technology

Category:

CrowdStrike’s Setback: A Blueprint for Better Third-Party Risk Compliance

November 8, 2024Regulation, technology

Earlier this year, CrowdStrike, a leading cybersecurity company, experienced a major outage caused by an automatic software update. This incident disrupted services globally, affecting over 8.5 million devices, including critical sectors such as healthcare and financial services. As businesses increasingly rely on third-party vendors for cybersecurity, this outage underscores the importance of managing third-party risks and ensuring digital resilience. Organizations can use this event as a valuable lesson to reassess their risk management practices and strengthen their defenses. Furthermore, the incident reveals how even highly reputed vendors are not immune to failure, stressing the need for layered defenses that safeguard against vendor disruptions at every level.

Automated Software UpdatesCyber Risk ComplianceCybersecurity ComplianceCybersecurity IncidentsDigital ResilienceFailover SystemsIncident ResponseProcurement RiskRisk Management StrategiesSoftware Update FailuresSupply Chain RiskSystem RedundancyThird-Party RiskVendor Risk Management

Breaching the Last Bastion of the Human Psyche: Neural Data as Biometrics

September 20, 2024Privacy & Security, technology

Earlier this year, the New York Times reported on the proposed Colorado Privacy Act and the impact it would have on neurotechnology which uses “neural data” and already has noteworthy support within programming communities. What the Colorado Privacy Act aims to address are not the labs and medical studies conducted within clinics, but how it may be used within a consumer context. The Colorado Privacy Act does more than Illinois’ pioneer Biometric Information Protection Act (BIPA).

BiometricBiometric Information Protection ActBIPAColorado Privacy Actcomplianceconsumer electronicsEmploymentJournal of Regulatory Complianceneural dataneurotechnologyPrivacy & Securitytechnologywearable technology