Joker Malware Infects 500K Users In 24 Android Apps On Google Play
A new Android malware called Joker (after the manic Batman villain) has been discovered which can gain access to a victim’s SMS messages, contacts list, and other specific device information. It can also sign victims up for premium subscription services without their knowledge. The malware has been reported to have [...]
Soc 2 Control Mappings against multiple standards
Third party organisations that successfully complete a SOC 2+ audit can offer their clients reasonable assurance to demonstrate that effective internal controls are in place and these controls pertain to the criteria covered in the AICPA Trust Service Principles, as well as many of the detailed requirements covered in other [...]
How to achieve HIPAA Compliance for Medical Software applications?
In relation to medical software applications, the term HIPAA compliant means that the application meets the technical and physical safeguards of the HIPAA Security Rule. If you are hosting an application in a HIPAA-compliant environment then it does not make the application HIPAA-compliant. If you build an eHealth or mHealth [...]
The SEBI Audit framework for Mutual Funds or Asset Management Companies
The Securities Exchange Board of India (SEBI) on April 11, 2019 issues system audit framework for mutual funds or Asset Management Companies (AMCs). SEBI considering the importance of systems audit in asset management activity, the revised guidelines are placed at Annexure 1(Page 3). On the date of issuance of this [...]
Security Guidance for Critical Areas of Focus in Cloud Computing v4.0
The Cloud Security Alliance has published the Security Guidance for Critical Areas of Focus in Cloud Computing v4.0 (“Guidance v4.0”) is licensed by the Cloud Security Alliance. The Cloud Security Alliance promotes implementing best practices for providing security assurance within the domain of cloud computing and has delivered a practical, [...]