BPI: FDIC Bank Merger Rules Will Have ‘Chilling Effect’

Matt — Sat, 02 Nov 2024 17:55:24 +0000

Writing in a Tuesday (Oct. 29) blog post on the organization’s website, Sarah Flowers, senior vice president and senior associate general counsel, regulatory affairs, said the FDIC’s Statement of Policy increases uncertainty in the regulatory environment by changing how the agency evaluates mergers.

Article Link

Is Your SSN in the National Public Data Breach? Here’s How to Find Out | PCMag

Matt — Sun, 25 Aug 2024 13:47:30 +0000

A massive data breach has Americans worried about their private info getting into the wrong hands, but a pair of newly released websites could make it easier to find out if you’re affected.

Article Link

Channel File 291 Incident RCA is Available | CrowdStrike

Matt — Tue, 06 Aug 2024 22:19:09 +0000

The RCA details the lessons learned from this significant incident — lessons we’re using to better serve our customers. While the Channel File 291 scenario is now incapable of recurring, it informs the process improvements and mitigation steps we are deploying to ensure further enhanced

Article Link

How to Align Your Incident Response Practices With the New SEC Disclosure Rules – SecurityWeek

Matt — Sat, 03 Feb 2024 16:12:24 +0000

As of December 18, 2023, publicly traded organizations must comply with the Security and Exchange Commission (SEC) incident disclosure regulations, which were originally unveiled in July 2023. Under the new rules, publicly traded companies will be required to report cyber incidents within four business days of determining that the incident is “material,” meaning it would potentially impact a shareholder’s investment decisions. While many existing government regulations and industry standards have required organizations to establish business continuity and incident response (IR) plans in the past, the new SEC rules put more pressure on security practitioners than ever before. As time is of the essence, a well-practiced IR program will be critical. It’s no longer about having a plan in place; it’s about how well it can be executed, which will require many organizations to depart from their current practices.

Article Link

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop – SecurityWeek

Matt — Sat, 04 Nov 2023 00:04:36 +0000

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop, exposing credentials that led to the theft of data from multiple Okta customers

Article Link

Biggest global threat since 1930s looms and every CEO talking about it

Matt — Thu, 02 Nov 2023 23:14:04 +0000

“Every CEO, all the banks I am talking to, are factoring in geopolitics in their thinking in a way they didn’t five years ago,” Kempe said at the CNBC Global Evolve virtual summit on Thursday.

Article Link

FTC approves rule giving non-banking financial institutions 30 days to report data breaches

Matt — Tue, 31 Oct 2023 16:04:13 +0000

“Companies that are trusted with sensitive financial information need to be transparent if that information has been compromised,” said Samuel Levine, director of the FTC’s Bureau of Consumer Protection. “The addition of this disclosure requirement to the Safeguards Rule should provide companies with additional incentive to safeguard consumers’ data.”

Article Link

Companies scramble to integrate immediate recovery into ransomware plans – Help Net Security

Matt — Tue, 31 Oct 2023 15:59:45 +0000

“It is natural for companies to start by building a robust prevention strategy focused on thwarting attacks,” said Caroline Seymour, VP of product marketing at Zerto. “However, as attacks become more sophisticated and capable of breaching prevention measures, prioritizing recovery must be a key element of a modern, multi-layered approach. It’s just as crucial as prevention, if not more, in the current threat environment.”

Article Link

Trending Stories – Baldwin Consulting Services, LLC

BPI: FDIC Bank Merger Rules Will Have ‘Chilling Effect’

Is Your SSN in the National Public Data Breach? Here’s How to Find Out | PCMag

Channel File 291 Incident RCA is Available | CrowdStrike

How to Align Your Incident Response Practices With the New SEC Disclosure Rules – SecurityWeek

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop – SecurityWeek

Biggest global threat since 1930s looms and every CEO talking about it

FTC approves rule giving non-banking financial institutions 30 days to report data breaches

Companies scramble to integrate immediate recovery into ransomware plans – Help Net Security