Receive articles and resources from the information risk management experts at FoxPointe.
In today’s rapidly evolving digital landscape, the protection of sensitive information and the preservation of digital assets have become paramount, as has a full and accurate understanding of the controls in place. As organizations navigate the intricate realm of cybersecurity, the role of a Chief Information Security Officer (CISO) has...
On July 26, 2023, the U.S. Securities and Exchange Commission (SEC) adopted rules regarding Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies. The SEC has developed these rules to require registrants to disclose all material cybersecurity incidents on the new Item 1.05 of Form 8-K. Additionally, the...
This article was written by James Normand, Security Consultant at FoxPointe Solutions Cybercrime events cost affected organizations trillions of dollars annually and the monetary damage caused by these incidents is increasing year over year. Many well-known organizations have acknowledged the unfortunate rise in cybersecurity incidents and the importance of appropriate...
This article was written by Kevin Testo, Industry Leader, Human Services, The Bonadio Group & Carl Cadregari, Executive Vice President, FoxPointe Solutions. By the simple nature of their operations, human service organizations possess abundant amounts of protected personal information in electronic format. As confirmed by the U.S. Department of Health...
Today’s organizations face numerous cybersecurity challenges, and one of the most insidious threats is social engineering. Cybersecurity is often associated with technical vulnerabilities and sophisticated defenses; however, social engineering leverages human reactions and psychology to gather information and perform attacks. This article aims to shed light on the key principles...
How can an organization know if they are prepared to handle the many facets of a cybersecurity incident? We check the news all the time and see headlines of the latest data breach, or ransomware outbreak, but what if that happened to you? Would your team be able to identify...
Yesterday, the Board of Governors of the Federal Reserve System (Federal Reserve), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC, and together with the Federal Reserve and the FDIC, the Agencies), finalized previously proposed interagency guidance on how banking organizations should manage...
This article was written by Ryan Krawczyk Security Consultant I at FoxPointe Solutions What is Encryption? Encryption is often utilized to protect and hide user information from hackers. However, understanding what encryption is and how it works may be daunting. By looking at the first forms of encryption, we can...
This article was written by Ryan Krawczyk, Security Consultant I at FoxPointe Solutions Man-in-the-Middle Attack Phishing and malware attacks have become well known methods of cyber security attacks. But there is another, less common, but equally dangerous method of attacking: Man-in-the-Middle or Eavesdropping attacks. A Man-in-the-middle attack involves an individual...
This article was written by Christopher Salone, CISA, CCSFP, MBA As another year passes, more cybersecurity laws and regulations for financial institutions are proposed and or updated. Let’s recap the last twelve months and look at some of the most impactful cyber regulatory updates that, whether coming soon or are...
