The new PCI DSS standard puts more focus on application security, with more tools, testing and documentation required of developers.

The SEC alleges SolarWinds and CISO Tim Brown defrauded investors by not disclosing security risks ahead of the 2020 Orion Sunburst attacks.

The deadline for the first phase of implementation of PCI DSS 4.0 is March 31, 2024. If you’re not already getting ready, then you’re falling behind. Here’s what you need to know and do.

John Loucaides, SVP Strategy at Eclypsium, joins us on the show to discuss protecting the federal supply chain! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them!

According to a relator and the federal government, Penn State has been falsely claiming their adherence to NIST cybersecurity standards for years.

The tax agency is making due for now with voluntary memorandums of agreement between certain agencies that allow them to provide the kind of inspections and oversight.

Securiti won high praises for improving its market reach and prioritizing customer support 24x7.

The Colorado Department of Health Care Policy and Financing said the case was reported to them by IBM, one of the state agency’s contractors and a user of the MOVEit file transfer app.