Weighing the risks of disclosing a cyber incident

Not telling law enforcement or a regulator is an admission by an organization: We do not consider this cyber incident reportable.

By Samantha Schwartz • Dec. 10, 2020

COVID-19 vaccine data manipulated after leak, EU drug regulator says

The compromised data included vaccine information from the Pfizer and BioNTech COVID-19 vaccine, the regulator said.

By Samantha Schwartz • Updated Jan. 15, 2021

Home Depot codifies data reforms in $17.5M breach settlement with states

The home improvement retailer reached a $17.5 million settlement following a multistate investigation into its 2014 hacking.

By David Jones • Nov. 25, 2020

28% of 'extreme' cyber incidents cost more than $100M, report finds

Outside of financial fallout, cyber incidents can damage corporate reputations, increase regulatory oversight and impact executive careers, Cyentia found. 

By Samantha Schwartz • Nov. 10, 2020

Marriott finds financial reprieve in reduced GDPR penalty

The U.K.'s Information Commissioner's Office also reduced British Airways' fine, citing economic impact of COVID-19 as a factor.

By Samantha Schwartz • Nov. 2, 2020

Understanding Carnival's ransomware attack, hitting two different data types

Last week the cruise line disclosed a ransomware attack that impacted employee and customer data. The security divisions can get murky.

By Samantha Schwartz • Aug. 26, 2020

5 charts that show the impact, and cost, of data breaches

With every day a breach goes undetected or unresolved, costs mount, customers lose patience, and a company earns a reputation of neglect.

By Samantha Schwartz • July 29, 2020

What industry gets wrong about cyber insurance

Despite common perception, recovery from a cyber event — such as paying a ransom — cannot be decided by a carrier.

By Samantha Schwartz • Oct. 31, 2019