The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently published the Binding Operational Directive (BOD) 23-01 that requires U.S. federal agencies to make measurable progress toward enhancing visibility into asset discovery and vulnerability. This directive includes several requirements that may not be fully addressed by vulnerability management or endpoint detection and response (EDR/XDR) solutions. Moreover, […]
Federal officials released updated guidance for preparing and responding to medical device cybersecurity incidents, including ransomware, as cyberattacks against the healthcare sector continue to surge. The new Food and Drug Administration’s Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook is a refresh of guidance released in 2018 (see: How to Use FDA’s Medical Device […]
The problems cybersecurity startups attempt to solve are often a bit ahead of the mainstream. They can move faster than most established companies to fill gaps or emerging needs. Startups can often innovative faster because they are unfettered by an installed base. The downside, of course, is that startups often lack resources and maturity. It’s […]
Latest Comments