Krebs on Security

DECEMBER 18, 2018

KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not that these roles are somehow more or less important than that of a CISO/CSO within the organization.

CSO 218

CSO CISO Marketing Banking 218

CSO Magazine

NOVEMBER 9, 2021

Since then, we've witnessed a wide range of attacks: Stuxnet destroyed almost a fifth of Iran's nuclear centrifuges, WannaCry infected computers in 150 countries, ransomware gangs stole millions of US dollars, and thousands of companies have been affected by data breaches.

Risk 129

Risk Data breaches Ransomware Cybersecurity 129

SecureWorld News

APRIL 10, 2023

Imagine your company experienced a major data breach, but instead of notifying the appropriate parties and taking necessary actions, you were instructed to keep it quiet! was also leading the list in terms of the percentage of respondents who claimed they'd been told to keep a breach concealed (71%).

Data breaches 81

Data breaches CSO Social Engineering Cyber threats 81

CSO Magazine

JUNE 5, 2023

AI-based cyber risk management SaaS vendor SAFE Security has announced the release Cyber Risk Cloud of Cloud – a new offering it claims uses generative AI to help businesses predict and prevent cyber breaches. This enables organizations to make informed, prognostic security decisions to reduce risk, SAFE Security said.

Data breaches 84

Data breaches Cyber Risk Risk Technology 84

SecureWorld News

APRIL 6, 2023

Uber has suffered yet another data breach after a third-party law firm's servers were attacked. The law firm, Genova Burns, which provides legal counsel to Uber, has notified an unknown number of its drivers that sensitive data has been exposed and stolen due to a cyberattack.

Data breaches 91

Data breaches CSO Phishing Risk 91

CSO Magazine

AUGUST 16, 2022

Cybersecurity risk assessment company Safe Security on Tuesday rolled out two new online risk assessment tools for businesses to use, in order to help them understand their vulnerability to cyberattacks and the costs of insuring against them. Risk tools measure financial impact of cyberthreats.

Risk 61

Risk Cyber Insurance Insurance Data breaches 61

Malwarebytes

DECEMBER 15, 2022

Attack dates against Teqtivity and Uber have yet to be established; however, a threat actor named "UberLeaks" began leaking the stolen data on BreachForums, a site infamous for posting data breaches, around early Saturday morning, according to BleepingComputer. UberLeaks claimed the data came from Uber and Uber Eats.

Data breaches 90

Data breaches CSO Backups Mobile 90

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. One key aspect of successful communication is understanding the business objectives and risk appetite of the organization.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

CSO Magazine

NOVEMBER 30, 2022

Ransomware and data breaches pose a massive risk to organizations, resulting in loss of customer trust and shareholder value, reputation damage, hefty fines, and penalties. Cyber risk is a top concern in US corporate boardrooms, elevating the role of the chief information security officer to rapid prominence.

CISO 88

CISO Cyber Risk Data breaches Information Security 88

CSO Magazine

JANUARY 24, 2023

CSI), followed by data breaches (23%), ransomware (20%) and a breach at a third party (15%). It was cited by 29% of respondents in a survey by Computer Systems Inc.

Cyber threats 111

Cyber threats Identity Theft Cyber Insurance Insurance 111

CSO Magazine

SEPTEMBER 1, 2022

Organizations with cloud workloads need to protect themselves against a variety of risks. While most organizations focus on security against attackers, breaches resulting from simple misconfigurations can be just as commonplace. To read this article in full, please click here

Data breaches 73

Data breaches Risk 73

NopSec

DECEMBER 9, 2015

According to recent research over 60 percent of survey participants stated their executives are only “somewhat” or “not at all” informed about the information security risk and threats their organizations face. ” In an age where data breaches crowd the daily headlines, lack of awareness is no longer an excuse for executives.

Information Security 40

Information Security CSO Risk Insurance 40

CyberSecurity Insiders

APRIL 26, 2021

With data breach rates rising and criminal attack methods becoming more sophisticated each day, it is essential for every organization to take security seriously. Even if a company employs a Chief Information Security Officer (CISO) or Chief Security Officer (CSO), the position may still report to the CIO. Policy and Compliance.

Cybersecurity 111

Cybersecurity CISO Education CSO 111

SecureWorld News

NOVEMBER 16, 2023

Conversely, if a CISO is to be held accountable in the same manner as a CFO or General Counsel concerning matters of investor confidence, the executive contours of the CISO role should be revisited to ensure that it has sufficient authority, agency, and institutional backing to defend data assets as a fiduciary."

CISO 83

CISO Cybersecurity CSO Risk 83

CSO Magazine

FEBRUARY 23, 2023

Nearly half of CISOs will change jobs by 2025 due to stress caused by the risk of being breached while trying to retain staff, according to the Gartner report, Predicts 2023: Cybersecurity Industry Focuses on the Human Deal. To read this article in full, please click here

CISO 100

CISO Data breaches Cybersecurity Risk 100

CSO Magazine

MAY 4, 2022

Whether a company utilizes a private, hybrid or public cloud infrastructure or offers cloud services to others, it is critical that each cloud instance and service be isolated to help minimize the risk of data compromise. However, to effectively isolate cloud instances, technologies like micro-segmentation are needed.

Firewall 109

Firewall Data breaches Technology Risk 109

CSO Magazine

APRIL 25, 2023

Credential-driven data breaches are the biggest threat vector for most companies. Cybercriminals are prioritizing stolen credentials for use in attacks, with weak credentials significant contributors to cloud security risks.

CISO 75

CISO Architecture Data breaches Mobile 75

CSO Magazine

SEPTEMBER 13, 2021

It can also lead to new vulnerabilities to cyberthreats, especially due to the surge in internet and digital network use, which has caused increased data breaches and higher security risks. To read this article in full, please click here

Data breaches 100

Data breaches Internet Internet Mobile 100

eSecurity Planet

APRIL 27, 2023

In March, the company disclosed a data breach that exposed about 1.2% In the last 6 months alone, we’ve seen over 17,000 open-source packages with malicious code risk. There’s also the problem of company employees using sensitive data with generative AI systems. The key is getting ahead of the risks.”

Engineering 116

Engineering Risk CSO Social Engineering 116

BH Consulting

OCTOBER 15, 2023

Data protection and privacy developments Local and international news takes the stage here. There have been 5,105 data breaches involving Irish Government departments since GDPR came into force in 2018. MORE Cybersecurity and risk spending look set to increase in 2024, Gartner forecasts.

Ransomware 52

Ransomware Data breaches CSO Cyber Attacks 52

The Last Watchdog

MARCH 25, 2019

That’s how they’re going to transfer data in, hopefully, a secure channel to pass information back and forth with each other.”. However, APIs are also more frequently the source of data breaches and other cyber incidents. No one really knows exactly how many APIs are out there. And that’s just one phone. Postal Service.

Digital transformation 154

Digital transformation Software Data breaches Authentication 154

SC Magazine

JUNE 11, 2021

Expectations around how corporate America responds to and communicates around data breaches has evolved significantly over the past two decades,” said T.J. When a data breach is discovered, the heat is on the IS/IT department(s) and, in many organizations, there is a culture of blame,” said Winick. Here is a sampling.

Data breaches 101

Data breaches Media Identity Theft CSO 101

McAfee

NOVEMBER 12, 2020

If you are a US public company, there are additional board requirements from the Securities and Exchange Commission that you should be familiar with such as requiring written disclosure of how the board administers its risk oversight function. It is not only the CISO, CSO or CIO’s responsibility to care and do the right thing.

Cybersecurity 61

Cybersecurity Government Risk Penetration Testing 61

SC Magazine

MAY 6, 2021

Jamil Farshchi, who cleaned up a data breach at Home Depot, was tapped by Equifax as CISO after its own breach. It also says he’ll be responsible for security compliance, internal audits, IT operations, risk measurement and remediation efforts, and the promotion of the company’s Secure by Design initiative.

CISO 70

CISO Media CSO Information Security 70

Errata Security

JULY 19, 2020

Security isn't a moral issue but simple cost vs. benefits, risk vs. rewards. Taking risks is more often the correct answer rather than having more security. It doesn't matter that this costs a lot of money due to data breaches. We have this flawed view that cybersecurity is a moral imperative, that it's an aim by itself.

CSO 51

CSO Cybersecurity Ransomware Hacking 51

Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection 134

Threat Detection Authentication Accountability Data breaches 134

McAfee

NOVEMBER 10, 2021

Under the guidance of Dan Meacham, VP of Global Security and Corporate Operations and CSO/CISO, the multi-billion dollar organization transitioned from on-premises data centers to the cloud in 2012. Unacceptable levels of risk. Risk reduction through contextual entitlements. Banishing Shadow IT.

Data breaches 93

Data breaches Risk CSO Media 93

SecureWorld News

MAY 30, 2023

Equifax is sharing its Security Controls Framework to anyone who wants it as a pay-it-forward for lessons learned from its 2017 data breach in which attackers exfiltrated hundreds of millions of customer records from the credit reporting agency. "We into our security transformation.

CISO 65

CISO CSO Data breaches Cybersecurity 65

The Security Ledger

MARCH 12, 2019

. » Related Stories Podcast Episode 130: Troy Hunt on Collection 1 and Tailit’s Tale of IoT Security Redemption Days After Massive Breach, Marriott Customers Await Details Massive Marriott Breach Underscores Risk of overlooking Data Liability.

Artificial Intelligence 40

Artificial Intelligence Information Security IoT Technology 40

CyberSecurity Insiders

JANUARY 28, 2022

cybersecurity M&A deals hit 151 in the first three quarters of 2021, compared to 80, 88 and 94 in 2018, 2019 and 2020, respectively, according to data from 451 Research. According to CSO, 2021 shaped up to be an active year for mergers and acquisitions in the cybersecurity industry. It is all about risks.

Cybersecurity 89

Cybersecurity Digital transformation CSO Penetration Testing 89

CSO Magazine

NOVEMBER 5, 2021

Risks and challenges in SaaS security monitoring. Using SaaS offerings such as Microsoft 365 to conduct important business carries risk. Early detection of identity compromise can prevent a small-scale compromise from becoming a large-scale data breach. To read this article in full, please click here

Social Engineering 111

Social Engineering Phishing Data breaches Risk 111

SC Magazine

MARCH 10, 2021

Odds are more than one was breached here,” said Davisson. “I It’s best practice to keep a different set of credentials for each device because of exactly this risk.”. You can enable root access, but you have to jump through a lot of security hoops just to activate it,” noted Terry Dunlap, CSO and co-founder at ReFirm Labs.

Surveillance 129

Surveillance IoT Accountability Passwords 129

SecureWorld News

AUGUST 25, 2021

In the last year, the state has seen a cyberattack take out the top regulatory agency, a data breach compromise the personal information of thousands of applicants for children’s health insurance, and a cyberattack that resulted in confidential information of 58,000 unemployment applicants being stolen, including SSNs and bank information.

CISO 98

CISO Cybersecurity Government Technology 98

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. ICYMI, Equifax forced to pull offline a huge database of consumer data guarded only by credentials "admin/admin" [link] — briankrebs (@briankrebs) September 13, 2017.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

CyberSecurity Insiders

NOVEMBER 1, 2021

“The security risks of remote working have been well documented. Away from the office, employees are now far more likely to practice poor cyber hygiene, for example connecting to unsafe networks, transferring work data to personnel devices, or sharing unencrypted files. Wes Spencer, VP, External CSO, ConnectWise.

Cybersecurity 52

Cybersecurity Backups Ransomware Passwords 52