CSO, Data breaches and Technology - Cyber Security Informer

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

Even among top tech firms, less than half list a chief technology officer (CTO). KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Not anymore.

CSO

CSO CISO Marketing Banking

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

A review of the executives pages published by the 2022 list of Fortune 100 companies found only four — BestBuy , Cigna , Coca-Cola , and Walmart — that listed a Chief Security Officer (CSO) or Chief Information Security Officer (CISO) in their highest corporate ranks. Nor is the average pay hugely different among all these roles.

CSO

CSO CISO Insurance Risk

BrandPost: How Modern Companies Stop Data Breaches

CSO Magazine

SEPTEMBER 8, 2022

This post is focused on stopping data breaches with SSE. This subject is critical because legacy data protection strategies and technologies no longer suffice in the modern business world. Our previous topic revolved around securing hybrid work. To read this article in full, please click here

Data breaches

Data breaches Digital transformation Technology Cybersecurity

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

The Last Watchdog

JULY 25, 2024

With this in mind, Last Watchdog sought commentary from technology thought leaders about what the CrowdStrike outage says about the state of digital resiliency. Implementing zero trust across the entirety of the technology stack would go a long way toward increasing resilience against events like this.

Technology

Technology Ransomware Software Cyber Attacks

Uber CISO's trial underscores the importance of truth, transparency, and trust

CSO Magazine

MAY 19, 2022

Case in point: A federal judge recently ordered Uber Technologies to work with its former CSO, Joseph Sullivan (who held the position from April 2015 to November 2017), and review a plethora of Uber documents that Sullivan has requested in unredacted form for use in his defense in the upcoming criminal trial.

CISO

CISO CSO Data breaches Media

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

The Security Ledger

DECEMBER 21, 2022

Paul speaks with Caleb Sima, the CSO of the online trading platform Robinhood, about his journey from teenage cybersecurity phenom and web security pioneer, to successful entrepreneur to an executive in the trenches of protecting high value financial services firms from cyberattacks. Caleb Sima is the CSO at Robinhood.

CSO

CSO Financial Services CISO Mobile

SAFE Security claims to predict data breaches with new generative AI offering

CSO Magazine

JUNE 5, 2023

Concerns about the risks these new technologies could introduce range from the potential issues of sharing sensitive business information with advanced self-learning algorithms to malicious actors using them to significantly enhance attacks.

Data breaches

Data breaches Cyber Risk Risk Technology

5 best practices to ensure the security of third-party APIs

CSO Magazine

JUNE 15, 2023

The problem is that many companies don't realize that using third-party APIs can expose their applications to security issues, such as malware, data breaches, and unauthorized access. Third-party APIs are software interfaces that allow organizations to leverage third-party functionality or data on their own websites or applications.

Data breaches

Data breaches Technology Malware Software

These Roles Require Cybersecurity Training

CyberSecurity Insiders

APRIL 26, 2021

With data breach rates rising and criminal attack methods becoming more sophisticated each day, it is essential for every organization to take security seriously. Even if a company employs a Chief Information Security Officer (CISO) or Chief Security Officer (CSO), the position may still report to the CIO. Compliance Officer.

Cybersecurity

Cybersecurity CISO Education CSO

BrandPost: Protecting Cloud Assets in 5 Steps with Micro-Segmentation

CSO Magazine

MAY 4, 2022

However, to effectively isolate cloud instances, technologies like micro-segmentation are needed. It can reduce the severity to a contained incident that can be remediated quickly versus an expansive data breach that spans multiple parts of the business, or numerous clients in a multi-tenant service.

Firewall

Firewall Data breaches Technology Risk

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

They now face the risk of being implicated in criminal investigations or held accountable for security breaches, as evidenced by cases like that of Joe Sullivan, the former Chief Security Officer of Uber, who was sentenced to three years' probation for covering up a data breach involving millions of Uber user records.

CISO

CISO Government CSO Artificial Intelligence

M&A; Trending In Cybersecurity Industry Vertical For 2022

CyberSecurity Insiders

JANUARY 28, 2022

cybersecurity M&A deals hit 151 in the first three quarters of 2021, compared to 80, 88 and 94 in 2018, 2019 and 2020, respectively, according to data from 451 Research. According to CSO, 2021 shaped up to be an active year for mergers and acquisitions in the cybersecurity industry. In fact, the volume of U.S.

Cybersecurity

Cybersecurity Digital transformation CSO Risk

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Developing a Clear Cybersecurity Strategy As a CISO/CSO, creating and presenting a clear cybersecurity strategy to the board of directors is crucial in fostering awareness of cyber risks and encouraging investment in cybersecurity defense. Vulnerability assessments highlighting areas where your organization’s defenses may be lacking.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

BrandPost: How Configuration Assessments Help Improve Cyber Defenses

CSO Magazine

APRIL 6, 2021

These days, information technology (IT) and information security professionals know this all too well, especially when it comes to configuration assessments. The 2020 Verizon Data Breach Investigations Report (DBIR) notes that vulnerabilities accounted for nearly 20% of hacking breaches.

Data breaches

Data breaches Cyber threats Accountability Technology

Cybersecurity Snapshot: What Looms on Cyberland’s Horizon? Here’s What Tenable Experts Predict for 2025

Security Boulevard

DECEMBER 27, 2024

According to IBM, the average cost of a data breach rose 10% to almost $5 million in 2024, but the true damage lies in downtime, reputational damages and regulatory fines, particularly in cloud-heavy industries. However, this creates a challenge: the knowledge gap.

Cybersecurity

Cybersecurity CISO CSO Data breaches

Guardz releases AI-powered phishing protection solution for SMEs, MSPs

CSO Magazine

JUNE 8, 2023

The release comes in the wake of the Verizon 2023 Data Breach Investigations Report , which cited phishing as the second most common way threat actors infiltrate organizations, behind stolen credentials.

Phishing

Phishing Small Business Data breaches Technology

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

According to thought leaders, the compromise of video data could result in intellectual property theft, physical security threats, privacy violations, extortion and perhaps regulatory punishment. Odds are more than one was breached here,” said Davisson. “I Look at the Mac operating system.

Surveillance

Surveillance IoT Accountability Passwords

Nvidia hackers release code-signing certificates that malware can abuse

CSO Magazine

MARCH 4, 2022

Nvidia confirmed it was the target of an intrusion and that the hackers took "employee passwords and some Nvidia proprietary information," but did not confirm the size of the data breach. What happened with the Nvidia data breach? To read this article in full, please click here

Malware

Malware Data breaches Firmware Passwords

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SecureWorld News

NOVEMBER 16, 2023

Conversely, if a CISO is to be held accountable in the same manner as a CFO or General Counsel concerning matters of investor confidence, the executive contours of the CISO role should be revisited to ensure that it has sufficient authority, agency, and institutional backing to defend data assets as a fiduciary."

CISO

CISO Cybersecurity CSO Risk

Legendary Entertainment Relies on MVISION CNAPP Across Its Multicloud Environment

McAfee

NOVEMBER 10, 2021

Under the guidance of Dan Meacham, VP of Global Security and Corporate Operations and CSO/CISO, the multi-billion dollar organization transitioned from on-premises data centers to the cloud in 2012. Data protection with user and entity behavior analytics (UEBA). Unacceptable levels of risk.

Data breaches

Data breaches Risk CSO Media

Why do CISOs Keep Quitting on Florida?

SecureWorld News

AUGUST 25, 2021

In the last year, the state has seen a cyberattack take out the top regulatory agency, a data breach compromise the personal information of thousands of applicants for children’s health insurance, and a cyberattack that resulted in confidential information of 58,000 unemployment applicants being stolen, including SSNs and bank information.

CISO

CISO Cybersecurity Government Technology

Uber Breach Guilty Verdict, Mandatory Password Expiration, Fake Executive Profiles on LinkedIn

Security Boulevard

OCTOBER 16, 2022

Former Uber CSO Joe Sullivan was found guilty of obstructing a federal investigation in connection with the attempted cover-up of a 2016 hack at Uber, NIST and Microsoft say that mandatory password expiration is no longer needed but many organizations are still doing it, and how fake executive profiles are becoming a huge problem for […].

Passwords

Passwords CSO Hacking Accountability

Equifax Makes Security Controls Framework Available to All for Free

SecureWorld News

MAY 30, 2023

Equifax is sharing its Security Controls Framework to anyone who wants it as a pay-it-forward for lessons learned from its 2017 data breach in which attackers exfiltrated hundreds of millions of customer records from the credit reporting agency. "We into our security transformation. My philosophy is always been about fundamentals.

CISO

CISO CSO Data breaches Cybersecurity

Our Top 10 Cybersecurity Podcast Episodes

SecureWorld News

OCTOBER 1, 2020

"Every day, we collect terabytes of threat data coming in from honey pots, from submissions from our partners, from customers, from feedback loops, from a lot of our crawling technologies. Huawei USA's CSO answers questions about trust, verification, cybersecurity, and supply chain security. Can You Trust Huawei?

Cybersecurity

Cybersecurity CSO Cyber threats Cyber Attacks

ChatGPT Security and Privacy Issues Remain in GPT-4

eSecurity Planet

APRIL 27, 2023

In March, the company disclosed a data breach that exposed about 1.2% Generative technologies like GPT-4 are exciting and they can drive value. ChatGPT Security Incidents GPT-4 is still in private beta, but if you have a paid subscription to ChatGPT, you will have access to the GPT-4 model. They’re also unavoidable.

Engineering

Engineering Risk CSO Social Engineering

SolarWinds hires CISO from within, enabling a quicker security transformation

SC Magazine

MAY 6, 2021

Jamil Farshchi, who cleaned up a data breach at Home Depot, was tapped by Equifax as CISO after its own breach. In its press release, Austin, Texas-based SolarWinds notes that Brown has “25 years of experience developing and implementing security technology” and “holds 18 issued patents on security-related topics.”

CISO

CISO Media CSO Information Security

Podcast Episode 137 Sponsored by Code42: GirlScouts to the Rescue and Rethinking Enterprise DLP

The Security Ledger

MARCH 12, 2019

The collaboration is part of the Girl Scouts’ push to reduce the gender gap in technology via bringing 2.5 In this conversation, Liz and I talk about the collaboration with Girl Scouts of America as well as the challenge of teaching technology and cyber literacy to children and the. million girls into the STEM pipeline by 2025.

Artificial Intelligence

Artificial Intelligence Information Security IoT Technology

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. ICYMI, Equifax forced to pull offline a huge database of consumer data guarded only by credentials "admin/admin" [link] — briankrebs (@briankrebs) September 13, 2017.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

Examples of this include keeping software up to date, backing up data, and maintaining good password practices. At the end of the day, lack of education and human error are two of the largest contributors to data breaches. Unfortunately, cybercriminals know this and have engineered their technology to behave accordingly.

Cybersecurity

Cybersecurity Backups Ransomware Passwords

Key Cybersecurity Trends for 2025. My Predictions

Jane Frankland

JANUARY 12, 2025

Cybersecurity is on the brink of significant transformation as we approach 2025, grappling with escalating complexities driven by advancements in technology, increasing geopolitical tensions, and the rapid adoption of AI and IoT. Ethics The ethical challenges posed by advancing AI technologies will demand urgent attention in 2025.

Cybersecurity

Cybersecurity CISO Insurance IoT

Cyber Security Informer

A Chief Security Concern for Executive Teams

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Trending Sources

BrandPost: How Modern Companies Stop Data Breaches

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

Uber CISO's trial underscores the importance of truth, transparency, and trust

Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima

SAFE Security claims to predict data breaches with new generative AI offering

5 best practices to ensure the security of third-party APIs

These Roles Require Cybersecurity Training

BrandPost: Protecting Cloud Assets in 5 Steps with Micro-Segmentation

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

M&A; Trending In Cybersecurity Industry Vertical For 2022

CISO’s Guide to Presenting Cybersecurity to Board Directors

BrandPost: How Configuration Assessments Help Improve Cyber Defenses

Cybersecurity Snapshot: What Looms on Cyberland’s Horizon? Here’s What Tenable Experts Predict for 2025

Guardz releases AI-powered phishing protection solution for SMEs, MSPs

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Nvidia hackers release code-signing certificates that malware can abuse

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

Legendary Entertainment Relies on MVISION CNAPP Across Its Multicloud Environment

Why do CISOs Keep Quitting on Florida?

Uber Breach Guilty Verdict, Mandatory Password Expiration, Fake Executive Profiles on LinkedIn

Equifax Makes Security Controls Framework Available to All for Free

Our Top 10 Cybersecurity Podcast Episodes

ChatGPT Security and Privacy Issues Remain in GPT-4

SolarWinds hires CISO from within, enabling a quicker security transformation

Podcast Episode 137 Sponsored by Code42: GirlScouts to the Rescue and Rethinking Enterprise DLP

Top Cybersecurity Accounts to Follow on Twitter

Cybersecurity Awareness Month: Security Experts Reflect on Safety

Key Cybersecurity Trends for 2025. My Predictions

Stay Connected