Accountability, CSO and Technology - Cyber Security Informer

CSO’s Guide: Water-Tight Account Security For Your Company

Security Boulevard

FEBRUARY 5, 2024

This essential CSO guide outlines the robust account monitoring, access notifications, multi-factor authentication, deception technology, and user controls crucial for implementing unmatched account security across your organization.

Account Security

Account Security Accountability CSO Authentication

Spotlight: Traceable CSO Richard Bird on Securing the API Economy

The Security Ledger

APRIL 5, 2023

In this Spotlight episode of the Security Ledger podcast, I interview Richard Bird, the CSO of the firm Traceable AI about the challenge of securing application programming interfaces (APIs), which are increasingly being abused to steal sensitive data. The post Spotlight: Traceable CSO Richard Bird on Securing the API Economy appeared first.

CSO

CSO Digital transformation Cyber Attacks Financial Services

CSO's ultimate guide to security and privacy laws, regulations, and compliance

CSO Magazine

JANUARY 28, 2021

CSO's ultimate guide to security and privacy laws, regulations, and compliance Security and privacy laws, regulations, and compliance: The complete guide This directory includes laws, regulations and industry guidelines with significant security and privacy impact and requirements. Health Insurance Portability and Accountability Act (HIPAA).

CSO

CSO Financial Services Consumer Protection Data privacy

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

BrandPost: Why a Culture of Awareness and Accountability Is Essential to Cybersecurity

CSO Magazine

DECEMBER 19, 2022

Effective cybersecurity relies only in part on technology. The organizations with the best chance of minimizing threats are those that build and sustain a culture of awareness and accountability. Even as tools and systems become more powerful, avoiding security mishaps is still largely dependent on people doing the right thing.

Accountability

Accountability Cybersecurity Phishing Technology

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

They now face the risk of being implicated in criminal investigations or held accountable for security breaches, as evidenced by cases like that of Joe Sullivan, the former Chief Security Officer of Uber, who was sentenced to three years' probation for covering up a data breach involving millions of Uber user records.

CISO

CISO Government CSO Artificial Intelligence

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Sign up for CSO newsletters. ]. Both pointed out shortcomings in the cyber readiness of the United States government.

CSO

CSO Cybersecurity Government Accountability

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Brian Krebs | @briankrebs.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

GAO calls out US government agencies: Get your supply chain security act together

CSO Magazine

JUNE 8, 2021

In December 2020, the US Government Accounting Office (GAO) made 145 recommendations to 23 federal agencies relating to supply chain risks. In May 2021, the GAO’s director of information technology and cybersecurity, Vijay A. Get the latest from CSO by signing up for our newsletters. ].

Government

Government CSO Risk Accountability

Nvidia targets insider attacks with digital fingerprinting technology

CSO Magazine

JANUARY 23, 2023

Nvidia today announced that a digital lab playground for its latest security offering is now available, letting users try out an AI-powered system designed to monitor individual user accounts for potentially hazardous behavior.

Technology

Technology Accountability Risk

5 Top Questions About Deception Technology in Cybersecurity

SecureWorld News

AUGUST 12, 2020

Your questions about deception technology in cybersecurity, answered. What exactly is deception technology and how can it play a vital part in your cyber defense? How do you define deception technology? The old word for deception technologies is honeypot. The old technology really no longer applies.

Technology

Technology Cybersecurity CSO IoT

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

The Last Watchdog

DECEMBER 14, 2023

“Kerberoasting” and “Golden Ticket” attacks were both introduced in 2014 and yet enterprises continue to have hundreds of accounts configured with unconstrained delegation. Michiel Prins , Co-Founder, HackerOne Prins Ethical hackers are consistently first to pressure-test emerging technology. In 2024 we’ll see more of the same.

Cybersecurity

Cybersecurity Risk Cyber threats CSO

IT asset disposal is a security risk CISOs need to take seriously

CSO Magazine

JUNE 21, 2021

Asset disposal normally isn’t one of those burning topics that is top-of-mind for CISOs, yet every CISO must be able to address it when asked to describe their information technology asset disposal (ITAD) program. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CISO

CISO Risk CSO Accountability

Podcast Episode 113: SAP CSO Justin Somaini and Election Hacks – No Voting Machines Required!

The Security Ledger

SEPTEMBER 25, 2018

SAP CSO Justin Somaini. For consumers, that means boning up on account security – maybe getting a password manager. Somaini has the distinction of being the first CSO at Yahoo and also at Symantec. October is Cybersecurity awareness month.

CSO

CSO Hacking Security Awareness Password Management

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SecureWorld News

NOVEMBER 16, 2023

Conversely, if a CISO is to be held accountable in the same manner as a CFO or General Counsel concerning matters of investor confidence, the executive contours of the CISO role should be revisited to ensure that it has sufficient authority, agency, and institutional backing to defend data assets as a fiduciary."

CISO

CISO Cybersecurity CSO Risk

BrandPost: Facilitating seamless frontline worker collaboration with identity management

CSO Magazine

MAY 9, 2023

By Microsoft Security Across the global workforce, frontline workers account for 80% of most organizations, taking a pivotal role in providing essential services to the general public. However, despite their critical nature, frontline workers are often not equipped with the technology tools and resources they need for success.

Technology

Technology Accountability

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

The Last Watchdog

MAY 5, 2022

From there, it’s possible to find devices with privileged accounts and take the attack further. About the essayist: Den Jones, CSO at Banyan Security , which supplies s imple, least-privilege, multi-cloud application access technologies. This has gone unchecked for years and there’s no good reason to let it continue.

Ransomware

Ransomware Risk Internet Internet

Wells Notice Against SolarWinds CISO Could Be First of Its Kind

SecureWorld News

JUNE 26, 2023

While these Wells Notices are official investigations, they are a sign of a potential intent to investigate the CISO and CFO. Barton Kalsu and CISO Tim Brown have both been with Austin, Texas-based SolarWinds since before the breach that impacted at least nine federal agencies and approximately 100 organizations.

CISO

CISO CSO Data privacy Cyber Risk

Resolving conflicts between security best practices and compliance mandates

CSO Magazine

AUGUST 31, 2022

The larger and more international your corporation, the more alphabet soup of technology compliance regulations need to be followed: the European Union’s General Data Protection Regulation (GDPR), the American Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS), the guidance by the (..)

Insurance

Insurance Internet Internet Technology

Uber Breach Guilty Verdict, Mandatory Password Expiration, Fake Executive Profiles on LinkedIn

Security Boulevard

OCTOBER 16, 2022

Former Uber CSO Joe Sullivan was found guilty of obstructing a federal investigation in connection with the attempted cover-up of a 2016 hack at Uber, NIST and Microsoft say that mandatory password expiration is no longer needed but many organizations are still doing it, and how fake executive profiles are becoming a huge problem for […].

Passwords

Passwords CSO Hacking Accountability

Cybersecurity startup Oligo debuts with new application security tech

CSO Magazine

FEBRUARY 15, 2023

Utilizing a technology called extended Berkeley Packet Filter (eBPF), it is able to provide agentless security coverage for open source code.

Cybersecurity

Cybersecurity Software Accountability Technology

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

SecureWorld News

DECEMBER 11, 2023

Invest in Cybersecurity Tools and Training: Implement robust cybersecurity tools and technologies, and provide ongoing training to your employees on cybersecurity best practices. Understanding the nature of the threat and how to appropriately mitigate that risk should be a shared responsibility, not solely the purview of the CISO or CSO.

CISO

CISO Risk Cybersecurity CSO

Beyond Awareness: How to Cultivate the Human Side of Security

CyberSecurity Insiders

MAY 16, 2022

By Amanda Fennell, CSO and CIO, Relativity. Security programs must shoulder accountability for setting employees in different roles up for success. Effective learning management systems are available that take into account the human attention span. But tools and processes alone are two variables in an incomplete equation.

CSO

CSO Passwords Password Management Accountability

Let’s pump the brakes on the rush to incorporate AI into cybersecurity

CSO Magazine

APRIL 5, 2023

Like many, I see the potential for AI to help bring about positive change, but also its potential as a threat vector. To some, recent AI developments are a laughing matter.

Artificial Intelligence

Artificial Intelligence Media Cybersecurity Accountability

GAO warns government agencies: focus on IoT and OT within critical infrastructure

CSO Magazine

DECEMBER 15, 2022

The US Government Accounting Office (GAO) continues to highlight shortcomings in the cybersecurity posture of government entities responsible for the protection of United States infrastructure when it comes to internet of things (IoT) and operational technology (OT) devices and systems.

IoT

IoT Government Internet Internet

How attackers sidestep the cyber kill chain

CSO Magazine

MARCH 7, 2022

"The cyber kill chain was a great way to break down the classic steps in a breach," says Michael Salihoglu, cybersecurity managing consultant at Crowe, a public accounting, consulting, and technology firm. It was also a useful tool for defenders to help them come up with strategies to stop the attacks at each point in the chain.

Accountability

Accountability Technology Malware Cybersecurity

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

Making matters worse, the cameras employ facial recognition technology, which leads to questions as to whether an attacker could actually identify individuals caught on camera and then pursue them as targets for social engineering schemes or something even more nefarious. “For What did Verkada do wrong?

Surveillance

Surveillance IoT Accountability Passwords

12 risk-based authentication tools compared

CSO Magazine

MARCH 1, 2022

As phishing and account takeovers have blossomed under the pandemic, RBA can become a key technology to protect corporate assets, particularly as remote work is more the rule than the exception. What is risk-based authentication?

Authentication

Authentication Risk Phishing Accountability

Comcast open-sources xGitGuard code protection tool

CSO Magazine

MARCH 23, 2022

The tool uses NLP (natural language processing) technology, AI modeling and other advanced techniques to programmatically identify and validate secret code on GitHub, as well as identifying which developer accounts posted those secrets. To read this article in full, please click here

Accountability

Accountability Technology Software

BrandPost: DLP Still Doesn’t Work: Proofpoint Sues Former Employee

CSO Magazine

OCTOBER 6, 2021

To carry out the alleged heist, the employee didn’t even use the type of sophisticated technology that you might expect. Our own data shows this type of exfiltration is shockingly common with removable media still accounting for 42% of data exfiltration as of March 2021. To read this article in full, please click here

Media

Media Marketing Accountability Technology

BrandPost: Cisco launches new network, security, and observability solutions and preview generative AI capabilities for Webex and Security Cloud

CSO Magazine

JUNE 7, 2023

At the company’s Cisco Live customer and partner conference in June, Cisco boldly connected the dots of a network- and cloud-based ecosystem that ties together innovative technologies to drive productivity, resiliency, and growths, while also showcasing its artificial intelligence (AI) capabilities. of the total market.

Network Security

Network Security Artificial Intelligence Marketing Accountability

Podcast Episode 134: The Deep Fake Threat to Authentication and analyzing the PEAR Compromise

The Security Ledger

FEBRUARY 19, 2019

And, in our second segment, Sam Bisbee the CSO of the firm ThreatStack joins us to talk about last month's hack of the PEAR open source package manager and why data deserialization attacks are a growing threat to projects that use open source components. They risk undermining a range of voice and image based authentication technologies.

Authentication

Authentication CSO Artificial Intelligence Social Engineering

BrandPost: How Configuration Assessments Help Improve Cyber Defenses

CSO Magazine

APRIL 6, 2021

These days, information technology (IT) and information security professionals know this all too well, especially when it comes to configuration assessments. The 2020 Verizon Data Breach Investigations Report (DBIR) notes that vulnerabilities accounted for nearly 20% of hacking breaches.

Data breaches

Data breaches Cyber threats Accountability Technology

BrandPost: How to Improve Security with a Zero Trust Approach

CSO Magazine

SEPTEMBER 13, 2022

The National Institute of Standards and Technology (NIST) zero-trust security framework presents a new way of solving an age-old problem of securing networks and information, and organizations of all sizes are rethinking their security architecture, processes, and procedures to adopt zero-trust principles.

Architecture

Architecture Accountability Technology Cybersecurity

Equifax Makes Security Controls Framework Available to All for Free

SecureWorld News

MAY 30, 2023

For instance, users should only be given access to database content on a 'need to know basis'; giving general access to any 'trusted' users means that an attacker can seize control of those user accounts and run wild. There's a lot of folks who look for the 'silver bullet' or gravitate toward emerging technologies.

CISO

CISO CSO Data breaches Cybersecurity

Legendary Entertainment Relies on MVISION CNAPP Across Its Multicloud Environment

McAfee

NOVEMBER 10, 2021

Under the guidance of Dan Meacham, VP of Global Security and Corporate Operations and CSO/CISO, the multi-billion dollar organization transitioned from on-premises data centers to the cloud in 2012. MVISION CNAPP helps me keep my system administrators and developers accountable for what they are doing. Unacceptable levels of risk.

Data breaches

Data breaches Risk CSO Media

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Developing a Clear Cybersecurity Strategy As a CISO/CSO, creating and presenting a clear cybersecurity strategy to the board of directors is crucial in fostering awareness of cyber risks and encouraging investment in cybersecurity defense.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

At Forter, we’ve seen a marked uptick in Account Takeovers (ATO); a form of identity fraud in which a third-party steals credentials and / or gains access to user accounts. Fraudsters have been opportunistic in taking over these accounts. ” Liron Damri, president/co-founder, Forter. “At How can that be?

Cybersecurity

Cybersecurity Backups Ransomware Passwords

The Rise of an Overlooked Crime – Cyberstalking

Security Affairs

AUGUST 29, 2018

Once an account gets compromised finding pictures from chats such as those that may have been shared with an intimate friend is cake walk. Today, modern technology has made it much easier for hackers and other cybercriminals to hide their tracks. Most cyber stalkers are skilled hackers as well.

Identity Theft

Identity Theft Internet Internet Surveillance

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

The contemporary world has witnessed the rise of the Internet and global communication, and collaboration technologies, including mobile data use and the culture of bring your own device [BYOD]. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

CSO’s Guide: Water-Tight Account Security For Your Company

Spotlight: Traceable CSO Richard Bird on Securing the API Economy

Webinars

Trending Sources

CSO's ultimate guide to security and privacy laws, regulations, and compliance

Webinars

BrandPost: Why a Culture of Awareness and Accountability Is Essential to Cybersecurity

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

Top Cybersecurity Accounts to Follow on Twitter

GAO calls out US government agencies: Get your supply chain security act together

Nvidia targets insider attacks with digital fingerprinting technology

5 Top Questions About Deception Technology in Cybersecurity

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

IT asset disposal is a security risk CISOs need to take seriously

Podcast Episode 113: SAP CSO Justin Somaini and Election Hacks – No Voting Machines Required!

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

BrandPost: Facilitating seamless frontline worker collaboration with identity management

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

Wells Notice Against SolarWinds CISO Could Be First of Its Kind

Resolving conflicts between security best practices and compliance mandates

Uber Breach Guilty Verdict, Mandatory Password Expiration, Fake Executive Profiles on LinkedIn

Cybersecurity startup Oligo debuts with new application security tech

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

Beyond Awareness: How to Cultivate the Human Side of Security

Let’s pump the brakes on the rush to incorporate AI into cybersecurity

GAO warns government agencies: focus on IoT and OT within critical infrastructure

How attackers sidestep the cyber kill chain

Camera tricks: Privacy concerns raised after massive surveillance cam breach

12 risk-based authentication tools compared

Comcast open-sources xGitGuard code protection tool

BrandPost: DLP Still Doesn’t Work: Proofpoint Sues Former Employee

BrandPost: Cisco launches new network, security, and observability solutions and preview generative AI capabilities for Webex and Security Cloud

Podcast Episode 134: The Deep Fake Threat to Authentication and analyzing the PEAR Compromise

BrandPost: How Configuration Assessments Help Improve Cyber Defenses

BrandPost: How to Improve Security with a Zero Trust Approach

Equifax Makes Security Controls Framework Available to All for Free

Legendary Entertainment Relies on MVISION CNAPP Across Its Multicloud Environment

CISO’s Guide to Presenting Cybersecurity to Board Directors

Cybersecurity Awareness Month: Security Experts Reflect on Safety

The Rise of an Overlooked Crime – Cyberstalking

Cyber Security Awareness and Risk Management

Stay Connected