Security Boulevard

FEBRUARY 26, 2025

Employment screening company DISA says data of 3.3 million people was exposed in a data breach lasts year, prompting AppOmni CSO Cory Michal to say that data collection companies like DISA and National Public Data need more oversight, regulations, and penalties.

CSO 59

CSO Data collection Data breaches Social Engineering 59

CSO Magazine

NOVEMBER 9, 2021

Since then, we've witnessed a wide range of attacks: Stuxnet destroyed almost a fifth of Iran's nuclear centrifuges, WannaCry infected computers in 150 countries, ransomware gangs stole millions of US dollars, and thousands of companies have been affected by data breaches.

Risk 129

Risk Data breaches Ransomware Cybersecurity 129

The Last Watchdog

MAY 5, 2025

Jay” Abdullah , Mastercards Deputy CSO who gave a keynote address at The CSA Summit from Cloud Security Alliance at RSAC 2025. Similarly, identity emerged as RSACs dominant theme, fueled by Verizons latest Data Breach Investigations Report showing credential abuse remains a top attack vector.

Engineering 130

Engineering DDOS Threat Detection Risk 130

SecureWorld News

APRIL 10, 2023

Imagine your company experienced a major data breach, but instead of notifying the appropriate parties and taking necessary actions, you were instructed to keep it quiet! was also leading the list in terms of the percentage of respondents who claimed they'd been told to keep a breach concealed (71%).

Data breaches 98

Data breaches CSO Social Engineering Cyber threats 98

BH Consulting

APRIL 30, 2025

Third-party risk rises as a factor in breaches: Verizon DBIR 2025 Verizons latest annual Data Breach Investigations Report (DBIR) shows some concerning trends with a sharp escalation in global cyber threats. Verizon itself noted a recurring theme of the role that third-party relationships play in breaches.

Data breaches 59

Data breaches Scams Cybercrime CSO 59

SecureWorld News

MAY 2, 2024

By spearheading cybersecurity programs, CISOs empower organizations to fend off cyber threats from criminal enterprises, insider risks, hackers, and other malicious entities that pose significant risks to operations, critical infrastructure, and even national security. RELATED: Uber CSO Found Guilty: The Sky Is Not Falling.

CISO 101

CISO Government CSO Artificial Intelligence 101

Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Malwarebytes

DECEMBER 15, 2022

Attack dates against Teqtivity and Uber have yet to be established; however, a threat actor named "UberLeaks" began leaking the stolen data on BreachForums, a site infamous for posting data breaches, around early Saturday morning, according to BleepingComputer. UberLeaks claimed the data came from Uber and Uber Eats.

Data breaches 98

Data breaches CSO Backups Mobile 98

SecureWorld News

APRIL 6, 2023

Uber has suffered yet another data breach after a third-party law firm's servers were attacked. The law firm, Genova Burns, which provides legal counsel to Uber, has notified an unknown number of its drivers that sensitive data has been exposed and stolen due to a cyberattack.

Data breaches 98

Data breaches CSO Phishing Risk 98

CSO Magazine

JUNE 5, 2023

AI-based cyber risk management SaaS vendor SAFE Security has announced the release Cyber Risk Cloud of Cloud – a new offering it claims uses generative AI to help businesses predict and prevent cyber breaches. This enables organizations to make informed, prognostic security decisions to reduce risk, SAFE Security said.

Data breaches 84

Data breaches Cyber Risk Risk Technology 84

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. One key aspect of successful communication is understanding the business objectives and risk appetite of the organization.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

CyberSecurity Insiders

APRIL 26, 2021

With data breach rates rising and criminal attack methods becoming more sophisticated each day, it is essential for every organization to take security seriously. Even if a company employs a Chief Information Security Officer (CISO) or Chief Security Officer (CSO), the position may still report to the CIO. Policy and Compliance.

Cybersecurity 111

Cybersecurity CISO Education CSO 111

The Last Watchdog

MARCH 25, 2019

That’s how they’re going to transfer data in, hopefully, a secure channel to pass information back and forth with each other.”. However, APIs are also more frequently the source of data breaches and other cyber incidents. No one really knows exactly how many APIs are out there. And that’s just one phone. Postal Service.

Digital transformation 154

Digital transformation Software Data breaches Authentication 154

SecureWorld News

MAY 23, 2024

Companies should consider qualitative factors beyond just financial impacts when assessing an incident's materiality, such as reputational harm, litigation risks, and regulatory scrutiny. And the recent clarifications—focusing on material cybersecurity incidents—is a step in the right direction," said Glenn Kapetansky , CSO, Trexin Group. "In

CISO 109

CISO CSO Risk Cybersecurity 109

CSO Magazine

JANUARY 24, 2023

CSI), followed by data breaches (23%), ransomware (20%) and a breach at a third party (15%). It was cited by 29% of respondents in a survey by Computer Systems Inc.

Cyber threats 111

Cyber threats Identity Theft Cyber Insurance Insurance 111

CSO Magazine

AUGUST 16, 2022

Cybersecurity risk assessment company Safe Security on Tuesday rolled out two new online risk assessment tools for businesses to use, in order to help them understand their vulnerability to cyberattacks and the costs of insuring against them. Risk tools measure financial impact of cyberthreats.

Risk 61

Risk Cyber Insurance Insurance Data breaches 61

CSO Magazine

NOVEMBER 5, 2021

Risks and challenges in SaaS security monitoring. Using SaaS offerings such as Microsoft 365 to conduct important business carries risk. Early detection of identity compromise can prevent a small-scale compromise from becoming a large-scale data breach. To read this article in full, please click here

Social Engineering 111

Social Engineering Phishing Data breaches Risk 111

CSO Magazine

MAY 4, 2022

Whether a company utilizes a private, hybrid or public cloud infrastructure or offers cloud services to others, it is critical that each cloud instance and service be isolated to help minimize the risk of data compromise. However, to effectively isolate cloud instances, technologies like micro-segmentation are needed.

Firewall 109

Firewall Data breaches Technology Risk 109

CyberSecurity Insiders

JANUARY 28, 2022

cybersecurity M&A deals hit 151 in the first three quarters of 2021, compared to 80, 88 and 94 in 2018, 2019 and 2020, respectively, according to data from 451 Research. According to CSO, 2021 shaped up to be an active year for mergers and acquisitions in the cybersecurity industry. It is all about risks.

Cybersecurity 89

Cybersecurity Digital transformation CSO Penetration Testing 89

SecureWorld News

NOVEMBER 16, 2023

Conversely, if a CISO is to be held accountable in the same manner as a CFO or General Counsel concerning matters of investor confidence, the executive contours of the CISO role should be revisited to ensure that it has sufficient authority, agency, and institutional backing to defend data assets as a fiduciary."

CISO 111

CISO Cybersecurity CSO Risk 111

NopSec

DECEMBER 9, 2015

According to recent research over 60 percent of survey participants stated their executives are only “somewhat” or “not at all” informed about the information security risk and threats their organizations face. ” In an age where data breaches crowd the daily headlines, lack of awareness is no longer an excuse for executives.

Information Security 40

Information Security CSO Risk Insurance 40

CSO Magazine

NOVEMBER 30, 2022

Ransomware and data breaches pose a massive risk to organizations, resulting in loss of customer trust and shareholder value, reputation damage, hefty fines, and penalties. Cyber risk is a top concern in US corporate boardrooms, elevating the role of the chief information security officer to rapid prominence.

CISO 88

CISO Cyber Risk Data breaches Information Security 88

CSO Magazine

SEPTEMBER 13, 2021

It can also lead to new vulnerabilities to cyberthreats, especially due to the surge in internet and digital network use, which has caused increased data breaches and higher security risks. To read this article in full, please click here

Data breaches 100

Data breaches Internet Internet Mobile 100

CSO Magazine

FEBRUARY 23, 2023

Nearly half of CISOs will change jobs by 2025 due to stress caused by the risk of being breached while trying to retain staff, according to the Gartner report, Predicts 2023: Cybersecurity Industry Focuses on the Human Deal. To read this article in full, please click here

CISO 100

CISO Data breaches Cybersecurity Hacking 100

CSO Magazine

SEPTEMBER 1, 2022

Organizations with cloud workloads need to protect themselves against a variety of risks. While most organizations focus on security against attackers, breaches resulting from simple misconfigurations can be just as commonplace. To read this article in full, please click here

Data breaches 73

Data breaches Risk 73

McAfee

NOVEMBER 10, 2021

Under the guidance of Dan Meacham, VP of Global Security and Corporate Operations and CSO/CISO, the multi-billion dollar organization transitioned from on-premises data centers to the cloud in 2012. Unacceptable levels of risk. Risk reduction through contextual entitlements. Banishing Shadow IT.

Data breaches 93

Data breaches Risk CSO Accountability 93

SecureWorld News

MAY 30, 2023

Equifax is sharing its Security Controls Framework to anyone who wants it as a pay-it-forward for lessons learned from its 2017 data breach in which attackers exfiltrated hundreds of millions of customer records from the credit reporting agency. "We into our security transformation.

CISO 91

CISO CSO Data breaches Risk 91

eSecurity Planet

APRIL 27, 2023

In March, the company disclosed a data breach that exposed about 1.2% In the last 6 months alone, we’ve seen over 17,000 open-source packages with malicious code risk. There’s also the problem of company employees using sensitive data with generative AI systems. The key is getting ahead of the risks.”

Risk 116

Risk Engineering CSO Software 116

SC Magazine

JUNE 11, 2021

Expectations around how corporate America responds to and communicates around data breaches has evolved significantly over the past two decades,” said T.J. When a data breach is discovered, the heat is on the IS/IT department(s) and, in many organizations, there is a culture of blame,” said Winick. Here is a sampling.

Data breaches 101

Data breaches Media Identity Theft CSO 101

Security Boulevard

DECEMBER 27, 2024

According to IBM, the average cost of a data breach rose 10% to almost $5 million in 2024, but the true damage lies in downtime, reputational damages and regulatory fines, particularly in cloud-heavy industries.

Cybersecurity 59

Cybersecurity CISO CSO Data breaches 59

CSO Magazine

APRIL 25, 2023

Credential-driven data breaches are the biggest threat vector for most companies. Cybercriminals are prioritizing stolen credentials for use in attacks, with weak credentials significant contributors to cloud security risks.

CISO 75

CISO Architecture Data breaches Mobile 75

SC Magazine

MARCH 10, 2021

Odds are more than one was breached here,” said Davisson. “I It’s best practice to keep a different set of credentials for each device because of exactly this risk.”. You can enable root access, but you have to jump through a lot of security hoops just to activate it,” noted Terry Dunlap, CSO and co-founder at ReFirm Labs.

Surveillance 129

Surveillance IoT Accountability Hacking 129

McAfee

NOVEMBER 12, 2020

If you are a US public company, there are additional board requirements from the Securities and Exchange Commission that you should be familiar with such as requiring written disclosure of how the board administers its risk oversight function. It is not only the CISO, CSO or CIO’s responsibility to care and do the right thing.

Cybersecurity 61

Cybersecurity Government Risk Penetration Testing 61

SC Magazine

MAY 6, 2021

Jamil Farshchi, who cleaned up a data breach at Home Depot, was tapped by Equifax as CISO after its own breach. It also says he’ll be responsible for security compliance, internal audits, IT operations, risk measurement and remediation efforts, and the promotion of the company’s Secure by Design initiative.

CISO 70

CISO Media CSO Information Security 70

SecureWorld News

AUGUST 25, 2021

In the last year, the state has seen a cyberattack take out the top regulatory agency, a data breach compromise the personal information of thousands of applicants for children’s health insurance, and a cyberattack that resulted in confidential information of 58,000 unemployment applicants being stolen, including SSNs and bank information.

CISO 98

CISO Cybersecurity Government Technology 98

BH Consulting

OCTOBER 15, 2023

Data protection and privacy developments Local and international news takes the stage here. There have been 5,105 data breaches involving Irish Government departments since GDPR came into force in 2018. MORE Cybersecurity and risk spending look set to increase in 2024, Gartner forecasts.

Ransomware 52

Ransomware Data breaches CSO Cyber Attacks 52

Errata Security

JULY 19, 2020

Security isn't a moral issue but simple cost vs. benefits, risk vs. rewards. Taking risks is more often the correct answer rather than having more security. It doesn't matter that this costs a lot of money due to data breaches. We have this flawed view that cybersecurity is a moral imperative, that it's an aim by itself.

CSO 51

CSO Ransomware Cybersecurity Hacking 51