Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. The emergence of shadow AIunauthorised AI tools used without IT approvalamplifies these vulnerabilities.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

BH Consulting

APRIL 30, 2025

Third-party risk rises as a factor in breaches: Verizon DBIR 2025 Verizons latest annual Data Breach Investigations Report (DBIR) shows some concerning trends with a sharp escalation in global cyber threats. CSO Online marked the progress as 66 per cent done. The company says 99.2

Data breaches 59

Data breaches Scams Cybercrime CSO 59

The Last Watchdog

MAY 5, 2022

Let’s walk through some practical steps organizations can take today, implementing zero trust and remote access strategies to help reduce ransomware risks: •Obvious, but difficult – get end users to stop clicking unknown links and visiting random websites that they know little about, an educational challenge. Best practices.

Ransomware 247

Ransomware Risk Internet Internet 247

Security Boulevard

DECEMBER 7, 2021

A Q&A with Den Jones, Banyan Security CSO Why join a startup now? In those days finances were extremely tight and I felt that it was a lower risk to work […]. The post Zero Trust Expert Den Jones Joins Banyan Security as CSO first appeared on Banyan Security.

CSO 80

CSO Risk 80

Security Boulevard

MAY 21, 2022

I came across an interesting blog post over at Finextra which got me thinking about a topic that has been in the back of my. The post Cloud computing concentration and systemic risk appeared first on Security Boulevard.

Risk 135

Risk CSO 135

Security Boulevard

DECEMBER 22, 2022

As CSOs, we have to protect the business and reduce risk, however in a series B startup that makes security-based products and services, I know my role is different. The post Being a CSO in a Security Start-up first appeared on Banyan Security. The post Being a CSO in a Security Start-up appeared first on Security Boulevard.

CSO 52

CSO Risk Software 52

Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection 138

Threat Detection Authentication Accountability CSO 138

CyberSecurity Insiders

JANUARY 28, 2022

This blog was written by an independent guest blogger. According to CSO, 2021 shaped up to be an active year for mergers and acquisitions in the cybersecurity industry. Top cybersecurity M&A deals for 2021 | CSO Online. It is all about risks. Requires strong due diligence. In fact, the volume of U.S.

Cybersecurity 89

Cybersecurity CSO Digital transformation Penetration Testing 89

CSO Magazine

JANUARY 10, 2022

According to JFrog, the issue carries a critical risk of unauthenticated remote code execution (RCE) for certain organizations who should update their H2 databases immediately. An attacker could trigger RCE if they are able to insert a malicious URL into a JNDI lookup, JFrog researchers explained in a blog post.

Risk 120

Risk 120

CSO Magazine

JUNE 9, 2023

The SAIF is designed to help mitigate risks specific to AI systems like model theft, poisoning of training data, malicious inputs through prompt injection, and the extraction of confidential information in training data. “As Its new framework concept is an important step in that direction, the tech giant claimed.

Technology 116

Technology Risk 116

Security Boulevard

DECEMBER 27, 2024

For more information about data and AI security posture management ( DSPM and AI-SPM ), check out these Tenable resources: Data and AI Security Posture Management (video) Harden Your Cloud Security Posture by Protecting Your Cloud Data and AI Resources (blog) Know Your Exposure: Is Your Cloud Data Secure in the Age of AI? (on-demand

CISO 57

CISO Cybersecurity CSO Data breaches 57

SecureWorld News

OCTOBER 5, 2023

A recent blog by Frank Domizio titled " The CISO Role: Beyond Technology " explores exactly what I am talking about. But it is vital as they fight for cybersecurity budget, try to explain risk, and explain the importance of line items such as security awareness training, blue, red and purple team exercises, and more.

CISO 113

CISO Government Risk Architecture 113

McAfee

JUNE 21, 2021

In a recent blog, McAfee’s Steve Grobman indicated SolarWinds is the first major supply chain attack which represents a shift in tactics where a nation state has employed a new weapon for cyber-espionage.” Cybersecurity is perceived as the second highest source of risk for enterprises, losing out to regulatory concerns, notes Gartner.

CISO 100

CISO CSO Cybersecurity Risk 100

SecureWorld News

APRIL 22, 2021

Phil Richards, Chief Security Officer at Pulse Secure, explains the issues in a new blog post. "We The team worked quickly to provide mitigations directly to the limited number of impacted customers that remediates the risk to their system. There is a new issue, discovered this month, that impacted a very limited number of customers.

Government 88

Government CSO Software VPN 88

Security Boulevard

OCTOBER 18, 2024

Check out invaluable cloud security insights and recommendations from the “Tenable Cloud Risk Report 2024.” 1 - Tenable: Riskiest cloud workloads present in 38% of orgs Almost 40% of global organizations have cloud workloads that put them at the highest risk of attack — an alarmingly high percentage.

Cybersecurity 67

Cybersecurity CISO CSO Risk 67

CSO Magazine

MAY 2, 2023

“Employers are increasingly investing in technologies that monitor and track workers, and making workplace decisions based on that information,” the blog released on Monday said, adding that while these technologies can benefit both workers and employers in some cases, they can also create serious risks to workers.

Surveillance 90

Surveillance Technology Risk 90

Security Boulevard

MAY 30, 2025

Here's an overview of the five stages of an AI system and the 13 security principles that must be adopted: Secure design stage Raise awareness about AI security threats and risks. Evaluate the threats and manage the risks to the AI system. Outdated or unsupported assets can pose an unacceptable risk to the organisation.

CISO 62

CISO Cybersecurity Artificial Intelligence CSO 62

McAfee

NOVEMBER 10, 2021

Under the guidance of Dan Meacham, VP of Global Security and Corporate Operations and CSO/CISO, the multi-billion dollar organization transitioned from on-premises data centers to the cloud in 2012. Unacceptable levels of risk. Risk reduction through contextual entitlements. Banishing Shadow IT.

Data breaches 93

Data breaches Risk CSO Accountability 93

CSO Magazine

MAY 25, 2023

I’ve written three previous blogs detailing the research. The second examined challenges with the threat intelligence lifecycle, and the third looked at the intersection between CTI and digital risk protection (DRP). The first one gave an overview of enterprise threat intelligence programs.

Cyber threats 82

Cyber threats Risk Cybersecurity 82

CSO Magazine

AUGUST 16, 2022

Most attacks originated from the Netherlands, Russia, and Ukraine, according to the firm, and highlight the risks of exposed VNC in critical infrastructure. Exposed VNC putting ICS at risk, assets frequently distributed on cybercrime forums.

Cybercrime 79

Cybercrime Authentication Marketing Risk 79

Security Through Education

OCTOBER 27, 2021

Typically, corporate networks are equipped with firewalls, a Chief Security Officer (CSO), and a whole cybersecurity department to keep them safe. This way, you may reap the benefits of the interconnected world without risking the privacy and security of your home. Privacy and Security Settings.

Cybersecurity 137

Cybersecurity Social Engineering Firewall Engineering 137

McAfee

NOVEMBER 12, 2020

If you are a US public company, there are additional board requirements from the Securities and Exchange Commission that you should be familiar with such as requiring written disclosure of how the board administers its risk oversight function. It is not only the CISO, CSO or CIO’s responsibility to care and do the right thing.

Cybersecurity 61

Cybersecurity Government Risk Penetration Testing 61

Security Boulevard

JULY 17, 2023

Obtaining a mandated Federal Risk and Authorization Management Program (FedRAMP) Authorization to Operation (ATO) is increasingly important for Cloud Service Providers (CSPs) who wish to make Cloud Service Offerings (CSOs) available to federal government agencies.

Government 83

Government Risk CSO 83

SC Magazine

JUNE 11, 2021

According to the blog post, a whistleblower with insider information “massively downplayed a catastrophic incident to minimize the hit to its stock price.” Also, last March, Krebs on Security reported that a breach disclosed last January by IoT device vendor Ubiquiti was far worse than the company had indicated publicly.

Data breaches 101

Data breaches Media Identity Theft CSO 101

Security Boulevard

NOVEMBER 8, 2024

Unraveling the True Security Risks ” (SecurityWeek) “ How deepfakes threaten biometric security controls ” (TechTarget) “ Deepfakes break through as business threat ” (CSO) 3 - Fake update variants dominate list of top malware in Q3 Hackers are doubling down on fake software-update attacks.

Phishing 48

Phishing Cybersecurity Cybercrime Ransomware 48

Security Boulevard

NOVEMBER 25, 2024

In this blog post, we delve deeper into how we’re embracing secure-by-design practices in our products. This approach helps mitigate risks associated with critical access points and protects sensitive information. To mitigate the risk posed by default passwords, they should be replaced with more secure authentication mechanisms.

Passwords 52

Passwords Software CSO Manufacturing 52

BH Consulting

OCTOBER 15, 2023

MORE Cybersecurity and risk spending look set to increase in 2024, Gartner forecasts. MORE Joe Sullivan, Uber’s CSO during its data breach, shares his perspective. MORE Why organisations should think about adding a human security officer. MORE But are security professionals ‘quiet quitting’ due to their workload?

Ransomware 52

Ransomware Data breaches CSO Cyber Attacks 52

CyberSecurity Insiders

APRIL 27, 2021

. “The past year fundamentally shifted the way we work, while simultaneously creating new security challenges for customers around the world,” said Chris Niggel, Regional CSO Americas, at Okta. ” Box Shield helps reduce risk and proactively identifies potential insider threats or compromised accounts.

CSO 40

CSO Threat Detection Accountability Risk 40

ForAllSecure

MARCH 8, 2023

She’s an amazing person who has done an amazing number of things in a short amount of time -- CMU professor, Forrester analyst, CSO at a successful startup -- and she’s not done changing the industry. VAMOSI: At least I remember her being an early evangelist for cloud container security, joining a startup as its CSO.

InfoSec 40

InfoSec Engineering CSO Hacking 40

eSecurity Planet

DECEMBER 3, 2021

Krebs wrote for The Washington Post between 1995 and 2009 before launching his current blog KrebsOnSecurity.com. Facebook Plans on Backdooring WhatsApp [link] — Schneier Blog (@schneierblog) August 1, 2019. Haddix continues to provide his insights while serving as the Head of Security and Risk Management for Ubisoft.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139