SecurityScorecard Blog: Compliance

Utility companies are increasingly being targeted by cybercriminals. Although the highest profile utility cyber attack in recent memory was the May 7 ransomware attack on Colonial Pipeline that caused gas shortages on the East Coa... Keep Reading

According to a study conducted by Ropes & Gray, 57% of senior-level executives rate “risk and compliance” as the top two categories they feel the least prepared to address. There are a lot of misconceptions about compliance and ... Keep Reading

A Service Organization Controls (SOC) report provides independent validation over a company’s internal financial reporting controls. They were originally used to validate compliance with the Sarbanes-Oxley Act of 2002. When the SE... Keep Reading

Higher education has increasingly been attracting the attention of cybercriminals. In March, the FBI released an advisory in response to a barrage of ransomware attacks on schools, and Inside Higher Education recently reported tha... Keep Reading

When exploring top network security breaches, many think of the obvious: banks or large consumer institutions. However, healthcare organizations are on the rise as a top target for hackers, with the number of data breaches rising ... Keep Reading

Although the Sarbanes-Oxley Act of 2002 (SOX) has been around for nearly two decades, many companies still struggle to meet compliance requirements. Initially enacted in response to public companies mishandling financial reporting... Keep Reading

td{font-size:12px !important} tr:first-child td p, tr td:first-child p, tr td:nth-child(2) p { white-space: nowrap } Coming into force on May 25th, 2018, the General Data Protection Regulation (GDPR) was a landmark for data protec... Keep Reading

The data privacy regimes in Russia, China, and the United States are very different from the regimes elsewhere. The financial lure of selling to, or processing data on, EU residents is strong, which has led other countries to adop... Keep Reading

The General Data Protection Regulation (GDPR) turns three years old on May 25th, 2021, so it’s an appropriate time to look at how it’s been enforced and some of its consequences. Most of the fines were for the kinds of breaches yo... Keep Reading