The NIS2 Directive is new European Union legislation aimed at strengthening cybersecurity in various sectors, including operators of essential services and digital service providers. From October 2024, companies covered by the NIS2 Directive will have to meet certain minimum cybersecurity requirements. This means that companies must assess their current level of security and develop a plan to comply with the Directive. It is important to work with relevant stakeholders, regulators and supply chain partners to ensure everyone is aware of the requirements. Read more about the impact of the directives and requirements in this article.

Small and medium-sized enterprises face various cybersecurity risks when they outsource key business functions to third parties. These security risks are increasing due to the increasing size and complexity of their outsourced business functions, increased regulatory and customer scrutiny, and the sophistication of cyber attacks.

Third-party risk management is an important aspect of cybersecurity for any organization. One way to mitigate risks is by using haveibeenpwned.com, a website that lets you check if your email address or password has been compromised in a data breach. By using this tool, you can identify which third-party services pose the highest risk to your organization and take action to protect your data.

In today's interconnected world, managing third-party risks is more critical than ever. Companies rely on third parties to provide goods and services, but this dependence also exposes them to potential risks. Fortunately, big data and AI technologies can help you identify, assess, and manage these risks. In this post, you will learn how big data and AI can improve your third-party risk management processes.

The protection of users is essential for companies and governments to regulate the new wave of advanced technologies. This will help secure our digital future and allow for the full potential of emerging technologies like ChatGPT to improve our lives. Taking the right steps to ensure user safety is crucial for maximizing the opportunities presented by these technologies.

TikTok is a popular app among young people for sharing short videos. But is it wise to allow this app in the workplace? The app poses risks in terms of privacy, protection of sensitive data and third-party management. The Flemish government has already blocked TikTok for government employees for security reasons. Dutch political parties are also in favor of banning TikTok on government employees' work phones. Read more about the risks and how to deal with them in this blog post.

Hackers are increasingly using insecure connections between GitHub and third parties, such as API keys and access tokens, to infiltrate organizations and steal data. This can lead to supply chain dependencies and other security risks. Organizations need to secure these connections as carefully as they would usernames and passwords. This is especially true in the wake of the recent CircleCI breach, in which customer data and encryption keys were stolen.

Cookie thieves are criminals who attempt to break into systems by stealing the identities of legitimate users. This can have serious consequences for businesses and individuals, including the theft of personal and financial information.

With cyber-attacks on the rise, it is not surprising that organizations are concerned about the vulnerability of their systems and the data they manage. One worrying aspect is the lack of qualified personnel to manage their third parties. In addition, companies are often unaware of all the parties in their supply chain and struggle to understand the risks involved.