National insurance firm Crum and Forster is offering a professional liability program for CISOs who are facing growing regulatory pressures and sophisticate cyberattacks but often are not covered by their organizations' D&O policies.

The post Insurance Firm Introduces Liability Coverage for CISOs appeared first on Security Boulevard.

Prosecutors charged Sullivan, whom Uber hired as CISO after the 2014 breach, of withholding information about the 2016 incident from the FTC even as its investigators were scrutinizing the company’s data security and privacy practices. The government argued that Sullivan should have informed the FTC of the 2016 incident, but instead went out of his way to conceal it from them.

Prosecutors also accused Sullivan of attempting to conceal the breach itself by paying $100,000 to buy the silence of the two hackers behind the compromise. Sullivan had characterized the payment as a bug bounty similar to ones that other companies routinely make to researchers who report vulnerabilities and other security issues to them. His lawyers pointed out that Sullivan had made the payment with the full knowledge and blessing of Travis Kalanick, Uber’s CEO at the time, and other members of the ride-sharing giant’s legal team...

The post Former Uber CISO Appealing His Conviction appeared first on Security Boulevard.

On May 4, 2023, U.S. District Judge William Orrick sentenced former Uber CISO and former DOJ cybercrime prosecutor Joe Sullivan to three years of probation and 200 hours of community service for his role in concealing a massive data breach at Uber from the public and from the FTC. While the court rejected the government’s..

The post A CISO Employment Contract May Mean the Difference Between Success and Jail appeared first on Security Boulevard.

In a sentencing memorandum filed with a San Francisco federal court on April 27, 2023, prosecutors argued that Joe Sullivan—the former CISO of Uber and a former federal computer crimes prosecutor himself (with the same office)—should serve 15 months in federal prison for his role in the ride-sharing company’s concealment of a data breach. At..

The post Prosecutors Argue for 15 Months in Jail for Uber CISO appeared first on Security Boulevard.

Uber is in the headlines once again for losing sensitive data. However, this round of data exposure isn’t due to a breach of Uber’s facilities. Rather, New Jersey-based law firm Genova Burns was storing data about Uber’s drivers, including social security numbers, taxpayer identification and other personally identifiable information (PII) when attackers exfiltrated the data..

The post What Uber’s Latest Data Breach Means for Third-Party Risk appeared first on Security Boulevard.

On January 11, 2023, presiding United States District Judge William Orrick in San Francisco denied the motion of Joe Sullivan, the former CISO of Uber, for a judgment of acquittal. The conviction arose from Sullivan’s agreement to pay attackers who breached the security of the online ride-sharing service and obtained personal information about thousands of..

The post Former Uber CISO’s Conviction Affirmed by Trial Court appeared first on Security Boulevard.

Security teams struggle to keep pace with data proliferation across their cloud environments. The cloud provides obvious business advantages, but the sheer volume of data moving to the cloud, the lack of visibility and the use of multiple cloud service providers all increase the threat surface exponentially. In this rush to the cloud, enterprises have..

The post Data Security: This Time, it’s Personal appeared first on Security Boulevard.

A Uber breach verdict was handed down that could prove highly impactful to CISOs and CSOs in the near and distant future.

The post “How will the Uber Breach Verdict Affect the CISO Role in the Future?” appeared first on Radware Blog.

The post “How will the Uber Breach Verdict Affect the CISO Role in the Future?” appeared first on Security Boulevard.

The post CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications appeared first on The Shared Security Show.

The post CISO Liability Risk and Jail Time, (ISC)2 Bylaw Vote and the Value of Cybersecurity Certifications appeared first on Security Boulevard.

Earlier this month, former Uber CISO (and former federal cybercrime prosecutor) Joe Sullivan was convicted by a federal jury in San Francisco for concealing information related to a data breach at the ride-sharing app company from the Federal Trade Commission. The actual charges were that Sullivan, by paying for the hackers’ silence, obstructed a then-ongoing..

The post The Uber/Sullivan Conviction is NOT About Data Breaches appeared first on Security Boulevard.