CSO, Cybersecurity and Government - Cyber Security Informer

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

The Security Ledger

MAY 16, 2024

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments. Read the whole entry. »

CSO

CSO Risk Energy and Utilities Social Engineering

9 notable government cybersecurity initiatives of 2021

CSO Magazine

SEPTEMBER 2, 2021

Cybersecurity has steadily crept up the agenda of governments across the globe. This has led to initiatives designed to address cybersecurity issues that threaten individuals and organizations.

Government

Government Cybersecurity CSO Data breaches

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

By spearheading cybersecurity programs, CISOs empower organizations to fend off cyber threats from criminal enterprises, insider risks, hackers, and other malicious entities that pose significant risks to operations, critical infrastructure, and even national security. RELATED: Uber CSO Found Guilty: The Sky Is Not Falling.

CISO

CISO Government CSO Artificial Intelligence

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Prevent supply chain attacks with access governance

Security Boulevard

JUNE 23, 2023

Top 5 ways access governance prevents supply chain attacksIn today's interconnected digital landscape, organizations rely heavily on their supply chains to deliver products, services, and software solutions. According to CSO Online, […] The post Prevent supply chain attacks with access governance appeared first on SafePaaS.

Government

Government CSO Software Risk

Why today’s cybersecurity threats are more dangerous

CSO Magazine

OCTOBER 4, 2021

Over the past two years, the rise of big-ticket ransomware attacks and revelations of harmful software supply chain infections have elevated cybersecurity to the top of the government's agenda. Get the latest from CSO by signing up for our newsletters. ] Learn the The 5 types of cyberattack you're most likely to face. |

CSO

CSO Cybersecurity Government Ransomware

Google forms Cybersecurity Action Team to support customer security transformation

CSO Magazine

OCTOBER 13, 2021

Google has announced the formation of a cybersecurity action team to provide support to governments, critical infrastructure, enterprises, and small businesses. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ]

Digital transformation

Digital transformation CSO Cybersecurity Small Business

BEST PRACTICES: Why pursuing sound ‘data governance’ can be a cybersecurity multiplier

The Last Watchdog

APRIL 1, 2020

Related: What we’ve learned from the massive breach of Capitol At RSA 2020 , I learned about how one of the routine daily chores all large organizations perform — data governance — has started to emerge as something of a cybersecurity multiplier. A robust data archiving strategy puts data into tiers, Lahiri says.

Government

Government Cybersecurity CSO Banking

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

Security Boulevard

NOVEMBER 10, 2022

Welcome to the latest edition of The Week in Security , which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond. This week: Former Uber CSO is convicted for his attempted cover-up of a 2016 hack of the company.

CSO

CSO Media Hacking Software

The new math of cybersecurity value

CSO Magazine

SEPTEMBER 21, 2021

It doesn’t communicate enough to other executives,” says Marinkovic, who provides virtual CISO services through Tiro Security and serves on the Emerging Trends Working Group with the IT governance association ISACA. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

Cybersecurity

Cybersecurity CSO CISO Government

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

CSO Magazine

AUGUST 3, 2021

The US General Accountability Office (GAO) issued the 19-page report , “Cybersecurity and Information Technology: Federal Agencies need to Strengthen Efforts to Address High-Risk Areas” on July 29. Both pointed out shortcomings in the cyber readiness of the United States government. Sign up for CSO newsletters. ].

CSO

CSO Cybersecurity Government Accountability

GAO calls out US government agencies: Get your supply chain security act together

CSO Magazine

JUNE 8, 2021

In December 2020, the US Government Accounting Office (GAO) made 145 recommendations to 23 federal agencies relating to supply chain risks. In May 2021, the GAO’s director of information technology and cybersecurity, Vijay A. Get the latest from CSO by signing up for our newsletters. ].

Government

Government CSO Risk Accountability

UK parliament follows government by banning TikTok over cybersecurity concerns

CSO Magazine

MARCH 24, 2023

The commissions of the House of Commons and House of Lords have followed the UK government by banning social media app TikTok over cybersecurity concerns. To read this article in full, please click here

Government

Government Cybersecurity Media Risk

U.S. government offensive cybersecurity actions tied to defensive demands

CSO Magazine

SEPTEMBER 13, 2022

Offensive cyber operations are best known as acts of digital harm, mainly in the context of cyber “warfare,” with nation-states, particularly intelligence organizations, serving as the primary actors.

Government

Government Cybersecurity Ransomware

Latin American companies, governments need more focus on cybersecurity

CSO Magazine

MARCH 29, 2023

For the first time, over a dozen cybersecurity companies have come together to produce an agnostic study titled LATAM CISO Report 2023: Insights from Industry Leaders. The 2023 LATAM CISO Report offers different cybersecurity perspectives of industry leaders in Latin America. Duke University conducted the survey.

Government

Government Cybersecurity CISO Banking

France bans TikTok, all social media apps from government devices

CSO Magazine

MARCH 27, 2023

The French government has banned TikTok and all other “recreational apps” from phones issued to its employees. The Minister of Transformation and the Public Service Stanislas Guerini, said in a statement that recreational applications do not have sufficient levels of cybersecurity and data protection to be deployed on government equipment.

Government

Government Media Cybersecurity

China theft of US agriculture sector trade secrets prompts government guidance

CSO Magazine

SEPTEMBER 2, 2021

Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. The guide, quietly published in late July, is in essence a primer on how to create an insider risk/insider threat program. NCSC and CDSE insider threat program guidance.

CSO

CSO Government Risk Cybersecurity

APT group Winter Vivern exploits Zimbra webmail flaw to target government entities

CSO Magazine

MARCH 30, 2023

An APT group known in the security industry as Winter Vivern has been exploiting a vulnerability in the Zimbra Collaboration software to gain access to mailboxes from government agencies in several European countries.

Government

Government Telecommunications Cybersecurity Software

Cyberattacks against governments jumped 95% in last half of 2022, CloudSek says

CSO Magazine

JANUARY 4, 2023

The number of attacks targeting the government sector increased by 95% worldwide in the second half of 2022 compared to the same period in 2021, according to a new report by AI-based cybersecurity company CloudSek. There is also a risk that national security and military data can be used by terrorist organizations.

Government

Government Risk Cybersecurity

New US DHS grant program can boost local governments’ cybersecurity strength

CSO Magazine

OCTOBER 4, 2022

Local governments continue to grapple with ransomware and other cyberattacks that have crippled their school systems and halted other civic functions. The latest crisis in a long string of local government cyber incidents involves the Los Angeles Unified School District.

Government

Government Cybersecurity Ransomware

States enact safe harbor laws against cyberattacks, but demand adoption of cybersecurity frameworks

CSO Magazine

MARCH 29, 2021

While sophisticated ransomware and nation-state threat actors target US critical infrastructure, the only protection most organizations have against these attacks is tight and effective cybersecurity. These attacks have drawn government attention and sparked calls for liability protection against malicious intrusions.

CSO

CSO Cybersecurity Government Ransomware

SEC Provides Clarity on Disclosing Material vs. Non-Material Cyber Incidents

SecureWorld News

MAY 23, 2024

Securities and Exchange Commission (SEC) has issued new guidance aimed at clearing up confusion around how public companies should disclose cybersecurity incidents under the agency's recently adopted disclosure rules. disclosures regarding material cybersecurity incidents." of Form 8-K. Hopefully, this is a temporary and short phase!"

CISO

CISO CSO Cybersecurity Risk

U.S. government proposals spell out 5G security advancements

CSO Magazine

MAY 31, 2022

federal government introduced a proposed five-step 5G Security Evaluation Process Investigation. “[It] Cybersecurity and Infrastructure Security Agency (CISA), said. Last week the U.S.

Government

Government Engineering Technology Cybersecurity

GAO warns government agencies: focus on IoT and OT within critical infrastructure

CSO Magazine

DECEMBER 15, 2022

The US Government Accounting Office (GAO) continues to highlight shortcomings in the cybersecurity posture of government entities responsible for the protection of United States infrastructure when it comes to internet of things (IoT) and operational technology (OT) devices and systems.

IoT

IoT Government Internet Internet

The Nature of Cybersecurity Defense: Pentagon To Reveal Updated Zero-Trust Cybersecurity Strategy & Guidelines

CyberSecurity Insiders

NOVEMBER 15, 2022

Cybersecurity teams continue to face ongoing challenges in safeguarding their networks. To realize, zero trust’s full potential, The Federal Government must bear the full scope of its authority and resources to ensure the protection and security of our national and economic assets. Cyber Defense team. The policy of the U.S.

Cybersecurity

Cybersecurity Architecture Energy and Utilities Encryption

UK government considers strengthening security rules for MSPs to address supply chain risks

CSO Magazine

MAY 18, 2021

Get the latest from CSO by signing up for our newsletters. ]. The new proposals could require MSPs to meet the current Cyber Assessment Framework , a set of 14 cybersecurity principles designed for organisations that play a vital role in the day-to-day life of the UK. Learn the 7 keys to better risk assessment. |

Risk

Risk CSO Government Cyber Risk

Volkswagen Fires Cybersecurity Whistleblower

SecureWorld News

JANUARY 26, 2022

While sometimes controversial, whistleblowers have the potential to save an organization from millions of dollars in losses, public backlash, or government regulation—unless they are treated with disrespect and not taken seriously. After all, you never know who in your business might spot that something isn't quite right.".

Cybersecurity

Cybersecurity CSO Cyber Attacks Government

White House releases an ambitious National Cybersecurity Strategy

CSO Magazine

MARCH 2, 2023

The White House released its long-anticipated National Cybersecurity Strategy , a comprehensive document that offers fundamental changes in how the US allocates "roles, responsibilities, and resources in cyberspace." To read this article in full, please click here

Cybersecurity

Cybersecurity Internet Internet Government

Global trends will increase nation-state threats for the US in next 20 years

CSO Magazine

APRIL 21, 2021

Competitive and adversarial relations with China, Russia, Iran, and North Korea percolate to the top, while global issues like the pandemic and economic migration will strain governments around the world, including the US. Sign up for CSO newsletters. ].

CSO

CSO Government Cybersecurity

Cyber arms race, economic headwinds among top macro cybersecurity risks for 2023

CSO Magazine

FEBRUARY 21, 2023

Despite the billions of dollars poured annually into cybersecurity by investors, organizations, academia, and government, adequate and reliable cybersecurity remains an ever-elusive goal. Chief among the challenges for decision-makers and experts is simply identifying and comprehending society's cybersecurity risks.

Risk

Risk Cybersecurity Government Technology

Using the NIST Cybersecurity Framework to address organizational risk

CSO Magazine

JANUARY 25, 2022

federal government has been very active the past year, particularly with the cybersecurity executive order (EO) and associated tasks and goals that have come out of it. One framework and industry source that has been getting increased attention is the NIST Cybersecurity Framework (CSF).

Risk

Risk Cybersecurity Government

Dozens of cybersecurity efforts included in this year’s US NDAA

CSO Magazine

DECEMBER 15, 2022

Each year the NDAA contains a wealth of primarily military cybersecurity provisions, delivering hundreds of millions, if not billions, in new cybersecurity funding to the federal government. billion, over FY2022 NDAA’s topline with a good chunk of that amount going to cybersecurity efforts. Titled the James M.

Cybersecurity

Cybersecurity Government

APT group hits IIS web servers with deserialization flaws and memory-resident malware

CSO Magazine

JULY 27, 2021

A sophisticated, likely government-sponsored threat actor has been compromising major public and private organizations over the past year by exploiting deserialization flaws in public-facing ASP.NET applications to deploy fileless malware. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

Malware

Malware CSO Internet Internet

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. “Certifications range from penetration testers , government/industry regulatory compliance , ethical hacking , to industry knowledge,” he said. Also read: How to Get Started in a Cybersecurity Career. The Top Cybersecurity Certifications.

Cybersecurity

Cybersecurity Penetration Testing System Administration Cyber Attacks

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

SecureWorld News

DECEMBER 11, 2023

December 15, 2023, marks a significant shift in the cybersecurity landscape for publicly traded companies. Securities and Exchange Commission (SEC) has implemented new cyber incident disclosure rules, requiring companies to be more transparent and timely in their communication of cybersecurity breaches and vulnerabilities.

CISO

CISO Risk Cybersecurity CSO

Why the modern CISO should plan for greater Cybersecurity Regulations in the Biden Era

SC Magazine

MARCH 25, 2021

Just a few months past the initial SolarWinds discovery, it is clear that standardized cybersecurity regulation is needed to outline best practices for companies to follow. Part of this preparedness means understanding how potential legislation could reshape cybersecurity efforts. In March 2021, President Biden signed the $1.9

CISO

CISO Cybersecurity CSO Government

SolarWinds attacker Nobelium targets over 150 companies in new mass email campaign

CSO Magazine

MAY 28, 2021

Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan. Sign up for CSO newsletters. ]. It has a long history of targeting governmental or government-tied organizations, sometimes using zero-day exploits to gain initial access.

CSO

CSO Government Marketing Hacking

New Magnet Forensics app automates, coordinates cybersecurity response

CSO Magazine

FEBRUARY 11, 2022

A slow response to a data breach or other cybersecurity incident can cost companies time and money, as well as damage to their reputation. The new software is geared specifically for enterprises, allowing them to recover evidence of security incidents from corporate networks and remote endpoints.

Cybersecurity

Cybersecurity IoT Data breaches Mobile

Inadequate Cybersecurity

Security Boulevard

APRIL 27, 2021

It is customary to begin an article on cybersecurity with statements about huge increases in threats and attacks and mounting cyberspace losses from fraud, identity theft, ransoms, data exfiltration, blackmail, etc. The post Inadequate Cybersecurity appeared first on Security Boulevard. But, when you delve into it, proving […].

Cybersecurity

Cybersecurity Identity Theft CSO CISO

Key takeaways from the Open Cybersecurity Schema Format

CSO Magazine

AUGUST 30, 2022

One of the most pervasive challenges in the current cybersecurity environment is an overabundance of tooling vendors, all of which produce telemetry or data, often in their own native or nuanced schema or format. The problem isn’t going unnoticed.

Cybersecurity

Cybersecurity Risk Government

Raytheon’s John DeSimone on building the offensive line

CSO Magazine

MAY 20, 2022

But John DeSimone has built an offensive line—and he says it’s time for more cybersecurity practitioners to take that approach. It’s the way the technology needs to move, and that’s the way the country has to move.” [ Learn 8 pitfalls that undermine security program success and 12 tips for effectively presenting cybersecurity to the board.

CSO

CSO Technology Cybersecurity Government

China to probe Micron over cybersecurity, in chip war’s latest battle

CSO Magazine

APRIL 3, 2023

The Chinese government is instituting a cybersecurity review of US-based memory chip maker Micron’s products being sold in the country, in the latest move in the ongoing semiconductor trade dispute that pits China against the US and its allies.

Cybersecurity

Cybersecurity Manufacturing Technology Government

DHS creates Cyber Safety Review Board to review significant cybersecurity incidents

CSO Magazine

FEBRUARY 3, 2022

Following President Biden’s cybersecurity executive order issued last May, the Department of Homeland Security (DHS) announced on February 3 the creation of the Cyber Safety Review Board (CSRB). This public-private initiative is charged with reviewing and assessing significant cybersecurity incidents across government and the private sector.

Cybersecurity

Cybersecurity Government

Clear and present danger—report highlights serious cybersecurity issues with US defense contractors

CSO Magazine

DECEMBER 14, 2022

When a company engages in business with a government, especially with the defense sector of that government, one should expect that security surrounding the engagement would be a serious endeavor. Which should give everyone pause, as the results are startling.

Cybersecurity

Cybersecurity Government

Cybersecurity in 2021: Stopping the madness

CSO Magazine

MARCH 8, 2021

The SolarWinds caper – the “largest and most sophisticated attack the world has ever seen” according to Microsoft president Brad Smith – gave its Russian perps months of free reign across untold US government agencies and private companies.

Cybersecurity

Cybersecurity Government Ransomware Software

Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

9 notable government cybersecurity initiatives of 2021

Webinars

Trending Sources

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

Webinars

Prevent supply chain attacks with access governance

Why today’s cybersecurity threats are more dangerous

Google forms Cybersecurity Action Team to support customer security transformation

BEST PRACTICES: Why pursuing sound ‘data governance’ can be a cybersecurity multiplier

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

The new math of cybersecurity value

GAO report faults CIOs, OMB for slow adoption of cybersecurity recommendations

GAO calls out US government agencies: Get your supply chain security act together

UK parliament follows government by banning TikTok over cybersecurity concerns

U.S. government offensive cybersecurity actions tied to defensive demands

Latin American companies, governments need more focus on cybersecurity

France bans TikTok, all social media apps from government devices

China theft of US agriculture sector trade secrets prompts government guidance

APT group Winter Vivern exploits Zimbra webmail flaw to target government entities

Cyberattacks against governments jumped 95% in last half of 2022, CloudSek says

New US DHS grant program can boost local governments’ cybersecurity strength

States enact safe harbor laws against cyberattacks, but demand adoption of cybersecurity frameworks

SEC Provides Clarity on Disclosing Material vs. Non-Material Cyber Incidents

U.S. government proposals spell out 5G security advancements

GAO warns government agencies: focus on IoT and OT within critical infrastructure

The Nature of Cybersecurity Defense: Pentagon To Reveal Updated Zero-Trust Cybersecurity Strategy & Guidelines

UK government considers strengthening security rules for MSPs to address supply chain risks

Volkswagen Fires Cybersecurity Whistleblower

White House releases an ambitious National Cybersecurity Strategy

Global trends will increase nation-state threats for the US in next 20 years

Cyber arms race, economic headwinds among top macro cybersecurity risks for 2023

Using the NIST Cybersecurity Framework to address organizational risk

Dozens of cybersecurity efforts included in this year’s US NDAA

APT group hits IIS web servers with deserialization flaws and memory-resident malware

15 Top Cybersecurity Certifications for 2022

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

Why the modern CISO should plan for greater Cybersecurity Regulations in the Biden Era

SolarWinds attacker Nobelium targets over 150 companies in new mass email campaign

New Magnet Forensics app automates, coordinates cybersecurity response

Inadequate Cybersecurity

Key takeaways from the Open Cybersecurity Schema Format

Raytheon’s John DeSimone on building the offensive line

China to probe Micron over cybersecurity, in chip war’s latest battle

DHS creates Cyber Safety Review Board to review significant cybersecurity incidents

Clear and present danger—report highlights serious cybersecurity issues with US defense contractors

Cybersecurity in 2021: Stopping the madness

Stay Connected