2024, CISO and Risk - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Continuing our look back at 2024, part two of Last Watchdogs year-ender roundtable turns its focus to emerging threats vs. evolving defense tactics. Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. These systems promise innovation but also introduce risks.

Cyber threats

Cyber threats CISO IoT Phishing

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

The Last Watchdog

DECEMBER 5, 2024

5, 2024, CyberNewswire — One Identity proudly announces it has been named a winner in the Hot Company: Privileged Access Management (PAM) category in the 12th annual Cyber Defense Awards by Cyber Defense Magazine (CDM), the industrys leading information security magazine. Alisa Viejo, Calif.,

InfoSec

InfoSec CISO Cyber Risk Cybersecurity

Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk

Tech Republic Security

MAY 30, 2024

This new report also indicates an increasing attack surface as putting pressure on CISOs. One positive note is CISOs' improving relationships with board members.

CISO

CISO Risk Artificial Intelligence Ransomware

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

Thales Cloud Protection & Licensing

DECEMBER 4, 2024

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business madhav Thu, 12/05/2024 - 06:03 CISOs have one of the most vital roles in organizations today. As a CISO, you must elevate your organization’s data security posture. Here’s a quick primer.

CISO

CISO Risk Data breaches Unstructured Data

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. Organizations face rising risks of AI-driven social engineering and personal device breaches.

Risk

Risk Threat Detection Technology Phishing

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Financial Services

Financial Services Cybersecurity CISO Backups

News alert: Sweet Security releases its evolutionary Cloud Native Detection and Response platform

The Last Watchdog

DECEMBER 3, 2024

3, 2024, CyberNewswire — With Sweet, customers can now unify detection and response for applications, workloads, and cloud infrastructure Sweet Security today announced the release of its unified Cloud Native Detection and Response platform, designed to transform the way organizations protect their cloud environments in real time.

CISO

CISO Threat Detection Media Technology

What the Charges Against the SolarWinds CISO Mean for Security in 2024

Security Boulevard

JANUARY 29, 2024

The indictment of the SolarWinds CISO by the SEC served as a harsh wake-up call to the corporate world. The post What the Charges Against the SolarWinds CISO Mean for Security in 2024 appeared first on Security Boulevard.

CISO

CISO Security Awareness Risk Government

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Part three of a four-part series In 2024, global pressure on companies to implement advanced data protection measures intensified, with new standards in encryption and software transparency raising the bar. Balonis Frank Balonis , CISO, Kiteworks By 2025, 75% of the global population will be protected under privacy laws, including U.S.

Cybersecurity

Cybersecurity CISO Risk Government

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

The Last Watchdog

DECEMBER 13, 2023

We drilled down on a few significant developments expected to play out in 2024 and beyond. What’s more, a fresh layer of risks posed by the rise of quantum computing looms large. A we turn the corner into 2024, Digital Trust is in sight. We met at DigiCert Trust Summit 2023. This is something we’ve come to take for granted.

Encryption

Encryption Technology CISO IoT

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Escalating Frequency and Impact: Healthcare services have become one of the most targeted industries, moving from the fifth most attacked sector in 2023 to third in 2024.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

Cybersecurity risks increase every year and bludgeon victims who fail to prepare properly. For those interested in a better understanding of the oncoming risks, this is the information you are looking for. So, let’s explore what 2024 and beyond has in store for all of us in the digital world.

Risk

Risk Cybersecurity CISO Technology

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. It encompasses everything from ensuring the confidentiality and integrity of information to reducing risks, maintaining compliance, and building trust with customers.

Cyber Risk

Cyber Risk CISO Risk Encryption

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. Passwordless Authentication without Secrets! To learn more about how Thales OneWelcome and Badge, Inc.

Authentication

Authentication Healthcare Retail Manufacturing

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches

Data breaches Cybercrime Cyber Insurance Marketing

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

million in 2024 — 10% more than the previous year and the highest average ever. Meanwhile, according to non-profit trade association CompTIA’s Cyberseek tool, nearly half a million cybersecurity jobs were open between May 2023 and April 2024 in the U.S., year-over-year in 2024, demand grew by 8.1%. million workers.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. As part of their fiduciary duties, boards play a key role in the oversight of risks from cybersecurity threats. This pushed C-level executives and boards to adopt measures for compliance and transparency.

Cybersecurity

Cybersecurity CISO Cyber Risk Risk

News alert: Security Risk Advisors launchs VECTR Enterprise Edition for ‘purple team’ benchmarking

The Last Watchdog

AUGUST 2, 2024

1, 2024, CyberNewsWire — Security Risk Advisors (SRA) announces the launch of VECTR Enterprise Edition , a premium version of its widely-used VECTR platform for purple teams and adversary management program reporting and benchmarking. About VECTR : VECTR™ is developed and maintained by Security Risk Advisors.

Risk

Risk Penetration Testing CISO System Administration

Healthcare Cybersecurity Market Soars: Key Trends and Insights

SecureWorld News

MAY 2, 2025

billion in 2024 and is projected to reach $82.90 This surge is driven by a convergence of factorsfrom a spike in ransom ware attacks to the digital transformation of healthcarethat CISOs and healthcare executives must understand and act upon. billion by 2033 signals a nearly fourfold increase from 2024.

Healthcare

Healthcare Marketing Cybersecurity CISO

News alert: Sweet Security rolls out its advanced runtime detection and response platform for AWS

The Last Watchdog

NOVEMBER 11, 2024

11, 2024, CyberNewswire — Sweet Security today announced the availability of its cloud-native detection and response platform on the Amazon Web Services (AWS) marketplace. AWS customers visiting AWS re:Invent 2024 in Las Vegas can book a meeting to learn more here. Tel Aviv, Israel, Nov.

Threat Detection

Threat Detection CISO Technology Risk

News alert: Green Raven study shows cybersecurity to be a black hole in more ways than just budget

The Last Watchdog

DECEMBER 4, 2024

4, 2024 –A majority of senior cybersecurity professionals at the UK’s largest organisations struggle with feelings of helplessness and professional despair, new research by Green Raven Limited indicates. The survey was conducted at the end of October 2024. Cheltenham, England, Dec. 47.5% describe budgets as increasing rapidly. •79%

Cybersecurity

Cybersecurity Cyber threats Risk CISO

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

Anton on Security

JANUARY 28, 2025

Mitigating these risks requires robust security protocols including prompt sanitization, data governance policies, access controls, output filtering, data source vetting, and continuous monitoring, coupled with responsible AI practices such as data curation, model stress-testing, and customer safetytools.

CISO

CISO Risk Government Penetration Testing

Top 5 Cyber Predictions for 2024: A CISO Perspective

Security Boulevard

JANUARY 2, 2024

Let's delve into the rewind of 2023, exploring five influential trends and threats that molded the cyberthreat landscape and are poised to resonate throughout enterprises in 2024. A more mature third party risk management program. The RaaS model is poised to further elevate cybercrime and empower less-skilled crime groups in 2024.

CISO

CISO Social Engineering Architecture Ransomware

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Tim Mackey, Head of Software Supply Chain Risk Strategy at Black Duck, explains: "Attacks on legacy cyber-physical, IoT, and IIoT devicesparticularly in an OT environmentare to be expected and must be planned for as part of the operational requirements for the device. For the latest updates and resources, visit StopRansomware.gov.

Ransomware

Ransomware IoT Encryption Social Engineering

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

Manufacturing: IP theft and ransomware are top risks; OT/ICS systems still lag in basic controls. The 2025 DBIR is a call to arms for CISOs and security leaders to rethink how they detect, respond to, and recover from breaches. Your response must be equally fast." These tools can also be used to automatically generate resulting SBOMs.

CISO

CISO Backups Ransomware Risk

Battling Burnout: A Growing Concern for CISOs and Security Professionals

SecureWorld News

JUNE 20, 2024

As defenders of digital assets, Chief Information Security Officers (CISOs) and cybersecurity professionals face immense pressure, often leading to burnout. Key findings from the report include: 90% of CISOs are concerned about stress, fatigue, or burnout affecting their team's well-being. between May 20, 2024, and May 24, 2024.

CISO

CISO Cybersecurity Technology Digital transformation

News Alert: Cynomi study shows MSPs offering virtual CISO services to rise fivefold next year

The Last Watchdog

AUGUST 17, 2023

17, 2023 — Cynomi , the leading AI-powered virtual Chief Information Security Officer (vCISO) platform vendor for Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs) and consulting firms, has published the results of its first annual report, “ The State of the Virtual CISO 2023 ”. Tel Aviv, Israel, Aug.

CISO

CISO Cybersecurity Risk Banking

The CISO’s Midset for 2025: Outcomes, Automation, and Leadership

Lenny Zeltser

FEBRUARY 10, 2025

As the year 2025 rushes forward, the responsibilities of CISOs are continuing to evolve. We increasingly recognize the importance of not just identifying risks but actively addressing them through direct action and influence. The year will continue to shape the CISO role into an exciting combination of leadership and tech expertise.

CISO

CISO Technology Risk Data breaches

Security Roundup January 2025

BH Consulting

JANUARY 30, 2025

Cyber risk remains top of mind for business leaders A regular January fixture, the World Economic Forums Global Risk Report 2025 features two technology-related threats among the top five risks for the year ahead and beyond. The report ranks risks by severity over two-year and 10-year timeframes.

Cyber Risk

Cyber Risk Computers and Electronics Risk CISO

Cyber attacks 2024: The biggest attacks of the first half of 2024

Security Boulevard

AUGUST 9, 2024

The post Cyber attacks 2024: The biggest attacks of the first half of 2024 appeared first on Click Armor. The post Cyber attacks 2024: The biggest attacks of the first half of 2024 appeared first on Security Boulevard.

Cyber Attacks

Cyber Attacks CISO Scams Phishing

Unlocking SMB Cybersecurity: The Rise of Virtual CISOs in 2024 and Beyond

Security Boulevard

MAY 3, 2024

This year, virtual CISOs must begin making a difference in our industry. But, SMBs need security leaders to guide them through the maze of cyber risk and craft practical strategies that align with their unique ever-evolving business objectives. Sadly, SMBs cannot afford an experienced full-time CISO. Everyone wins.

CISO

CISO Cybersecurity Cyber Risk Risk

'SIEM Sprawl' Makes It Tough for Security Teams to Detect What Matters

SecureWorld News

JUNE 5, 2025

Detection Coverage Remains Alarmingly Low: Across the MITRE ATT&CK framework, organizations are only actively detecting an average of 36% of relevant techniquesbarely an improvement over 2024. Rethink SIEM ROI: Is your current SIEM truly supporting business risk reduction? SIEMs are bloated, under-tuned, and not delivering ROI.

Engineering

Engineering Authentication CISO Architecture

Cybersecurity Snapshot: Experts Issue Best Practices for Migrating to Post-Quantum Cryptography and for Improving Orgs’ Cyber Culture

Security Boulevard

JUNE 6, 2025

And get the latest on exposure response strategies and on CISO compensation and job satisfaction. National Institute of Standards and Technology (NIST) released three quantum-resistant algorithm standards in 2024 and expects to release a fourth in 2026. Plus, find out how your company can create a better cybersecurity environment.

CISO

CISO Cybersecurity Cyber threats Government

Application and API Security in 2025: What Will the New Year Bring?

Thales Cloud Protection & Licensing

DECEMBER 17, 2024

madhav Wed, 12/18/2024 - 05:24 As we step into 2025, the critical importance of application and API security has never been more evident. In 2024, APIs solidified their role as the backbone of digital innovation. Prompt Injection and AI Security Risks Generative AI is one of the most exciting technologies in the world right now.

Risk

Risk Digital transformation Software Technology

Strategic Risk Management for CISOs: A Holistic and Consolidated Approach

Veracode Security

JUNE 26, 2024

As Chief Information Security Officers (CISOs), it's crucial to manage risks in a holistic and consolidated manner as the landscape of threats, particularly those targeting applications, continues to evolve and expand. Here’s what you need to know about a holistic and consolidated approach to risk management for 2024 and beyond.

CISO

CISO Risk Artificial Intelligence Cyber threats

2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

Security Boulevard

MARCH 26, 2024

What we found was this: in the rapidly evolving landscape of governance, risk, and compliance (GRC), siloed approaches are becoming increasingly obsolete. The post 2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional appeared first on Hyperproof.

Risk

Risk Government CISO

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

Instead, they’ve become complacent in their defence practices and may be exposing themselves to increased risks without even realising it. I also want to ensure you’re aware of the worrying trends that have come to light from their latest report, ‘ Threat Detection 2024: Rejuvenating Cyber Defence Strategies.’

CISO

CISO Threat Detection Cyber threats Cybercrime

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

Security Boulevard

APRIL 18, 2025

Plus, learn why code-writing GenAI tools can put developers at risk of package-confusion attacks. National Institute of Standards and Technology (NIST) released a draft update of its Privacy Framework (PFW) that more closely interconnects it with the popular Cybersecurity Framework (CSF) , which was updated in 2024.

Risk

Risk Cybersecurity Data privacy Software

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

SecureWorld News

OCTOBER 2, 2024

Conducted in spring 2024, the study captures insights from Chief Information Security Officers of all 50 U.S. CISOs report a growing focus on managing AI-generated vulnerabilities and addressing insider threats amplified by the misuse of advanced AI tools. CISOs need resources to support these expanding responsibilities.

Cyber threats

Cyber threats CISO Digital transformation Artificial Intelligence

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

The Last Watchdog

JUNE 12, 2024

At RSAC 2024 , I visited with Paul Valente , co-founder and CEO of VISO TRUST. We had a wide-ranging discussion about the limitations of traditional third-party risk management ( TPRM ), which uses extensive questionnaires—and the honor system – to judge the security posture of third-party suppliers.

CISO

CISO Cyber Risk Risk Healthcare

Ransomware and Cyber Extortion in Q3 2024

Digital Shadows

OCTOBER 14, 2024

in Q3 2024 compared to the previous quarter but remains 1.5% Meow” took fourth place in Q3 2024, shifting its tactics from data encryption to selling stolen data on cybercriminal forums and its own data-leak site. In the short term, we expect a gradual increase in ransomware incidents, peaking by Q4 2024. lower than in Q3 2023.

Ransomware

Ransomware Social Engineering Insurance Cyber Insurance

2023 Regulatory Roundup: All the Major Compliance Changes that Happened

Security Boulevard

DECEMBER 15, 2023

Life comes at you fast, and that’s especially true for CISOs grappling with the many compliance risks in cybersecurity. With these changes come implications for you in 2024. The post 2023 Regulatory Roundup: All the Major Compliance Changes that Happened appeared first on Hyperproof.

Artificial Intelligence

Artificial Intelligence CISO Risk Cybersecurity

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. Risk-based analytics: Considers the level of risk as the context for the level of permission needed to access systems, applications, and data. globally, +19.8%

Cybersecurity

Cybersecurity DDOS Penetration Testing Ransomware

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

Security Boulevard

DECEMBER 4, 2024

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business madhav Thu, 12/05/2024 - 06:03 CISOs have one of the most vital roles in organizations today. As a CISO, you must elevate your organization’s data security posture. Here’s a quick primer.

CISO

CISO Risk Data breaches Unstructured Data

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

News alert: One Identity wins 2024 Cyber Defense Award: Hot Company – PAM category

Trending Sources

Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

News alert: Sweet Security releases its evolutionary Cloud Native Detection and Response platform

What the Charges Against the SolarWinds CISO Mean for Security in 2024

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

Healthcare Now Third-Most Targeted Industry for Ransomware

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Secure Communications: Relevant or a Nice to Have?

Passwordless Authentication without Secrets!

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Top 9 Trends In Cybersecurity Careers for 2025

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

News alert: Security Risk Advisors launchs VECTR Enterprise Edition for ‘purple team’ benchmarking

Healthcare Cybersecurity Market Soars: Key Trends and Insights

News alert: Sweet Security rolls out its advanced runtime detection and response platform for AWS

News alert: Green Raven study shows cybersecurity to be a black hole in more ways than just budget

Cross-post: Office of the CISO 2024 Year in Review: AI Trust and Security

Top 5 Cyber Predictions for 2024: A CISO Perspective

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

Battling Burnout: A Growing Concern for CISOs and Security Professionals

News Alert: Cynomi study shows MSPs offering virtual CISO services to rise fivefold next year

The CISO’s Midset for 2025: Outcomes, Automation, and Leadership

Security Roundup January 2025

Cyber attacks 2024: The biggest attacks of the first half of 2024

Unlocking SMB Cybersecurity: The Rise of Virtual CISOs in 2024 and Beyond

'SIEM Sprawl' Makes It Tough for Security Teams to Detect What Matters

Cybersecurity Snapshot: Experts Issue Best Practices for Migrating to Post-Quantum Cryptography and for Improving Orgs’ Cyber Culture

Application and API Security in 2025: What Will the New Year Bring?

Strategic Risk Management for CISOs: A Holistic and Consolidated Approach

2024 IT Risk and Compliance Benchmark Report Findings: Why Unifying Risk and Compliance Work Is No Longer Optional

Unmasking the Cracks of Today’s Cyber Defence

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

RSAC Fireside Chat: VISO TRUST replaces questionaires with AI analysis to advance ‘TPRM’

Ransomware and Cyber Extortion in Q3 2024

2023 Regulatory Roundup: All the Major Compliance Changes that Happened

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

The CISO: Guardian of Data while Navigating Risk Strategic Insights for the Boardroom and Shaping Future Business

Stay Connected