Many small businesses and a lot of large ones use third party IT service providers called MSPs or Managed Service Providers. In almost all cases, these MSPs have the keys to your IT universe. They have access to your data. They also have access to all of your access rules. If they also help you […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Organizations manage risk. Risk has a lot of dimensions. Everything from not being able to get raw materials to hurricanes. Possibly your biggest risk is your third party relationships. As companies continue to outsource parts of their supply chain to other companies, those companies have your data. And if those companies get breached, you get […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
The California legislature just passed the Age-Appropriate Design Code Act. Conceptually, the goal is to try to make sure that web sites kids visit are appropriate for kids. The problem is, how do you know who is a kid? Once Governor Newsom signs the bill, the code will require sites and apps – BOTH – […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
As loss payouts on cyber policies continue to increase, carriers are looking for ways to get out of paying. Since cyber insurance is a non-standard-form policy, you really have to read it carefully to understand whether you are complying. For example, in reviewing one client’s policy, we discovered that if the client did not perform […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Board members and other executives are the key target of hackers. There is even a term for it – whaling. This has nothing to do with anyone’s personal dimensions, but rather that they are the big fish in the pond and have the most access to data. Many times, executives and board members are also […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
I guess HHS wants to be cool, so rather than having a press conference where people can ask embarrassing questions, they are going to release the proposed changes via a prerecorded video – sometime this summer. These new rules will apply to covered entities (like doctors) and business associates (like IT providers). Part of what […]
Continue reading →
[DISPLAY_ACURAX_ICONS]