CSO Magazine

APRIL 5, 2022

I don’t know how many times I’ve heard cybersecurity professionals say something like, “Not having multi-factor authentication is a huge risk for our organization.” The cybersecurity piece of this typically focuses on incidents where these outcomes were caused by an intelligent adversary.)

Risk 143

Risk Cybersecurity Authentication Ransomware 143

CyberSecurity Insiders

NOVEMBER 15, 2022

Cybersecurity teams continue to face ongoing challenges in safeguarding their networks. Organizations can respond by aligning their current infrastructures with national cybersecurity initiatives by integrating the following tips: Use Tools Designed to Achieve Visibility Across On-Premises and Attack Surfaces. Cyber Defense team.

Cybersecurity 97

Cybersecurity Architecture Energy and Utilities Encryption 97

CSO Magazine

JUNE 9, 2022

Top cybersecurity vendors have joined Mandiant's newly launched Cyber Alliance Program, formed to help develop integrated security systems and share threat intelligence. Mandiant is no stranger to cybersecurity partnerships. To read this article in full, please click here

Cybersecurity 114

Cybersecurity Authentication 114

SecureWorld News

AUGUST 26, 2020

But this time, it is the Treasury Inspector General for Tax Administration auditing the IRS, the agency's legacy IT environment and its cybersecurity. What does effective asset management look like from a cybersecurity perspective? Aflac CSO Tim Callahan told us as much after his keynote at a SecureWorld conference last year.

Risk 92

Risk Cybersecurity CSO Technology 92

Security Through Education

OCTOBER 27, 2021

That is why, for this October’s Cybersecurity Awareness Month , we encourage you to Do Your Part #BeCyberSmart! Cybersecurity First at Work. Owning your role in cybersecurity can seem cumbersome when approached by someone outside the security industry. Cybersecurity First at Home. Don’t make passwords easy to guess.

Cybersecurity 137

Cybersecurity Social Engineering Firewall Engineering 137

eSecurity Planet

DECEMBER 3, 2021

Fifteen years after the launch of the microblogging social media platform, Twitter remains a dominant public forum for instant communication with individuals and organizations worldwide on a universe of topics, including #cybersecurity. Top Cybersecurity Experts to Follow on Twitter. Binni Shah | @binitamshah. Eva Galperi n | @evacide.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

CyberSecurity Insiders

NOVEMBER 12, 2021

American Department of Defense shortly and fondly known as Pentagon has announced that it is all set to launch a ‘Zero Trust’ office in December 2021 and the aim is to speed up the process of bolstering the current Cybersecurity postures of all organizations operating in/from United States.

Data breaches 133

Data breaches Architecture CSO Cyber threats 133

CSO Magazine

AUGUST 9, 2022

3] In fact, across industries, only 22% of customers using Microsoft Azure Active Directory (Azure AD) , Microsoft’s Cloud Identity Solution, had implemented strong identity authentication protection as of December 2021. To read this article in full, please click here

Cybersecurity 109

Cybersecurity Cybercrime Authentication Passwords 109

Duo's Security Blog

JULY 13, 2021

For more information about how Duo is paving the way for passwordless authentication, visit our Passwordless Authentication preview page , where you can also sign up for updates about our upcoming passwordless solution. Moderating this panel is Timothy Wilson, Editor in Chief and co-founder of Dark Reading. BSides Is Back, Too!

CISO 95

CISO CSO Authentication Passwords 95

CSO Magazine

JULY 18, 2022

Auth0’s OpenFGA project is an open source effort that undertakes to provide a universal authentication solution. Authentication vs. authorization. Authentication is concerned with who and authorization with what. Authentication is concerned with who and authorization with what.

Authentication 115

Authentication Architecture Cybersecurity 115

CSO Magazine

FEBRUARY 28, 2023

While phishing , business email compromise (BEC) , and ransomware still rank among the most popular cyberattack techniques, a mix of new-breed attacks is gaining steam, according to a new report from cybersecurity and compliance company Proofpoint. To read this article in full, please click here

Ransomware 123

Ransomware Phishing Authentication Cybersecurity 123

Malwarebytes

APRIL 28, 2022

” Former Facebook Chief Security Officer (CSO) turned consultant Alex Stamos said in an interview with Bloomberg : “I know that emergency data requests get used in real life-threatening emergencies every day. However, it is accepted practice that tech companies comply with such requests as a sign of “good faith.”

CSO 99

CSO Accountability Authentication Cybersecurity 99

eSecurity Planet

JANUARY 29, 2024

“The most significant risk for enterprises isn’t the speed at which they are applying critical patches; it comes from not applying the patches on every asset,” noted Brian Contos, CSO of Sevco Security. However, the flaw does not bypass two-factor authentication (2FA), so implementation of MFA can provide initial remediation.

Software 111

Software Authentication CSO Accountability 111

CyberSecurity Insiders

NOVEMBER 1, 2021

October is coming to a close and so is Cybersecurity Awareness Month. As a result, the Biden Administration has made cybersecurity a top priority. Just this May, President Biden signed a sweeping executive order (EO) outlining several cybersecurity measures and requirements intended to harden the U.S.

Cybersecurity 52

Cybersecurity Backups Ransomware Passwords 52

CSO Magazine

MARCH 9, 2023

GitHub has begun its official rollout of two-factor authentication (2FA) for developers who contribute code to the platform to enhance the security of accounts and the software supply chain. GitHub is allowing users to choose their preferred 2FA method – SMS, TOTP, security keys, or GitHub mobile.

Mobile 104

Mobile Software Authentication Accountability 104

CSO Magazine

JANUARY 7, 2022

The update is in response to the evolving cybersecurity challenges that organisations now face and represents the most significant overhaul of the scheme’s technical controls since it was launched in 2014. Technical controls update reflects modern cybersecurity landscape.

Digital transformation 127

Digital transformation Password Management Authentication Passwords 127

CSO Magazine

MAY 8, 2023

It’s one of those terms that’s so widely cited that it has the tendency these days to elicit eye rolls within the cybersecurity industry and to be referred to as a buzzword by those sitting at the cool kids’ lunch table. It’s a critical framework, and every organization should adopt it and understand the fundamentals of how it works.

Authentication 95

Authentication Cybersecurity 95

CSO Magazine

JUNE 15, 2022

By Steve Faehl, Microsoft Federal Security CTO Ask any cybersecurity professional what one thing should be done to increase the security of your environment and the most likely answer will be to “enable MFA.” For many years, multi-factor authentication has been a key approach to mitigating the risks associated with password usage.

Phishing 74

Phishing Authentication Passwords Government 74

CSO Magazine

FEBRUARY 11, 2022

Cybersecurity and Infrastructure Security Agency (CISA) have issued warnings over a critical vulnerability affecting Internet Communication Manager (ICM), a core component of SAP business applications that enables HTTPS communications. Security researchers, enterprise software maker SAP, and the U.S.

Authentication 102

Authentication Internet Internet Software 102

CSO Magazine

MAY 26, 2021

Phishing simulations—or phishing tests—have become a popular feature of cybersecurity training programs in organizations of all sizes.

Phishing 130

Phishing Authentication Cybersecurity 130

CSO Magazine

APRIL 19, 2023

The malware deployed on compromised routers patches the router’s authentication mechanism to always accept any password for any local user. “In

Authentication 94

Authentication Passwords Government Malware 94

CSO Magazine

AUGUST 16, 2022

New research from threat intelligence and cybersecurity company Cyble has identified a peak in attacks targeting virtual network computing (VNC) – a graphical desktop-sharing system that uses the Remote Frame Buffer (RFB) protocol to control another machine remotely – in critical infrastructure sectors.

Cybercrime 79

Cybercrime Authentication Marketing Risk 79

eSecurity Planet

OCTOBER 18, 2021

Managing machine identities has never been more critical to an enterprise’s cybersecurity. Machine identities now outnumber humans in enterprises, according to Nathanael Coffing, co-founder and CSO of Cloudentity. This key system ensures that only authenticated, authorized devices can access any given data packet.

IoT 117

IoT Risk Architecture CSO 117

Thales Cloud Protection & Licensing

MARCH 15, 2022

cybersecurity. The directive’s third section, entitled “Modernizing Federal Government Cybersecurity,” requires Federal Civilian Executive Branch (FCEB) agencies to begin moving to a zero trust architecture (ZTA). Bush administration, to CSO. government embrace a zero-trust approach to cybersecurity. on improving U.S.

Architecture 71

Architecture Government CSO Technology 71

CSO Magazine

MARCH 22, 2023

Most companies now recognize the serious and insidious nature of cybersecurity threats. But many fail to grasp that the digital transformation, remote work, automation, and cloud migration activities of the last few years have turbocharged the number of identities seeking access to data and critical business systems.

Cloud Migration 78

Cloud Migration Digital transformation Authentication Passwords 78

CSO Magazine

MARCH 30, 2022

Cybersecurity and Infrastructure Security Agency (CISA) issued on Tuesday. However, like many other IoT devices, some UPSs have serious flaws in their security and authentication systems, which attackers have exploited to gain illicit access to them.

Internet 75

Internet Internet IoT Authentication 75

CSO Magazine

JANUARY 22, 2021

As part of a Zero Trust approach to cybersecurity, network flows should be authenticated before being processed and access determined by dynamic policy.

Architecture 99

Architecture Network Security Authentication Technology 99

CSO Magazine

JULY 26, 2022

Helsinki-based cybersecurity vendor WithSecure (formerly F-Secure Business) says it has discovered an operation, dubbed “DUCKTAIL,” that uses social media-based spear phishing attacks to gain access to Facebook Business accounts. Previous attacks targeting Facebook did not target Facebook Business accounts in particular.

Accountability 80

Accountability Malware Media Phishing 80

The Last Watchdog

JULY 8, 2021

Like SolarWinds and Colonial Pipeline, Miami-based software vendor, Kaseya, was a thriving entity humming right along, striving like everyone else to leverage digital agility — while also dodging cybersecurity pitfalls. Sascha Fahrbach, cybersecurity evangelist, Fudo Security : Fahrbach. Neither will come easily or cheaply.

Ransomware 257

Ransomware Hacking Software Architecture 257

SecureWorld News

APRIL 22, 2021

Patching for these issues is so urgent that the Cybersecurity and Infrastructure Security Agency (CISA) issued a deadline for federal agencies to complete patches by the end of the week. Have you patched the known vulnerabilities discovered in Pulse Secure's Connect Secure products? What is Pulse Secure saying about product vulnerabilities?

Government 57

Government CSO Software VPN 57