized access to the personal information of all registered voters in the district. The ... Read More
DORA EU
What is DORA (EU)? The DORA Regulation (No. 2022/2554), known as the Digital Operational Resilience Act, is an important EU law about cybersecurity for financial institutions like banks or credit institutions. More than just having security for defense, it is about resilience. The ‘FinTech Action Plan,’ (2018) by the European ... Read More
