How can company boards ensure they are addressing escalating cyber threats? Positioned at opposite ends of the business, board members and security executives often struggle to collaborate effectively ...

Jack Koziol is president and founder of Infosec, a leading security awareness and anti-phishing training provider. With years of private vulnerability and exploitation development experience, he has ...

As we embrace digitalization in various aspects of our lives, we inadvertently expose ourselves to heightened cybersecurity risks. However, with proper attention and precautionary measures, it is ...

October 21, 2025 - This column starts with a short quiz about cybersecurity and how you and your firm are doing. Before dismissing cybersecurity as outside of your purview, consider the first question ...

As headlines about ransomware, data leaks, account takeovers, and AI-powered scams keep piling up, it’s no surprise that everyday users and small businesses are feeling uneasy. What’s changed in ...

When an advisory firm is seeking a tech vendor or vetting an existing one, the most common request is to see its SOC 2 report — a widely used compliance report that shows how that vendor manages ...

In this post in our series on basic cybersecurity concepts for lawyers (see here and here for prior posts), we delve into the National Institute of Standards and Technology (NIST) Cybersecurity ...

On August 9, 2022, the Conference of State Bank Supervisors (CSBS) released two cybersecurity tools for nonbank financial services institutions to help prepare for state cybersecurity exams and, ...