23 NYCRR 500

WeLeakInfo’s website after the hack

Instant Justice: WeLeakInfo Hacked with a Ex-domain Reuse Attack

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
Expired domains (ex-domains) have always been easy targets for hackers and cybercriminal groups. The bad news is that this trend is not going away anytime soon. In a bizarre turn of events, ...
Blog – Reflectiz
A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

A New York special: NYDFS cybersecurity regulation (23 NYCRR 500)

| | #banks, 23 NYCRR 500, attacks, Blog, CCPA, Client-Side Attack, Compliance, e-commerce security, Finance, financial companies attack, GDPR, Insights, insurance company, insurance provider, New York State Department of Financial Services, NYCRR, NYDFS, NYDFS cybersecurity regulation, Privacy, protect data privacy, regulation, security processes, third party attacks, third-party application security, third-party data breach, web skimming, website third-party risks
23 NYCRR 500, also known as NYDFS Cybersecurity Regulation, is a law issued by the New York State Department of Financial Services (NYDFS) that mandates the enforcement of optimal data security standards ...
Blog – Reflectiz

2019 Update on frameworks, standards, and regulations for infosec

| | 23 NYCRR 500, CIS CSC, CMM, CMM-I, Cobit, Critical Security Controls, cybersecurity framework, frameworks, ISO/IEC 27001, ITIL, NIST, NIST CsF, PCI DSS, pri, regulations
At the 2019 BSides Tampa Security conference I did a talk on 2019 Updates on frameworks, standards, and regulations for infosec. Over the last year several new and updated frameworks and regulations ...
Michael on Security
Top Compliance Pain Points by Industry

Top Compliance Pain Points by Industry

| | 23 NYCRR 500, All Things Compliance, Compliance Pain Points and Value Drivers, FFIEC Guidance, HIPAA Compliance, PCI Compliance, Security Research & Strategy, SOC 2 Compliance
Whether you are adhering to mandatory regulations or voluntary cybersecurity frameworks, taking compliance seriously can be a huge boon to your organization. It can help you avoid costly penalties, signal to your ...
Blog – Threat Stack