Tag: CSO Online

This article has been indexed from CSO Online Cybersecurity buzzwords and buzz phrases are a dime a dozen. Used to simplify complex terminology or boost sales and marketing campaigns, buzzwords are an inescapable reality for an innovative and fast-paced industry…

Read more →

This article has been indexed from CSO Online Global enterprises with multiple subsidiaries are more exposed to cybersecurity threats and have more difficulty managing risk than companies with no, or fewer, subsidiaries, according to an Osterman Research report commissioned by…

Read more →

This article has been indexed from CSO Online On May 12, 2021, President Biden released a comprehensive cybersecurity executive order, EO 14028, entitled Improving the Nation’s Cybersecurity. The complex order responded to a chain of startling and damaging cybersecurity incidents…

Read more →

This article has been indexed from CSO Online Security is critical to business operations. The disruptive impact of ransomware attacks has made this clear. But if employees don’t understand the goals and reasoning behind their organization’s security policies – and…

Read more →

This article has been indexed from CSO Online HP recently released the latest edition of the HP Wolf Security Threat Insights Report. The report reviews notable malware isolated by HP Wolf Security in the third quarter of 2021 so that security teams…

Read more →

This article has been indexed from CSO Online If you want to know what’s new in cybersecurity, watch what the startup vendors are doing. They typically begin with an innovative idea and are unfettered by an installed base and its…

Read more →

This article has been indexed from CSO Online Conti has been one of the most aggressive ransomware operations over the past two years and continues to victimize many large companies as well as government, law enforcement and healthcare organizations. Researchers…

Read more →

This article has been indexed from CSO Online On average, it takes 280 days for security teams to detect that a network has been compromised by an attack. Those teams are dealing with a tremendous volume of endless alerts, often…

Read more →

This article has been indexed from CSO Online Automation has long been something of a pipedream among security professionals. Sure, it sounds great: Get more done, faster, without growing your team. That would be a welcome change for security teams…

Read more →

This article has been indexed from CSO Online The group of hackers responsible for the SolarWinds software supply chain attack have continued to seek out ways of indirectly gaining access to enterprise networks by targeting IT and cloud services providers…

Read more →

This article has been indexed from CSO Online Breach disclosure has recently been in the news, and not necessarily in a good way. Missouri Governor Mike Parson’s press conference on a newspaper’s reporting of a security vulnerability on the Department…

Read more →

This article has been indexed from CSO Online Customer Perspectives A petroleum distribution business developed innovative ideas for increasing customer loyalty, but it needed to upgrade its technology infrastructure to bring those concepts to life. The company, which operates several…

Read more →

This article has been indexed from CSO Online Anyone running a business is likely familiar with the phrase “building the plane as you’re flying it.” And through the craziness of the past 19 months, many of us lived the phrase,…

Read more →

This article has been indexed from CSO Online Do the words Zombiebots, Gh0st, Beast, and Creeper send shivers up your spine? They should. These are the names of top malware that could be haunting your programs and email right now! Building a cyber defense plan…

Read more →

This article has been indexed from CSO Online Every organization wants to keep its employees’ cybersecurity skills up to date, but for many, the cost of advanced formal trainings can break the budget. At the SANS Institute, for instance, considered…

Read more →

This article has been indexed from CSO Online What if you could spend your days trying to gain access to other people’s networks and computer systems—and not get in trouble for it? Of course, that’s every spy and cybercriminal’s dream,…

Read more →

This article has been indexed from CSO Online The future of work arrived much more abruptly than anticipated, bringing with it many pressing security challenges. The global pandemic forced organizations of all types and sizes to support remote work overnight,…

Read more →

This article has been indexed from CSO Online Allison Miller’s official title—CISO and vice president of trust—says a lot about her role and responsibilities at Reddit. Like all CISOs, Miller oversees the cybersecurity strategy and operations at the 16-year-old company.…

Read more →

This article has been indexed from CSO Online The CIS Controls Self Assessment Tool (CIS CSAT) allows organizations to perform assessments on their implementation of the CIS Critical Security Controls (CIS Controls). You can track progress over time and identify…

Read more →

This article has been indexed from CSO Online Looking for a qualified candidate or new job? CSO’s security recruiter directory is your one-stop shop. The recruiters listed below can help you find your next chief information security officer (CISO) or…

Read more →

This article has been indexed from CSO Online New data highlighting fluctuations relating to ransomware attack and payment claims indicates significant shifts in the cyberthreat landscape. Could such variations trigger changes in the cyber insurance market and, if so, how…

Read more →

This article has been indexed from CSO Online Intrusions where hackers compromise the infrastructure of software developers and Trojanize their legitimate updates are hard to detect by users of the impacted software products, as highlighted by multiple incidents over the…

Read more →

This article has been indexed from CSO Online SSRF attack definition Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. The name itself implies that a request that should have otherwise been…

Read more →

This article has been indexed from CSO Online Global cybersecurity membership association (ISC)2 has announced plans to pilot a new entry-level cybersecurity certification to validate the fundamental skills and abilities necessary for entry-level positions. Aimed at addressing cybersecurity workforce shortages,…

Read more →

This article has been indexed from CSO Online As we move cloud computing, your browser is your operating system. While we tend to hold back in business patching to ensure there are no side effects, it can be dangerous to…

Read more →

This article has been indexed from CSO Online Today’s credential-based attacks are much more sophisticated. Whether it’s advanced phishing techniques, credential stuffing, or even credentials compromised through social engineering or breaches of a third-party service, credentials are easily the most…

Read more →

This article has been indexed from CSO Online The White House’s Counter-Ransomware Initiative event, facilitated by the National Security Council (NSC), concluded two days of public-facing and closed-door sessions. Present were ministers and representatives from more than 30 countries and…

Read more →

This article has been indexed from CSO Online Interest in zero trust is surging, according to IDG’s 2020 Security Priorities Study, with 40% of survey respondents saying they are actively researching zero trust technologies, up from only 11% in 2019,…

Read more →

This article has been indexed from CSO Online So far, 2021 has proved to be somewhat of a security annus horribilis for tech giant Microsoft, with numerous vulnerabilities impacting several of its leading services, including Active Directory, Exchange, and Azure.…

Read more →

This article has been indexed from CSO Online Insider breaches are growing – because you can actually see them In their annual look at trends in cyber security, Forrester made a few startling revelations: 33% of your breaches in 2021…

Read more →

This article has been indexed from CSO Online 2021 is shaping up to be an active year for mergers and acquisitions in the cybersecurity industry. March alone saw more than 40 firms being acquired. The level of activity is driven…

Read more →

This article has been indexed from CSO Online REvil is a ransomware-as-a-service (RaaS) operation that has extorted large amounts of money from organizations worldwide over the past year. Its name stands for Ransomware Evil and was inspired by the Resident…

Read more →

This article has been indexed from CSO Online The already difficult task of attributing a cybersecurity attack to a particular threat actor is made harder by the shape-shifting nature of threat groups. Despite the best efforts of researchers, some attackers…

Read more →

This article has been indexed from CSO Online One of the vulnerabilities patched by Microsoft Tuesday has been exploited by a Chinese cyberespionage group since at least August. The attack campaigns targeted IT companies, defense contractors and diplomatic entities. […

Read more →

This article has been indexed from CSO Online Here’s what I know: My personal email has been “pwned” or stolen at least 18 times. Here’s what I don’t know: if any of the times I have been unable to log…

Read more →

This article has been indexed from CSO Online Many of us have taken “the walk”! You know, the one where a representative from HR (commonly known as the People Team these days) walks you out of the building and wishes…

Read more →

This article has been indexed from CSO Online Google has announced the formation of a cybersecurity action team to provide support to governments, critical infrastructure, enterprises, and small businesses. The Google Cybersecurity Action Team will consist of cybersecurity experts from…

Read more →

This article has been indexed from CSO Online The US Cybersecurity and Infrastructure Security Agency (CISA) has designated October as Cybersecurity Awareness Month. In honor of this event, I urge you to take the month of October to become more…

Read more →

This article has been indexed from CSO Online No company wants to see its crown jewels exposed to the elements, yet this is what happened to the Amazon-owned online streaming platform Twitch on October 6 when 125GB of its data…

Read more →

This article has been indexed from CSO Online When Laura Deaner speaks about the CISO’s mission, she doesn’t talk about preventing breaches and detecting intruders. Rather, she gives her top task as enabling the long-term business strategy, an objective the…

Read more →

This article has been indexed from CSO Online There has been an exponential increase in cyberattacks around the globe in the last five years and a major chunk of it happened in October each year, according to a study by…

Read more →

This article has been indexed from CSO Online There has been an exponential increase in cyberattacks around the globe in the last five years and a major chunk of it happened in October each year, according to a study by…

Read more →

This article has been indexed from CSO Online The Center for Internet Security (CIS) Community Defense Model (CDM) v2.0 can be used to design, prioritize, implement, and improve an enterprise’s cybersecurity program. Enterprises naturally want to know how effective the…

Read more →

This article has been indexed from CSO Online To fully digitize the last mile of business, you need to distribute compute power where it’s needed most — right next to IoT devices that collect data from the real world. Read…

Read more →

This article has been indexed from CSO Online What is SAML? The Security Assertion Markup Language (SAML) is an open standard that allows security credentials to be shared by multiple computers across a network. It describes a framework that allows…

Read more →

This article has been indexed from CSO Online The COVID-19 pandemic and the disruption to workplace and operational environments that it triggered have accentuated and, in some cases, exacerbated some of the security concerns around edge computing. Edge computing is…

Read more →

This article has been indexed from CSO Online Once the staple for securing employees working remotely, VPNs were designed to provide secure access to corporate data and systems for a small percentage of a workforce while the majority worked within…

Read more →

This article has been indexed from CSO Online Some of the changes to IT environments prompted by the COVID-19 pandemic—primarily work-from-home (WFH) and cloud adoption—are here to stay and will require long-term revisions to enterprise cybersecurity strategies. The often hasty…

Read more →

This article has been indexed from CSO Online There is nothing like attending a face-to-face event for career networking and knowledge gathering, and we don’t have to tell you how helpful it can be to get a hands-on demo of…

Read more →

This article has been indexed from CSO Online The first six months of 2021 saw unprecedented turnover in the US labor market, after a full year of the COVID-19 pandemic. And with every individual that leaves an organization, a ripple…

Read more →

This article has been indexed from CSO Online After issuing cybersecurity requirements for pipeline companies via two directives earlier this year, the Transportation Safety Administration (TSA) will now also issue cybersecurity requirements for rail systems and airport operators. The two…

Read more →

This article has been indexed from CSO Online Florida State University CISO Bill Hunkapiller wouldn’t let Covid derail his plans to improve the university’s resiliency capabilities. Hunkapiller started devising Seminole Secure, a four-part program designed to boost FSU’s disaster preparedness…

Read more →

This article has been indexed from CSO Online 2021 has been a banner year for cybercriminals, they have taken advantage of the COVID-19 pandemic and the increase in remote work, attacking both technical and social vulnerabilities. This historic increase in…

Read more →

This article has been indexed from CSO Online What’s the #1 indicator that an employee is going to take data? They quit. It’s that simple. If you think your company is immune to departing employees walking out the door with…

Read more →

This article has been indexed from CSO Online Security researchers have uncovered cyberespionage operations by an Iran-based hacker group targeting aerospace and telecom firms with a previously undocumented stealthy Trojan program that’s been in use since 2018. Security firm Cybereason…

Read more →

This article has been indexed from CSO Online Zero trust has long been the logical successor to the moat/castle perimeter security model, which hasn’t worked very well to protect enterprises from cyberattacks and is becoming increasingly outdated as employees become…

Read more →

This article has been indexed from CSO Online If you are still running and patching an on-premises Exchange server, you need to opt into a major protection that Microsoft is rolling out to its customers. Microsoft has rolled out a…

Read more →

This article has been indexed from CSO Online One Identity has acquired OneLogin, an IAM (identity and access management) provider, in a bid to offer its customers an end-to-end suite of security applications that offer identity correlation, secured access to…

Read more →

This article has been indexed from CSO Online Throughout National Insider Threat Awareness Month there has been no shortage of thoughts and ideas proffered on how to manage and mitigate insider risk that comes with having humans as part of…

Read more →

This article has been indexed from CSO Online Last week the Federal Communications Commission (FCC) put out for comment its first set of consumer cybersecurity protection rules under the Biden administration. These proposed rules address the growing scourge of so-called…

Read more →

This article has been indexed from CSO Online Ransomware has increased nearly 1100% over the last year according to FortiGuard Labs research, impacting organizations of all sizes and across all market sectors. And according to Fortinet’s State of Ransomware survey,…

Read more →

This article has been indexed from CSO Online Configuration management can be challenging. IT teams can become overwhelmed by the need to address various standards, compliance requirements, and security options. As the popularity of remote work grows, so does the…

Read more →

This article has been indexed from CSO Online Over the past two years, the rise of big-ticket ransomware attacks and revelations of harmful software supply chain infections have elevated cybersecurity to the top of the government’s agenda. At the same…

Read more →

This article has been indexed from CSO Online As a security professional, you may be tasked with achieving SOC2 compliance for your organization, adopting a NIST framework, or complying with new security laws. These are just a few examples; you…

Read more →

This article has been indexed from CSO Online Telos, Splunk and StackArmor have teamed up to streamline US federal government ATO (Authorization To Operate) compliance for regulated defense contractors and software providers, using AWS as a foundation. The new initiative,…

Read more →

This article has been indexed from CSO Online Telos, Splunk and stackArmor have teamed up to streamline US federal government ATO (Authorization To Operate) compliance for regulated defense contractors and software providers, using AWS as a foundation. The new initiative,…

Read more →

This article has been indexed from CSO Online The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO)…

Read more →

This article has been indexed from CSO Online Just as the threat landscape evolves over time, so does security technology. Having been in the cyber security space for more than 15 years, I have witnessed a number of evolutions first…

Read more →

This article has been indexed from CSO Online Security researchers have recently seen a notorious cyberespionage group with ties to the Russian government deploy a new backdoor that’s designed to hook into Active Directory Federation Services (AD FS) and steal…

Read more →

This article has been indexed from CSO Online The world is awash in data. So in almost every enterprise, the question looms: How can we scale data analytics to deliver the greatest possible value? Read the original article: CIO Think…

Read more →

This article has been indexed from CSO Online Many organizations transact with hundreds of third-party partners, according to EY’s Global Third-Party Risk Management Survey 2019-2020, a trend that PwC finds shows no sign of slowing, even as the risks increase.…

Read more →

This article has been indexed from CSO Online CISOs looking to beef up their customer-facing authentication procedures to thwart cyberattacks need to walk a fine line. You want the method to provide tight security without being too complicated, confusing, or…

Read more →

This article has been indexed from CSO Online Even though jobs in cybersecurity pay well, far fewer women go into the field than men. According to the 2020 (ISC)² Cybersecurity Workforce Study, gender disparities persist around the globe. The highest percentage…

Read more →

This article has been indexed from CSO Online Over the past year we’ve seen an explosion in ransomware attacks – over 10x according to FortiGuard Labs – making the odds increasingly high that your organization will be attacked. In fact,…

Read more →

This article has been indexed from CSO Online We are often told that the cloud is more secure than on-premises solutions. But is it really? Both are subject to similar risks and vulnerabilities, and the cloud can sometimes be more…

Read more →

This article has been indexed from CSO Online Two-factor authentication (2FA) has been widely adopted by online services over the past several years and turning it on is probably the best thing users can do for their online account security.…

Read more →

This article has been indexed from CSO Online Studies show that CSO readers are most likely to know that endpoint protection is the modern iteration of the antivirus tools of previous generations. Okay, I made that first part up, but…

Read more →

This article has been indexed from CSO Online President Biden’s Executive Order 14028 “Improving the Nation’s Cybersecurity” directed the Cybersecurity and Infrastructure Security Agency (CISA) to create a cloud-security technical reference architecture (RA) in coordination with the Office of Management…

Read more →

This article has been indexed from CSO Online When I was a kid in the late 1970s, the ABC Television Network had the top three most-watched shows in the United States, and I was one of those viewers. For example,…

Read more →

This article has been indexed from CSO Online The gaming industry produces the most cutting-edge, connected, customizable, entertainment experiences on the planet. Full stop. Currently at $200 billion per year and growing, the gaming industry has grown from humble beginnings…

Read more →

This article has been indexed from CSO Online Anyone who works in business is likely familiar with the phrase, “Building the plane as you’re flying it.” And after the craziness of these past 18 months, I’m sure most of us…

Read more →

This article has been indexed from CSO Online The year 2020 disrupted just about every industry, including retail banking. Locked down at home, consumers were abruptly forced to do all their banking over the internet. The sudden transition profoundly impacted…

Read more →

This article has been indexed from CSO Online Do you remember the first time you made an online purchase? Me neither. I’ve made so many online purchases over the years, and I’ve probably made more in the past 18 months…

Read more →

This article has been indexed from CSO Online Babysitters and teachers know how important it is for children to be able to play well with others. If the new kid in class turns out to be a bully who throws…

Read more →

This article has been indexed from CSO Online Brennan P. Baybeck lists building a successful team as one of his top responsibilities as a CISO. “If you surround yourself with great people, make sure they’re successful and have what they…

Read more →

This article has been indexed from CSO Online Incident responders work much like police detectives or journalists, in search of the who, what, when, why and how of incidents before they can take steps to address problems. One tool that…

Read more →

This article has been indexed from CSO Online Trust is empowerment and making the modern day ‘identity for the internet’ journey as secure as possible is paramount to enterprise success. IT leaders know every person has the right to safely…

Read more →

This article has been indexed from CSO Online Looking for a qualified candidate or new job? CSO’s security recruiter directory is your one-stop shop. The recruiters listed below can help you find your next chief information security officer (CISO) or…

Read more →

This article has been indexed from CSO Online Application programming interfaces (APIs) are a critical part of most modern programs and applications. In fact, both cloud deployments and mobile applications have come to rely so heavily on APIs that you…

Read more →

This article has been indexed from CSO Online The Federal Trade Commission (FTC) commissioners, in a split-vote (3-2), issued a policy statement on September 15, requiring both health applications and connected devices to comply with the “Health Breach Notification Rule…

Read more →

This article has been indexed from CSO Online Security researchers warn that a design issue in how the Microsoft Exchange Autodiscover feature works can cause Outlook and other third-party Exchange client applications to leak plaintext Windows domain credentials to external…

Read more →

This article has been indexed from CSO Online The Federal Bureau of Investigation (FBI) had the keys to REvil’s ransomware as the cybercriminals were locking up company after company’s data and did not publicly share the keys. What were they…

Read more →

This article has been indexed from CSO Online Days after the Russia-linked BlackMatter ransomware gang hit an Iowa grain cooperative with a ransomware attack, the Biden administration unveiled its latest effort to address the ongoing ransomware crisis. In a move…

Read more →

This article has been indexed from CSO Online The attack on US-based software provider Kaseya by notorious Russia-linked ransomware group REvil in July 2021 is estimated to have affected up to 2,000 global organizations. REvil targeted a vulnerability (CVE-2021-30116) in…

Read more →

This article has been indexed from CSO Online As part of his extensive cybersecurity executive order issued in May, President Biden directed the National Institute of Standards and Technology (NIST) to develop two pilot labeling programs on the cybersecurity capabilities…

Read more →

This article has been indexed from CSO Online Once again attackers have used Office files in targeted attacks against Microsoft users. This time they used the Windows Explorer preview pane to deliver malicious .doc, .docm, and .docx files. Researchers have…

Read more →

This article has been indexed from CSO Online The Biden administration has introduced new sanctions against cryptocurrency exchange Suex to stifle revenue for ransomware groups. Suex, which has been accused by US officials of doing business with ransomware actors in…

Read more →

This article has been indexed from CSO Online What is CRISC? Certified in Risk and Information Systems Control (CRISC) is a certification that focuses on enterprise IT risk management. It’s offered by ISACA, a nonprofit professional association focused on IT…

Read more →

This article has been indexed from CSO Online Jenai Marinkovic doesn’t put much stock into figures that show how many attacks she and her security team have stopped. Those numbers, she says, really don’t provide any insights. “Saying we blocked…

Read more →

This article has been indexed from CSO Online More than a year after remote work became the norm, many companies have moved to a hybrid model in which some employees work from home at least some of the time. It’s an…

Read more →