Posted on August 24, 2018 by Seth Art and Josh Belles
As the number of applications developed explodes, the prospect of performing Application Penetration Testing on each application, with limited budgets and scarce resources, becomes increasingly daunting and seemingly impossible. Application risks will never be sufficiently mitigated by relying on automated scanning alone. Typically, there are three main dynamic options practiced today, and they vary in coverage, accuracy, and cost. Learn More
Posted on August 2, 2018 by Nigel Stanley
The cybersecurity field of operational technology (OT) is buzzing as companies increasingly realize that their production systems, manufacturing plants, chemical processing plants or industrial control systems are at risk from cyber-attacks. This realization is fuelled by a big uptick in hacker interest as such systems are insecurely connected to the internet and compromising them is a change from stealing credit card information. Learn More
Posted on July 13, 2018 by Sally Guenette
This blog post lists the questions raised on TUV Rheinland OpenSky’s recent webinar: Approaches to Privacy and Security for IoT Devices in a GDPR World. For a recording of the webinar, please click here.
Questions and Answers
Question 1: Is GDPR targeting small to medium-sized companies? Learn More
Posted on June 19, 2018 by Gregory Cote
Cyber threats keep executives up at night because cyber-criminals are well funded and highly motivated to acquire, or hold for ransom, valuable corporate data. In other cases, destructive malware (for example NotPetya), cause havoc and platform destruction just like a wildfire. These threats and resulting attacks can severely affect your organization financially and reputationally. By some estimates, 70 percent of companies go out of business after a major data loss. Learn More
Posted on October 18, 2017 by TUV OpenSky Consumer Identity Center of Excellence
The massive Equifax loss of 143 million non-consenting individual’s information in the US, Canada and UK presents more challenges for customer protection. Detailed financial data and private identifiers were included in the incident stemming from fundamental patch management latency. This consumer information loss aggravates an already challenged digital society seeking mobility-based services. Learn More
Posted on October 13, 2017 by John Gilda
The General Data Protection Regulation (GDPR) is a new European data privacy regulation that will be fully enforced from on May 25th, 2018, after being ratified in April 2016. The time period between the two dates was designed to be the grace period for companies to use to be fully compliant by the due date.
GDPR is also designed to be a privacy regulation that has more consideration for the data subject (you and me) rather than the business. Learn More