cyber risk - The Stack

CISO

As SEC’s SolarWinds charges reverberate, companies scrutinise cyber risk disclosures

'Do not state anything that is subjective and avoid adjectives (e.g., "state of the art," "mature," "advanced," "appropriate," "comprehensive," or "reasonable")' say experts.

cyber risk

CVSS 4.0 aims for greater clarity on cybersecurity risk -- adds OT, response components

New metrics for Operational Technology exposure include whether the "consequences of the vulnerability meet definition of IEC 61508 consequence categories of "marginal," "critical," or "catastrophic."

Cybersecurity

Major German oil supplier confirms cyber-attack -- "Oiltanking" says incident has crippled inland supply

Terminals are "operating with limited capacity" as company declares force majeure

Cybersecurity

AXA survey shows cyber risk a top concern for the first time -- as insurers, tech get creative

"Silent risk" remains a cyber insurance issue...