Information Security

The SecurityInfoWatch.com Information Security product category is a collection of news, product listings and other resources for security professionals researching Information Security solutions. It covers a wide variety of network security hardware and software products.

The Change Healthcare cyberattack made a lasting impact on the healthcare industry and security professionals worldwide. Over a year later, it is still pointed to as an example of a breach that can have devastating consequences, but the lessons security leaders can take away will help them be better prepared for the future.

The Change Healthcare cyberattack still resonates more than a year later

April 16, 2025

Lessons for cybersecurity leaders include that security solutions and protocols must evolve as cyberattacks continue to evolve.

While AI has strengthened cybersecurity defenses, cybercriminals have also weaponized it to enhance the sophistication and effectiveness of ransomware attacks.

AI-driven sophisticated cyber-attacks: techniques, detection and defense

April 10, 2025

What 23andMe underscores isn’t limited to one company or one industry. It reminds us that a business's durability is measured not just in capital but also in how responsibly it handles its data.

Information Security

The 23andMe fallout shows why privacy can’t be an afterthought

April 9, 2025

In the interconnected world of IoT, robust cybersecurity measures are essential to protect data integrity and privacy.

IoT security challenges in today’s hyper-connected world

Rodrigo Ferreira

April 8, 2025

Information Security

Traditional EDR is evolving, and the next phase of endpoint security is here: Preemptive Endpoint Protection (PEP). Unlike its predecessor, PEP doesn’t just detect and respond to attacks; it actively prevents them.

Traditional EDR can't keep up with modern cyber threats

March 31, 2025

Rather than relying on a rigid set of prescriptive controls, the standard enables organizations to tailor their security measures to their specific risk environments. Key changes include expanded multi-factor authentication requirements, increased emphasis on continuous risk assessment, and better integration of security into business-as-usual activities.

From compliance to cyber resilience: Aligning with PCI DSS 4.0 and DORA

March 31, 2025

Understanding why social engineering works so effectively requires insight into the psychology behind it.

Why human vulnerability is cybersecurity's most significant and costliest weakness

March 18, 2025

As third-party breaches continue to rise, organizations must recognize that their security is only as strong as the weakest link in their vendor ecosystem.

Third-Party Data Breaches: Hidden Threat Lurking in Vendor Networks

March 18, 2025

Categories

Alarm Systems & Intrusion Detection

Artificial Intelligence

Associations, Research & Training Organizations

Camera Accessories

Central Station Alarm Monitoring

Dealers, Integrators & Installing Companies

Emergency Safety Equipment

Fire & Life Safety

Home Alarm Systems

Hosted/Managed Video Surveillance

Identification Solutions

Information Security

Anti-Virus and Malware Defense

Breach Detection

Cloud Security Solutions

Computer and Network Security Hardware

Computer and Network Security Software

Document and Data Controls & Destruction

Encryption Solutions

Managed Network Security

Infrared Illuminators

Installation Tools & Equipment

Integrated Security Management Systems & PSIM

Intercom Solutions

License Plate Detection

Loss Prevention Solutions

Monitors & Video Walls

Networking Equipment and Cabling

Physical Hardening

Power Systems & Supplies

Protective Operations & Guard Services

Safes, Seals and Security Containers

Security Industry Services

Security Lighting

Threat Detection, Imaging & Inspection

Video Analytics

Video Intercoms

Video Management Software/VMS

Video Surveillance Storage

Video Transmission Equipment

Wellness/Elderly Monitoring

Wireless Video Solutions

The healthcare sector faces unique cybersecurity challenges due to the sensitive nature of the data it handles and the critical services it provides. By understanding the various vulnerabilities and implementing robust security measures, healthcare organizations can better protect themselves against cyber threats.

Information Security

Cybersecurity Vulnerabilities in Healthcare: A Growing Concern

Antoinette King, PSP, DPPS, SICC, CMMC-RP

March 13, 2025

Understanding vulnerabilities and implementing strong security measures help healthcare organizations defend against cyber threats.

Ransomware groups now specifically target healthcare providers, knowing that the immediate need to restore patient care services increases the likelihood of ransom payments.

HIPAA’s New Data Security Chapter: Transforming Healthcare Security in 2025

March 13, 2025

Effective implementation hinges on transparent communication with staff, patients, and business partners about new security measures and their impact on workflow.

Today, IoT devices, including physical security products, often operate in diverse and remote environments, with fleets typically ranging from thousands to tens of thousands of devices.

Physical Hardening

Why Physical Security Products Need Over-the-Air (OTA) Updates Under the EU CRA

Eystein Stenberg

March 13, 2025

Legacy methods of updating physical security devices, like manual intervention or USB-based updates, are outdated and impractical in today’s interconnected landscape.

gettyimages1065782564

New Cybersecurity Policies Could Protect Patient Health Data

March 13, 2025

As healthcare policy takes center stage, recently enacted cybersecurity legislation is poised to redefine patient privacy and data security. At the forefront of these changes ...

360_privacy_dashboard

Information Security

360 Privacy's digital protection platform

March 11, 2025

ISC West 2025 Booth 33045: Tool removes Personally Identifiable Information (PII) from the open web and data broker websites.

desi_chip_photo

Encryption Solutions

Prometheus Security Group’s Digital Encrypted Security Interface (DESI)

Prometheus Security Group

March 11, 2025

ISC West 2025 Booth 32069: Upgrade new or existing readers and sensors into Zero Trust devices with PKI-secured encryption.

swear_validation_tool

Encryption Solutions

SWEAR Security

March 10, 2025

ISC West 2025 Booth 31086

If properly implemented with AI, DevSecOps provides a more efficient software development workflow by automating some of the steps and security gates.

Artificial Intelligence

AI: A double agent in the cybersecurity world

March 4, 2025

Organizations must be prepared to fight AI cyberattacks with AI-powered DevSecOps.

Access & Identity

How FIDO Can Safeguard Against Advanced Cyber Threats

March 3, 2025

Now is the time for organizations to evaluate their authentication strategies proactively.

In 2024, the healthcare sector experienced an unprecedented increase in ransomware attacks, affecting over 198 million Americans. Among these incidents, the Change Healthcare breach stood out as one of the largest in history, impacting more than 100 million individuals. Source: SonicWall

SMBs and healthcare face relentless cyber threats, SonicWall warns

Feb. 25, 2025

The 2025 SonicWall Cyber Threat Report reveals that cybercriminals are exploiting vulnerabilities faster than organizations can patch them, putting SMBs and healthcare providers...

As businesses and governments pour resources into developing proprietary quantum algorithms, they will become invaluable, shrouded in secrecy, and fiercely guarded.

Quantum of Solace: Corporate espionage in the quantum age

Dr. Erik Garcell

Feb. 24, 2025

As quantum computing reshapes the corporate battlefield, espionage is evolving beyond hackers and spies—organizations must master quantum security or risk losing their competitive...

Getting control over identity management requires a comprehensive and ongoing process from risk assessment through daily management.

Information Security

Strategies for demystifying IAM

Feb. 24, 2025

Amid a rising tide of data breaches, organizations are struggling to control identity management options.

DORA also affects regions outside of the EU. Although the Digital Operational Resilience Act (DORA) is an EU regulation, it is also applicable in the U.S. market. It enforces third-party risk management by holding financial institutions accountable for their vendors' operational resilience.

Information Security

Digital Operational Resilience Act (DORA) in Full Swing in EU

Feb. 19, 2025

U.S. organizations are looking to embrace similar regulatory guidelines across myriad sectors.

By gaining access to an employee’s credentials, a bad actor also gains access to their account privileges, especially if the same credentials are used across multiple accounts.

Access & Identity

Strategies for reducing the dangers of credential theft

Jan. 29, 2025

If credentials are compromised, spotting the breach quickly, the damage can be contained.

A platform-agnostic Managed Detection and Response (MDR) solution refers to a service provider that offers MDR services independently of any specific cybersecurity platform or technology stack, becoming a “platform” in and of itself, along with advisory services that help select the best-of-breed tooling.

Platforms vs best-of-breed solutions: why not both?

Jan. 29, 2025

Whether opting for an integrated platform or a mix of specialized tools, the key is establishing a robust cybersecurity strategy.