CISO, Cybersecurity, Network Security and Social Engineering

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

The Last Watchdog

MARCH 4, 2024

Charities and nonprofits are particularly vulnerable to cybersecurity threats, primarily because they maintain personal and financial data, which are highly valuable to criminals. Creating a solid cybersecurity foundation begins with understanding the organization’s risks. Effective nonprofit cybersecurity starts at the top.

Social Engineering

Social Engineering Risk Cybersecurity Authentication

A Reactive Cybersecurity Strategy Is No Strategy at All

CyberSecurity Insiders

MAY 18, 2022

A foundational approach to cybersecurity empowers CISOs to see abnormalities and block threats before they do damage. Constantly playing catch-up seems to have become the unfortunate norm in the cybersecurity industry. The post A Reactive Cybersecurity Strategy Is No Strategy at All appeared first on Cybersecurity Insiders.

DNS

DNS Cybersecurity CISO Social Engineering

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Security Boulevard

FEBRUARY 6, 2024

The post Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk appeared first on Security Boulevard. By aligning priorities into a shared game plan, HR and IT can finally set their organizations up to defend against modern cyberthreats.

Risk

Risk Cybersecurity Social Engineering Cyber Risk

‘The people’ of cybersecurity are its greatest strength and weakness

SC Magazine

MAY 17, 2021

More than 50 chief information security officers and top security and corporate executives from companies with 1,000 or more employees responded. . Click here to download the full report, “Are people missing from your cybersecurity strategy?” .

Cybersecurity

Cybersecurity Social Engineering Risk CISO

Red Team vs Blue Team vs Purple Team: Differences Explained

eSecurity Planet

FEBRUARY 21, 2023

Red, blue and purple teams simulate cyberattacks and incident responses to test an organization’s cybersecurity readiness. Blue team members might be led by a chief information security officer (CISO) or director of security operations, making this team the largest among the three.

Social Engineering

Social Engineering Penetration Testing Engineering Risk

5 Major Cybersecurity Trends to Know for 2024

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. After receiving input from industry experts and doing my own analysis of the year’s driving forces, I identified five major cybersecurity trends. Bottom line: Prepare now based on risk.

Cybersecurity

Cybersecurity CISO Government Technology

Reducing Human Error Security Threats with a Remote Workforce

Security Boulevard

MARCH 24, 2021

For better or worse, the COVID-19 pandemic changed the way we work and our corresponding cybersecurity needs. And this requires securing our networks for the new normal of IT infrastructures. In a survey of UK&I CISOs, 55% said that human error posed a risk no matter what protections are in place.

Education

Education Risk Cybersecurity VPN

7 Cyber Security Courses Online For Everybody

Spinone

NOVEMBER 21, 2019

The growing risks leave us with the fact that cybersecurity education is not a matter of choice anymore – it’s a matter of necessity. Also, there is a shortage of cybersecurity skills in the world, which makes it a plentiful field to make a career. The list will save your time and make a choice easier.

Social Engineering

Social Engineering Accountability Phishing Cybersecurity

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

In this article we will learn how to address and effectively respond to major enterprise cybersecurity threats and provide tips to mitigate IT security risk. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

GoDaddy Hosting Hacked — for FOURTH Time in 4 Years

Security Boulevard

FEBRUARY 20, 2023

The post GoDaddy Hosting Hacked — for FOURTH Time in 4 Years appeared first on Security Boulevard. GoDaddy’s web hosting service breached yet again. This time, the perps were redirecting legit websites to malware.

Hacking

Hacking Malware Social Engineering CISO

‘All of Sony’ Hacked, Claims Ransomed.vc Group

Security Boulevard

SEPTEMBER 26, 2023

Group appeared first on Security Boulevard. Hackers Play in Sony’s World: If true, Sony might have to push the RESET button (again). The post ‘All of Sony’ Hacked, Claims Ransomed.vc

Hacking

Hacking Social Engineering CISO Data privacy

‘Extraordinary, Egregious’ Data Breach at House and Senate

Security Boulevard

MARCH 10, 2023

The post ‘Extraordinary, Egregious’ Data Breach at House and Senate appeared first on Security Boulevard. Capitol Trouble: Senators, representatives and staffers suffer PII leak. Could it finally kickstart some action?

Data breaches

Data breaches Social Engineering Insurance CISO

Oops! Meta Security Guards Hacked Facebook Users

Security Boulevard

NOVEMBER 18, 2022

Meta Security Guards Hacked Facebook Users appeared first on Security Boulevard. Facebook parent Meta has disciplined or fired at least 25 workers for allegedly hacking into user accounts. The post Oops!

Hacking

Hacking Accountability Social Engineering CISO

Chinese Tech: Banned in DC, but not in the States

Security Boulevard

OCTOBER 31, 2022

The post Chinese Tech: Banned in DC, but not in the States appeared first on Security Boulevard. There’s a massive loophole in the federal ban on Chinese technology from sus firms such as Huawei and ZTE: It doesn’t stop states from buying it.

Technology

Technology Social Engineering CISO Security Awareness

Experian FAILs yet Again — Hackers can Change Your Email Address

Security Boulevard

JULY 12, 2022

The post Experian FAILs yet Again — Hackers can Change Your Email Address appeared first on Security Boulevard. Credit reporting agency Experian has a nasty vulnerability. Why do we put up with this?

Identity Theft

Identity Theft Social Engineering Authentication CISO

OPSEC FAIL: US Military Email Going to Mali — via Typo

Security Boulevard

JULY 17, 2023

The post OPSEC FAIL: US Military Email Going to Mali — via Typo appeared first on Security Boulevard. MX Mixup: Russian-allied government can intercept “highly sensitive information”—because there’s no “I” in.ML

Government

Government Social Engineering CISO Security Awareness

Warning: N. Korean Job Scams Push Trojans via LinkedIn

Security Boulevard

OCTOBER 1, 2022

Korean Job Scams Push Trojans via LinkedIn appeared first on Security Boulevard. Hey, hey, DPRK, how many people will you scam today? The post Warning: N.

Scams

Scams Social Engineering CISO Security Awareness

Mailchimp Hack Causes Theft of Trezor Crypto Wallet ‘Money’

Security Boulevard

APRIL 5, 2022

The post Mailchimp Hack Causes Theft of Trezor Crypto Wallet ‘Money’ appeared first on Security Boulevard. Hackers have stolen a mother lode of personal data from Intuit’s email marketing operation, Mailchimp.

Hacking

Hacking Marketing Social Engineering CISO

Reddit Hacked — 2FA is no Phishing Phix

Security Boulevard

FEBRUARY 10, 2023

The post Reddit Hacked — 2FA is no Phishing Phix appeared first on Security Boulevard. Reddit got hacked with a “sophisticated” spear phishing attack. The individual victim was an employee who clicked the wrong email link.

Phishing

Phishing Hacking Social Engineering CISO

New Russian Hacks Revealed—but U.S. Says it’s Microsoft’s Fault

Security Boulevard

OCTOBER 26, 2021

Says it’s Microsoft’s Fault appeared first on Security Boulevard. Microsoft has issued another of its “look how clever we are” writeups of detecting APT29 hackers. But the U.S. government sees it differently. The post New Russian Hacks Revealed—but U.S.

Hacking

Hacking Government Social Engineering CISO

Do You Want Secure Supply Chains? SHOW ME THE MONEY

Security Boulevard

MAY 16, 2022

The Open Source Security Foundation and Linux Foundation have a plan to fix our broken software supply chains. The post Do You Want Secure Supply Chains? SHOW ME THE MONEY appeared first on Security Boulevard. Benjamins needed.

Software

Software Social Engineering CISO IoT

Understand Your Staff: How Insiders Shape Defenses

Security Boulevard

FEBRUARY 26, 2021

This vastly increased mobility, cloud computing and social networking usage; in some cases, this transition occurred before companies and staff were fully prepared. Enterprises and their staff dealt with a lot of change in 2020. The pandemic and resulting lockdowns forced organizations to allow staff to work from home.

Mobile

Mobile Social Engineering CISO Security Awareness

Microsoft’s Legal Head: U.S. must Stop Secret Gag Orders

Security Boulevard

JUNE 16, 2021

must Stop Secret Gag Orders appeared first on Security Boulevard. Microsoft president and CLO Brad Smith says secretly subpoenaing data from cloud providers—blocking them from telling customers—must stop. The post Microsoft’s Legal Head: U.S.

Social Engineering

Social Engineering CISO Security Awareness Engineering

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

Last week’s RSA Conference covered a litany of network security vulnerabilities, from developing more robust tokenization policies and to addressing UEFI-based attacks, and non-endpoint attack vectors. Sadly, advancements in cybersecurity extend to malicious actors as much as they do to industry professionals.

Software

Software Firmware DNS VPN

Decipher Security Podcast With ForAllSecure CEO David Brumley

ForAllSecure

APRIL 30, 2020

We didn't have enough computer security experts at universities to teach it. A lot of universities, their curriculum starts with: here's a whole bunch of different areas of security. There's network security, software security, crypto, and then they go through the list of problems people have encountered throughout history.

Software

Software IoT Manufacturing Hacking

Decipher Security Podcast With ForAllSecure CEO David Brumley

ForAllSecure

APRIL 30, 2020

We didn't have enough computer security experts at universities to teach it. A lot of universities, their curriculum starts with: here's a whole bunch of different areas of security. There's network security, software security, crypto, and then they go through the list of problems people have encountered throughout history.

Software

Software IoT Manufacturing Hacking

DECIPHER SECURITY PODCAST WITH FORALLSECURE CEO DAVID BRUMLEY

ForAllSecure

APRIL 30, 2020

We didn't have enough computer security experts at universities to teach it. A lot of universities, their curriculum starts with: here's a whole bunch of different areas of security. There's network security, software security, crypto, and then they go through the list of problems people have encountered throughout history.

Software

Software IoT Manufacturing Hacking

New York: Cyberattack Is Twitter's Fault, Let's Increase Regulation

SecureWorld News

OCTOBER 15, 2020

It was the summer cyberattack that had social media buzzing. A group of teenagers used social engineering to breach Twitter's network and take over the accounts of a whole bunch of A-listers. New York should increase cybersecurity regulations as a result, especially for social media companies.

Social Engineering

Social Engineering Media Scams Financial Services

Cyber Security Informer

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

A Reactive Cybersecurity Strategy Is No Strategy at All

Trending Sources

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

‘The people’ of cybersecurity are its greatest strength and weakness

Red Team vs Blue Team vs Purple Team: Differences Explained

5 Major Cybersecurity Trends to Know for 2024

Reducing Human Error Security Threats with a Remote Workforce

7 Cyber Security Courses Online For Everybody

Sisense Hacked: CISA Warns Customers at Risk

Cyber Security Awareness and Risk Management

GoDaddy Hosting Hacked — for FOURTH Time in 4 Years

‘All of Sony’ Hacked, Claims Ransomed.vc Group

‘Extraordinary, Egregious’ Data Breach at House and Senate

Oops! Meta Security Guards Hacked Facebook Users

Chinese Tech: Banned in DC, but not in the States

Experian FAILs yet Again — Hackers can Change Your Email Address

OPSEC FAIL: US Military Email Going to Mali — via Typo

Warning: N. Korean Job Scams Push Trojans via LinkedIn

Mailchimp Hack Causes Theft of Trezor Crypto Wallet ‘Money’

Reddit Hacked — 2FA is no Phishing Phix

New Russian Hacks Revealed—but U.S. Says it’s Microsoft’s Fault

Do You Want Secure Supply Chains? SHOW ME THE MONEY

Understand Your Staff: How Insiders Shape Defenses

Microsoft’s Legal Head: U.S. must Stop Secret Gag Orders

The Biggest Lessons about Vulnerabilities at RSAC 2021

Decipher Security Podcast With ForAllSecure CEO David Brumley

Decipher Security Podcast With ForAllSecure CEO David Brumley

DECIPHER SECURITY PODCAST WITH FORALLSECURE CEO DAVID BRUMLEY

New York: Cyberattack Is Twitter's Fault, Let's Increase Regulation

Stay Connected