CISO, CSO and Passwords - Cyber Security Informer

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

The Security Ledger

DECEMBER 21, 2022

Paul speaks with Caleb Sima, the CSO of the online trading platform Robinhood, about his journey from teenage cybersecurity phenom and web security pioneer, to successful entrepreneur to an executive in the trenches of protecting high value financial services firms from cyberattacks. Caleb Sima is the CSO at Robinhood.

CSO

CSO Financial Services CISO Mobile

Why authentication is still the CISO’s biggest headache

CSO Magazine

MARCH 30, 2022

Authentication remains one of the most painstaking challenges faced by CISOs in organizations large and small. Authentication a significant obstacle for modern CISOs. Authentication continues to test CISOs for several reasons, with its modern definition being the first to address, Netskope CISO Lamont Orange tells CSO. “We

Authentication

Authentication CISO CSO Passwords

Consumers are done with passwords, ready for more innovative authentication

CSO Magazine

SEPTEMBER 30, 2021

CISOs looking to beef up their customer-facing authentication procedures to thwart cyberattacks need to walk a fine line. You want the method to provide tight security without being too complicated, confusing, or onerous for end users.

Authentication

Authentication Passwords Retail CISO

Black Hat 2021: Better Than Ever (As Always)

Duo's Security Blog

JULY 13, 2021

In this session led by Cisco Secure CISO Josh Yavor, you’ll learn about best practices that Cisco implemented to enable secure access for a global remote workforce, providing the best experience for productivity without compromising on security. With so much to look forward to, we can’t wait for Black Hat to begin.

CISO

CISO CSO Authentication Passwords

10 most common MFA excuses, and how to answer them

CSO Magazine

MAY 2, 2022

My password is strong enough. A strong password is a crucial and applaudable first step, but as cyberattacks become more sophisticated, it isn’t sufficient by itself. This is a point that CISOs need to hammer home to users and managers by citing examples of security breaches where strong passwords were not enough.

CISO

CISO Passwords Authentication

BrandPost: Don’t Make This Mistake on the Journey to Passwordless Security

CSO Magazine

MARCH 31, 2021

Passwords have been used to gain access to computers since at least 1961, when an operating system at the Massachusetts Institute of Technology implemented the need for login credentials. Over the following decades, as threats have evolved, there have been seesaw-like reactions to adapting password tactics. “In

Passwords

Passwords CISO Encryption Technology

GoDaddy WordPress data breach: A timeline

CSO Magazine

NOVEMBER 30, 2021

In a Securities and Exchange Commission (SEC) filing , Demetrius Comes, GoDaddy’s CISO, announced that the organization had discovered unauthorized access to its Managed WordPress servers. Using a compromised password, an unauthorized third party accessed the provisioning system in our legacy code base for Managed WordPress.”

Data breaches

Data breaches CISO Passwords

Why CISOs change jobs

CSO Magazine

FEBRUARY 21, 2023

Being a CISO is a hard job. Despite this excellence, a single employee can click on a malicious web link, share a password, or misconfigure an asset, leading directly to a successful cyberattack. Yup, CISOs have heavy responsibilities. When this happens, it's your fault. How are they dealing with this burden?

CISO

CISO Passwords Technology Cybersecurity

Cybersecurity Culture: How Princeton University's Security Team Created It

SecureWorld News

MAY 19, 2020

Sherry brought to Princeton his 25 years of technology experience, 12 of which was in higher education as the former CISO at Brown University. Sherry explained that he (the CISO) would have no operational responsibilities in the beginning to focus solely on the execution of the mission. Paying attention to employee feedback.

Cybersecurity

Cybersecurity CISO Risk Education

Interview with Dr. Arun Vishwanath on the Latest Cybersecurity Attacks

CyberSecurity Insiders

JUNE 3, 2021

They had super weak, easily guessable passwords, which was visible to anyone who looked. The “people problem” is a phrase I heard in many different occasions when I met with IT managers (CISO, CSO, CIOs), many in leading research labs, national security establishments, and such. Did SolarWinds leave the proverbial door open?

Cybersecurity

Cybersecurity Energy and Utilities Social Engineering Phishing

Notification no-nos: What to avoid when alerting customers of a breach

SC Magazine

JUNE 11, 2021

For instance, furing Congressional testimony following the supply chain attack on SolarWinds’ IT management platform Orion, the company’s CEO Sudhakar Ramakrishna blamed an intern for creating a weak FTP server password and leaking it on GitHub.

Data breaches

Data breaches Media Identity Theft CSO

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

The Last Watchdog

DECEMBER 14, 2023

Instead of arguing about MFA strength, VPN vendor, or nation-state treat actors, let’s finish our conversation about using dedicated administrator accounts and unique passwords. Richard Bird , CSO, Traceable AI Bird The bad guys are showing no restraint in exploiting API security weakness to their advantage.

Cybersecurity

Cybersecurity Risk Cyber threats CSO

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

.” “It would be possible, on detailed examination of video, to compromise elements of operational security,” agreed Mike Hamilton, co-founder and chief information security officer of CI Security and former Seattle CISO. Individual workers’ patterns and habits could be studied as well, to their detriment.

Surveillance

Surveillance IoT Accountability Passwords

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Encourage your key cyber professionals to develop first-rate security awareness training materials for employees and executive staff.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

Examples of this include keeping software up to date, backing up data, and maintaining good password practices. Cyber attacks nowadays do not often come from ingenious ‘hackers’ in dark rooms, they’re often the result of an employee reusing the same password, or businesses not implementing basic practices such as multi-factor authentication.

Cybersecurity

Cybersecurity Backups Ransomware Passwords

Cyber Security Informer

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

Why authentication is still the CISO’s biggest headache

Trending Sources

Consumers are done with passwords, ready for more innovative authentication

Black Hat 2021: Better Than Ever (As Always)

10 most common MFA excuses, and how to answer them

BrandPost: Don’t Make This Mistake on the Journey to Passwordless Security

GoDaddy WordPress data breach: A timeline

Why CISOs change jobs

Cybersecurity Culture: How Princeton University's Security Team Created It

Interview with Dr. Arun Vishwanath on the Latest Cybersecurity Attacks

Notification no-nos: What to avoid when alerting customers of a breach

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Cyber Security Awareness and Risk Management

Cybersecurity Awareness Month: Security Experts Reflect on Safety

Stay Connected