The upcoming European Cyber Resilience Act sets out to boost security for anything with “digital elements”.
The Act will apply to hardware and software. The idea is to make it easier to update devices, and to fix any vulnerabilities.
Why, then, has a group of cyber security professionals written an open letter to the European Commission asking them to change a key part of the proposed rules?
Experts are concerned that, by requiring organisations to disclose vulnerabilities within 24 hours, the Act could increase, rather than reduce, risks.
Our guest today is Christine Bejerasco, CISO at WithSecure and one of the signatories of the letter.
We asked her to set out the background to the Act, and why so many security professionals fear it could have unintended consequences.
Interview by Stephen Pritchard
Ransomware: should payments be banned?
Cloud security: an identity problem
The end of passwords?
Critical National Infrastructure: changing threats
DORA: one year to go
Cyber governance: a new UK code of practice?
Web apps and security weaknesses
Security in 2024: AI, skills, and a seat on the board
Security Insights: 2023 year in review
Cyber: crime’s digital economy
Quantum computing: a security risk?
Open source: a security risk?
Automation and the cybersecurity skills gap
Cyber resilience: are we prepared?
Defending healthcare in cyberspace
Cyber war: is it everyone’s business?
Cloud insecurity: leaving the keys in the door?
Deep fakes, AI and digital trust
Biometrics: Eyes in the sky?
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
Black Wolf Feed (Chapo Premium Feed Bootleg)
Bannon`s War Room