National Institute of Standards and Technology

News & Analysis as of

FCC Chairman Tom Wheeler Speaks about Cybersecurity at RSA Conference

As cyber week continues in Washington, Federal Communications Commission Chairman Tom Wheeler traveled to the west coast to speak about cybersecurity at the RSA Conference in San Francisco. Wheeler noted that the FCC has...more

Report Highlights Bank Vendor Cybersecurity Vulnerabilities

On April 9, the New York State Department of Financial Services (NYDFS) released a report on bank vendor cybersecurity that highlights the risk that hackers will use third-party service providers to gain access to bank data....more

Weekly Update Newsletter - April 2015 #2

GOVERNMENT CONTRACTS - NIST Issues Draft Requirements, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations - The National Institute of Standards and Technology...more

Privacy & Cybersecurity Update - March 2015

In This Issue: - Dismissal in P.F. Chang’s Data Breach Case Shows Challenge Plaintiffs Face in Such Actions - Eleventh Circuit Court of Appeals Decision Underscores the Need to Evaluate Insurance Programs for Cyber...more

Effective cybersecurity: 8 questions for you and your team

Cybersecurity has become a top-tier risk for US and multinational organizations. It is only a matter of time before a determined hacker will penetrate your organization’s system and successfully exfiltrate some data. (Indeed,...more

FCC Communications Security, Reliability, and Interoperability Council Working Group Issues Final Report on Cybersecurity Best...

A Federal Communications Commission (FCC) working group, Cybersecurity Risk Management and Best Practices Working Group 4 (WG4), of the Communications, Security, Reliability, and Interoperability Council (CSRIC) advisory...more

NIST Internet Of Things Framework Taking Shape

The National Institute of Standards and Technology (“NIST”) recently posted a preliminary discussion draft of its forthcoming Framework for Cyber-Physical Systems (a term used interchangeably with the Internet of Things, or...more

SEC Releases Results of Cybersecurity Exam Sweep

We’re a bit behind on this, but better (a little bit) late than never. Last month the SEC’s Office of Compliance, Inspections and Examinations released the first results of its Cybersecurity Examination Initiative, announced...more

Higher Ed Legal Update, March 2015

Colleges and universities across America have recognized that unmanned aerial vehicles (UASs) – also known as drones -- have broad academic applications. Indeed, the Federal Aviation Administration reports that of the 900...more

FTC Announces a New “Start with Security” Campaign

Yesterday, Federal Trade Commission (FTC) Chairwoman Edith Ramirez and FTC Bureau of Consumer Protection Director Jessica Rich announced that the FTC will begin a “Start with Security” campaign, through which the FTC will...more

PCI Security Standards Council Announces Revisions to the use of SSL

The Payment Card Industry (PCI) Security Standards Council has released a bulletin on impending revisions to version 3.0 Payment Application Data Security Standards (PA-DSS) and version 3.0 of the PCI Data Security Standard...more

What General Counsel Need To Know About The Latest Cybersecurity Developments

In the wake of reported security breaches at a number of significant financial institutions, cybersecurity is garnering more attention and concern than ever before — both within the financial services industry and among...more

NIST, White House Continue Efforts to Enhance Cybersecurity Awareness and Protections

The National Institute of Standards and Technology (NIST) and the White House continue efforts to improve private sector security and increase sharing of information about potential cybersecurity threats. ...more

Security Risks Posed by Mobile Apps: Do You Have a Vetting Process in Place?

As more organizations deploy mobile apps to facilitate their business processes, it is important that those organizations develop a specific app vetting process in order to mitigate the security risks that such apps can...more

White House Creates New Federal Agency To Combat Cyber-Threats

The White House, on February 10, 2015, announced the creation of a new federal agency, the Cyber Threat and Intelligence Integration Center (“CTIIC” or the “Center”), to combat cyber-threats by coordinating digital...more

President Obama Issues Executive Order Promoting Private Sector Cybersecurity Information Sharing

On Friday, February 13, 2015, President Obama signed an executive order, Promoting Private Sector Cybersecurity Information Sharing (the “EO”), designed to encourage private companies to share information regarding threats to...more

OCIE's Cybersecurity Risk Alert Provides Insight For Investment Advisers Into Peer Practices

On February 3, 2015, the SEC's Office of Compliance Inspection and Examinations ("OCIE") released a risk alert titled Cybersecurity Examination Sweep Summary providing an overview of how investment advisers and broker-dealers...more

Coming Soon to a FAR Near You: Cybersecurity Requirements

There are a growing number of cybersecurity requirements applicable to government contractors that work with the Department of Defense (DoD) and intelligence community. ...more

Going for Brokerage: SEC Report Highlights Best (and Worst) Practices in Cybersecurity Preparedness

On February 3, 2015, the U.S. Securities and Exchange Commission released a Risk Alert addressing cybersecurity issues at brokerage and advisory firms, along with suggestions to investors on ways they can protect themselves...more

PCI Council: SSL Will No Longer Be Sufficient for E-Commerce

In the latest edition of the PCI Council’s Assessor Newsletter, the Council previewed a proposed change related to the use of Secure Socket Layer (SSL) protocol for encrypting communications between your website’s e-commerce...more

How Does Your Firm Compare? Results from the SEC’s Cybersecurity Examinations

On Feb. 3, 2015, the Securities and Exchange Commission (SEC) published a Risk Alert summarizing observations gleaned from a cybersecurity examination sweep of 57 registered broker-dealers (BDs) and 49 registered investment...more

Bank Board Director Alert: Banking on Cybersecurity

Prudential bank regulators and other supervisory authorities have put cybersecurity front and center in 2015 by issuing guidance that sets forth their expectations of improved cybersecurity and that incorporates cybersecurity...more

NIST Releases Guidelines for Vetting the Security of Mobile Applications Used by Businesses and Their Employees

Companies and their employees are increasingly using mobile devices and mobile applications (apps) to improve connectivity, communication and productivity. Unfortunately, these same companies may be unintentionally exposing...more

Farewell, Federal Cybersecurity Incentives?

Administration Takes Private Sector Incentives Off the Table, While Obama Calls for $14 Billion in FY 2016 Budget to Strengthen Government’s Cybersecurity Efforts The White House’s Cybersecurity Coordinator Michael...more

Privacy Tuesday – February 2015

Three things you should know on this Privacy Tuesday: Over 110,000 Facebook Uses Hit With Malware - Cybercriminals are targeting Facebook users with malware embedded in videos that are pushed to their timeline...more

177 Results
|
View per page
Page: of 8

All the intelligence you need, in one easy email:

Great! Your first step to building an email digest of JD Supra authors and topics. Log in with LinkedIn so we can start sending your digest...

Sign up for your custom alerts now, using LinkedIn ›

* With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name.
×