Security Boulevard

NOVEMBER 9, 2021

A recent article on threatpost.com describes how researchers from Armorblox discovered a phishing campaign from bad actors impersonating the well-known security company Proofpong. These criminals targeted a global communications company with over 1,000 employees with a phishing email containing a link that led to a site that.

CISO 111

CISO Phishing 111

Cisco Security

JANUARY 10, 2023

In my role, I regularly engage with CISOs in all kinds of sectors, representatives at industry bodies, and experts at analyst houses. This gives me an invaluable macroview not only of how the last 12 months have affected organizations and what CISOs are thinking about, but also how the upcoming year is shaping up.

CISO 142

CISO Insurance Cyber Insurance Phishing 142

Tech Republic Security

AUGUST 20, 2020

Stanford has replaced logins and passwords with a digital key to improve endpoint security.

CISO 217

CISO Phishing Passwords 217

Security Boulevard

MARCH 19, 2021

The post 3 Cybersecurity Goals for CISOs appeared first on Security Boulevard. Honestly, how many of us had, “I will do my best to avoid a global pandemic,” as a New Year’s resolution for 2020? That said, the chances that 2021 will be even more unpredictable are slim. So, we might as well indulge in setting.

CISO 145

CISO Cybersecurity Phishing Mobile 145

Tech Republic Security

OCTOBER 5, 2022

The post CISOs, boards not always on the same page appeared first on TechRepublic. Most boards of directors understand the risk, but many will not invest more in cybersecurity and have different concerns about the impact of a breach.

CISO 147

CISO Risk Cybersecurity Phishing 147

The Last Watchdog

DECEMBER 18, 2024

FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. AI-powered cryptocurrency attacks will automate phishing and exploit vulnerabilities. AI will enable attackers to craft adaptive phishing campaigns, exploit SaaS vulnerabilities, and evade detection, lowering the skill barrier for cybercriminals.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Boulevard

FEBRUARY 15, 2021

In early February, SlashNext debuted “Phish Stories,” a?videocast?and phishing attacks challenging businesses today.??? phishing attacks?— CISOs, CSOs and cybersecurity professionals.?? The post Next-Gen Protection Essential to Prevent Evolving Phishing Attacks first appeared on SlashNext. and podcast series?designed

Phishing 126

Phishing CISO Education Technology 126

Security Boulevard

JULY 6, 2023

When researchers from Armorblox discovered a phishing attack from bad actors impersonating the well-known security company Proofpoint, it set off alarm bells for a lot of organizations and security teams that weren’t actively safeguarding against phishing attacks.

CISO 93

CISO Phishing 93

SecureWorld News

APRIL 10, 2021

Most organizations today have deployed some type of email security solution, but still miss phishing emails. Because phishing emails typically carry non-malicious payloads to avoid basic security controls, are easy to send, and provide one of the fastest ROIs for threat actors. Why, you might ask? In fact, 74% of U.S.

Phishing 97

Phishing CISO Passwords Ransomware 97

Security Boulevard

AUGUST 30, 2024

Misaligned expectations, poor communication and even attempts to bury vulnerabilities create a frustrating and potentially dangerous situation for CISOs. Cybercriminals are constantly developing new techniques to bypass 2FA, such as SIM swapping, phishing attacks and exploiting vulnerabilities in authentication apps. The key takeaway?

CISO 111

CISO Cybersecurity Authentication Security Awareness 111

Security Affairs

APRIL 4, 2022

Threat actors gained access to internal tools of the email marketing giant MailChimp to conduct phishing attacks against crypto customers. Trezor WARNING: Elaborate Phishing attack. Trazor also took the phishing domain used by threat actors offline and launched an investigation to determine how many users have been impacted.

Phishing 140

Phishing Data breaches Cryptocurrency Social Engineering 140

SecureWorld News

SEPTEMBER 30, 2020

It is a common feeling in the cybersecurity community that CISOs do not sleep well at night. CISOs worry about the latest incident, end of life technology in their environment, breaches in the news, insecure users and vendors, penetration testing results, budget and resources, and the latest vulnerability report (to name a few).

CISO 103

CISO Penetration Testing Technology Antivirus 103

The Last Watchdog

DECEMBER 18, 2024

Balonis Frank Balonis , CISO, Kiteworks By 2025, 75% of the global population will be protected under privacy laws, including U.S. Taylor Howard Taylor , CISO, Radware The EU’s AI First regulation aims to protect individuals from AI-based profiling and decision-making.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

SecureWorld News

SEPTEMBER 24, 2020

The National Institute of Standards and Technology (NIST) recently developed a new method that will help prevent organizations and their employees from falling victim to phishing cyberattacks, which it calls the Phish Scale. A tool like the Phish Scale could be very useful for organizations in the fight against phishing.

Phishing 98

Phishing CISO Cybercrime Technology 98

Security Boulevard

JULY 21, 2023

The tool — being sold on hacker forums and considered “ChatGPT’s evil cousin” — shows that cybercriminals are taking advantage of Large Language Models (LLMs) to produce detection-resilient cyberattacks and phishes. The post Cybersecurity Insights with Contrast CISO David Lindner | 7/21 appeared first on Security Boulevard.

CISO 97

CISO Cybersecurity Phishing 97

Krebs on Security

DECEMBER 1, 2022

ConnectWise , which offers a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link. Update, 7:25 p.m.

Phishing 316

Phishing Architecture Passwords Accountability 316

SecureWorld News

FEBRUARY 28, 2025

Because no firewall, no AI-powered SOC, no quantum-proof encryption will save you if your employees keep clicking phishing emails, because let's face it. What if we thought like a psychologist, not just a CISO? it's WAY easier to hack minds than networks. The solution?

Cybersecurity 115

Cybersecurity Risk Social Engineering Phishing 115

Security Boulevard

AUGUST 26, 2022

Stop doing phishing tests against your employees (especially if it requires you to disable any security controls in your environment). Phishing assessments are demeaning and proven to not benefit the organizations security posture. Insight #3.

CISO 98

CISO Cybersecurity Phishing Software 98

The Hacker News

MAY 5, 2025

Lets be honest: if you're one of the first (or the first) security hires at a small or midsize business, chances are you're also the unofficial CISO, SOC, IT Help Desk, and whatever additional roles need filling. You're getting pinged about RFPs in one area, and reviewing phishing alerts in another, all while sifting

CISO 64

CISO Phishing 64

Security Boulevard

MAY 30, 2021

The post Hi-5 With A CISO <br><br> Mário Fernandes, Banco BPI appeared first on CybeReady. The post Hi-5 With A CISO Mário Fernandes, Banco BPI appeared first on Security Boulevard. After serving as a navy officer and […].

CISO 105

CISO InfoSec Banking Cybersecurity 105

SecureWorld News

APRIL 23, 2025

As the report starkly states: "The three primary ways in which attackers access an organization are stolen credentials, phishing and exploitation of vulnerabilitiesacross every single industry." Phishing accounted for nearly 25% of all breaches. Threat actors aren't brute-forcing their way inthey're logging in through the front door.

Ransomware 102

Ransomware CISO Backups Risk 102

Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

Cyber Risk 130

Cyber Risk CISO Risk Encryption 130

Webroot

OCTOBER 19, 2021

Earlier this year, the National Institute for Standards and Technology (NIST) published updated recommendations for phishing simulations in security awareness training programs. The thinking obviously being that letting users in on the phishing simulation game will heighten suspicion of their inbox and skew baseline results.

Phishing 124

Phishing Security Awareness Scams Social Engineering 124

SecureWorld News

FEBRUARY 20, 2025

Strengthening identity security Enforce phishing-resistant MFA for all privileged accounts. Cybersecurity awareness and incident response Train employees to recognize phishing attempts and social engineering. This highlights the importance of least-privilege access models and Just-in-Time (JIT) access controls to limit attack surfaces.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

SC Magazine

FEBRUARY 4, 2021

While technically part of the c-suite, CISOs historically received less attention within a company than your average CEO or chief financial officer. CISOs] are in more conversations, they’re asked for input,” said Leo Taddeo, chief security officer for Cyxtera. Our profile is certainly getting higher. Failure to communicate.

CISO 115

CISO Digital transformation Insurance Risk 115

CyberSecurity Insiders

FEBRUARY 15, 2021

Spam and phishing emails increased in number even more rapidly than telecommuting, and company cybersecurity officers found themselves struggling to keep up. Phishing emails often came with a sinister sidekick – a ransomware attack. Read full post.

CISO 97

CISO Ransomware Cybersecurity Phishing 97

SecureWorld News

MARCH 1, 2021

As the global pandemic continues to run rampant, CISOs are not only struggling to solve traditional cybersecurity challenges, but are faced with a new surge of pandemic themed phishing scams intended to deceive users and infiltrate organizations. How do I make my users more resilient to phishing scams?

Phishing 98

Phishing CISO Scams Social Engineering 98

Security Boulevard

FEBRUARY 10, 2023

Reddit got hacked with a “sophisticated” spear phishing attack. The post Reddit Hacked — 2FA is no Phishing Phix appeared first on Security Boulevard. The individual victim was an employee who clicked the wrong email link.

Phishing 111

Phishing Hacking Social Engineering CISO 111

SC Magazine

FEBRUARY 26, 2021

Phishing warning seen on Google Chrome when visiting a website that has been recognized as phishing website. The goal was to see if they could quantify the correlation between implementing a strong security culture and the reduction of unwanted phishing behaviors such as link clicking and credential sharing.

CISO 88

CISO Security Awareness Phishing InfoSec 88

SC Magazine

JUNE 17, 2021

” The attacker then uses the phishing lure to get the victim to “ Click here to download the document.” Once the victim clicks on the link, they are redirected to the actual malicious phishing website where their credentials are stolen through a web page designed to mimic the Google Login portal.

Phishing 110

Phishing Social Engineering Engineering CISO 110

CSO Magazine

JUNE 5, 2023

Asked to rate from 1 to 10 how confident they were in CEOs and executives’ abilities to know how to recognize a phishing email, only 28% of respondents were confident.

CISO 125

CISO Phishing 125

SecureWorld News

MAY 9, 2025

The development marks a significant escalation in COLDRIVER's cyber espionage activities, which have traditionally focused on credential phishing. VJ Viswanathan , Founding Partner at CYFORIX (Former CISO & Sr. The introduction of LOSTKEYS signifies a strategic shift towards deploying malware for direct data exfiltration.

Malware 88

Malware Social Engineering Engineering Government 88

Cisco Security

JULY 21, 2021

Today, the Cisco Investments team released their 2021 CISO Survival Guide to Emerging Trends in the Startup Ecosystem. There is a wealth of insightful information for CISOs in this report. Because Zero Trust and XDR are integrated architectural outcomes, the majority of CISOs are anchoring their SASE strategies here.

CISO 145

CISO Phishing Architecture Marketing 145

SecureWorld News

MAY 16, 2025

"Scattered Spider has proven to be a highly adaptive and efficient adversary, leveraging sophisticated social engineering, particularly against IT help desks, and exploiting identity and access management weaknesses to breach organizations," said VJ Viswanathan , Founding Partner, CYFORIX (Former CISO & Sr.

Retail 76

Retail Social Engineering Engineering Telecommunications 76

Heimadal Security

MAY 13, 2021

According to a new study conducted by the leading cybersecurity and compliance company Proofpoint, two-thirds of CISOs declared that their businesses are not prepared to face a targeted cyberattack.

CISO 97

CISO Information Security Cybersecurity DDOS 97

SecureWorld News

OCTOBER 2, 2024

CISOs report a growing focus on managing AI-generated vulnerabilities and addressing insider threats amplified by the misuse of advanced AI tools. On the other hand, malicious actors are leveraging AI for more sophisticated attacks, such as deepfakes and AI-enhanced phishing. Promote the CISO's role in digital transformation.

Cyber threats 117

Cyber threats CISO Digital transformation Artificial Intelligence 117

Security Boulevard

JANUARY 2, 2024

This adoption brings us to the flip side of the generative AI coin: attackers are leveraging AI tools to elevate and automate phishing campaigns, craft extremely evasive malware, and reduce the development time of threats across the board. Let’s explore five predictions that should be top of mind for security leaders and organizations.

CISO 104

CISO Social Engineering Architecture Ransomware 104