NASCO, a United States healthcare benefits administration company, has suffered a major cyber breach that has exposed the personal details of 800,000 users. The company has responded by deactivating the affected server and offering two years of identity monitoring services to affected users. The breach was orchestrated through a zero-day exploit, taking advantage of a vulnerability in NASCO’s MOVEit Transfer system, which is linked to threat actors in Russia.
Board-Ready Security Metrics That Actually Matter
TL;DR Board-ready security metrics translate technical capabilities into financial risk and business outcomes. Boards need visibility across three dimensions: risk exposure, incident response capability, and
