What do Morgan Stanley, Samsung, and a New York credit union all have in common? They aren’t of the same scale, do not cater to the same customer needs, nor do they store similar data. But, if there’s one thing in common between these three organizations, it’s that they’ve all been victims of a data leak. Morgan Stanley, the banking conglomerate, suffered a data leak due to sheer negligence of handling data at rest.

The healthcare sector in the United States has seen a continuous increase in both the frequency and cost of data breaches in the past decade. This is shown by a 61% rise in HIPAA violations from 2019 to 2020, resulting in penalties totaling $13 million for the sector. From 2020 to 2023, the average cost of a single healthcare data breach in the US rose nearly 30%, reaching a whopping $9.3 million.

Statista projects that the total cost of cybercrime will increase from $6.4 trillion between 2024 and 2029, reaching a staggering $15.63 trillion by the end of this period. They reported: "The global indicator 'Estimated Cost of Cybercrime' in the cybersecurity market was forecast to continuously increase between 2024 and 2029 by in total 6.4 trillion U.S. dollars (+69.41 percent). "After the eleventh consecutive increasing year, the indicator is estimated to reach 15.63 trillion U.S.

Artificial Intelligence (AI) has evolved into a vital part of modern businesses. Its reliance on large amounts of data drives efficiency and innovation. However, the need for data security in AI systems has grown critical with this increasing dependence on AI. Sensitive data used in AI must be protected to avoid breaches and misuse. This post will explore critical threats to AI data security, discuss mitigation techniques, and present best practices to help organizations safeguard their AI systems.

ALPHV, also known as BlackCat or Noberus, is a sophisticated ransomware group targeting critical infrastructure and various organizations, including being the most active group used to attack the financial services sector. ALPHV first appeared in November 2021 and operates on a Ransomware-as-a-Service (RaaS) model, allowing affiliates to use its malware for their own attacks in exchange for a cut of the ransom payments.

Discover ggshield's latest enhancements, allowing you to craft custom remediation messages, format scan results in SARIF, and help you better shift left for secrets security.

Whether it's expanding to new regions or selling to larger customers with higher expectations, establishing an effective security and compliance program is a necessary step for growing startups. For many, the first step to unlocking growth is getting a SOC 2 report, which can be a complicated process. Many startups struggle to achieve compliance due to unclear requirements and an overwhelming amount of tools to choose from—making it hard to know which solution can get them compliant, fast. ‍

Cyberattacks by hacking groups using ransomware and other tactics dominate the headlines, but the risks posed by individuals within an organization can be just as, if not more, damaging. CISA defines an insider threat as the possibility that authorized personnel will use their access, either intentionally or unintentionally, to harm an organization’s mission, resources, information, systems, or other assets.