Risk and Security Awareness - Cyber Security Informer

Safeguarding Cyber Insurance Policies With Security Awareness Training

Security Boulevard

OCTOBER 31, 2024

The post Safeguarding Cyber Insurance Policies With Security Awareness Training appeared first on Security Boulevard. With cybersecurity threats continuing to evolve at an accelerated pace, organizations need to ensure that their cyber insurance policies remain active at all times.

Cyber Insurance

Cyber Insurance Security Awareness Insurance Cybersecurity

Qualys Unfurls Risk Operations Center Platform

Security Boulevard

OCTOBER 10, 2024

Qualys this week added a risk operations center (ROC) to its portfolio to make it simpler to identify potential threats to the business and centrally manage remediation efforts. The post Qualys Unfurls Risk Operations Center Platform appeared first on Security Boulevard.

Risk

Risk Security Awareness Cybersecurity

How to improve security awareness and training for your employees

Tech Republic Security

OCTOBER 27, 2022

Just training people periodically using generic content won’t help them or your organization reduce the risk of security threats, says Egress. The post How to improve security awareness and training for your employees appeared first on TechRepublic.

Security Awareness

Security Awareness Risk Phishing

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Security Boulevard

JANUARY 8, 2025

The post Insecure Medical Devices Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard. IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings.

Risk

Risk Social Engineering Internet Internet

Phishing Threats, GenAI Among Top Cybersecurity Risks in 2025

Security Boulevard

JANUARY 10, 2025

The post Phishing Threats, GenAI Among Top Cybersecurity Risks in 2025 appeared first on Security Boulevard. According to a Netskope report, phishing attacks surged in 2024, with enterprise employees clicking on phishing links at a rate nearly three times higher than in 2023. The study found phishing campaigns have evolved.

Phishing

Phishing Risk Cybersecurity Security Awareness

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Last Watchdog

MAY 13, 2025

Can you briefly explain what makes Strategic Performance Intelligence different from current governance, risk and compliance ( GRC ) or dashboard approaches? Unfortunately, Im seeing more cases where the CISO is quietly replaced by a Head of Cybersecurity with a mandate to manage risk and compliance. Its a structural one.

CISO

CISO Risk Cybersecurity Government

GUEST ESSAY: Leveraging DevSecOps to quell cyber risks in a teeming threat landscape

The Last Watchdog

JANUARY 2, 2024

In today’s digital landscape, organizations face numerous challenges when it comes to mitigating cyber risks. Here are some of the key challenges that organizations encounter in their efforts to mitigate cyber risks in the current environment. Lack of security awareness and education.

Cyber Risk

Cyber Risk Risk Security Awareness Education

Defining Cyber Risk Assessment and a Compliance Gap Analysis and How They Can be Used Together

Security Boulevard

NOVEMBER 25, 2024

A cyber risk assessment is a tool that helps organizations identify and prioritize risks associated with threats that are relevant to their unique environment. The post Defining Cyber Risk Assessment and a Compliance Gap Analysis and How They Can be Used Together appeared first on Security Boulevard.

Cyber Risk

Cyber Risk Risk Security Awareness Government

Qualys TotalAppSec Strengthens Application Risk Management

Security Boulevard

FEBRUARY 6, 2025

Qualys introduced TotalAppSec, an AI-powered application risk management solution designed to unify API security, web application scanning and web malware detection across on-premises, hybrid and multi-cloud environments. The post Qualys TotalAppSec Strengthens Application Risk Management appeared first on Security Boulevard.

Risk

Risk Malware Security Awareness Cybersecurity

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

Security Boulevard

MAY 8, 2025

A survey by CrowdStrike finds the gap between SMB awareness of cyber threats and efforts by them to protect themselves is widening, with not enough of them spending the money needed on AI and other tools to defend against ransomware and other attacks.

Risk

Risk Cyber threats Ransomware Data privacy

5 Tips to Translate High-Level Risk Into Daily Operations

Security Boulevard

DECEMBER 9, 2024

By following these five tips and leveraging a cybersecurity data fabric with an automated metrics layer, organizations can unify their risk assessment and operational efforts, leading to more cohesive and efficient risk management.

Risk

Risk Cybersecurity Security Awareness

Corporate Layoffs Put Company IP at Risk

Security Boulevard

APRIL 7, 2025

The post Corporate Layoffs Put Company IP at Risk appeared first on Security Boulevard. With corporate layoffs and government workforce reductions frequently making headlines, leaders often underestimate the potential for massive data loss and intellectual property liability.

Risk

Risk Government Backups Security Awareness

Advancing Security Training With Human Risk Management

Security Boulevard

MAY 14, 2025

Cybersecurity education is evolving from simple knowledge transfer to measurable risk reduction as the human risk factor is recognized. The post Advancing Security Training With Human Risk Management appeared first on Security Boulevard.

Risk

Risk Education Cybersecurity Security Awareness

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

But amidst all these flashy, futuristic threats, the biggest cybersecurity risk remains the same as it's always beenhumans. The elephant in the (server) room We've all seen the headlines: AI is taking over, deepfakes are fooling the masses, quantum computing will break encryption! And I'm not talking about the shadowy hackers in hoodies.

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Jane Frankland

JANUARY 19, 2025

Cybersecurity Risks As people become more selective in their engagement of technology, the behavioural changes were now experiencing have significant implications for cybersecurity. Deepfake Technology Amplifying Risks: The evolution and democratisation of deepfake technology have blurred the line between reality and fabrication.

Cybersecurity

Cybersecurity Technology Scams Risk

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Jane Frankland

APRIL 15, 2025

Instead of focusing on accessible, impactful solutions like human risk management, we gravitate toward shiny new technologiestools and systems that feel exciting, measurable, and comfortably within our domain of expertise. The hard truth is that technology alone cant fix the root causes of cyber risk.

Risk

Risk Technology Cybersecurity Security Awareness

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Jane Frankland

APRIL 18, 2025

Organisations invest heavily in governance, risk, and compliance (GRC) and risk management efforts while neglecting foundational elements like leadership and culture. Risk Management Brings Clarity (Belonging and Love Needs) The middle of the hierarchy addresses our need for connection and clarity. The result?

Cybersecurity

Cybersecurity Technology Risk Security Awareness

Zero-Click Flaw in Microsoft Copilot Illustrates AI Agent, RAG Risks

Security Boulevard

JUNE 13, 2025

Aim Security researchers found a zero-click vulnerability in Microsoft 365 Copilot that could have been exploited to have AI tools like RAG and AI agents hand over sensitive corporate data to attackers simply by issuing a request for the information in a specially worded email. Microsoft fixed the security flaw.

Risk

Risk Data privacy Security Awareness Mobile

Beyond Traditional Vendor Management: Navigating AI Risks in the Supply Chain

Security Boulevard

MAY 5, 2025

There are many ways in which AI is increasing risk, extending beyond third parties to affect all aspects of our security programs. The post Beyond Traditional Vendor Management: Navigating AI Risks in the Supply Chain appeared first on Security Boulevard.

Risk

Risk Security Awareness Cybersecurity

The Decentralized SaaS Adoption Trend: Why This Poses a Risk to Organizations and Identities

Security Boulevard

DECEMBER 3, 2024

When departments independently adopt SaaS applications, the security team often loses visibility and control, making these environments highly vulnerable to attacks. The post The Decentralized SaaS Adoption Trend: Why This Poses a Risk to Organizations and Identities appeared first on Security Boulevard.

Risk

Risk Security Awareness Cybersecurity

Google Cloud Takes Steps to Guard Against Quantum Security Risks

Security Boulevard

FEBRUARY 24, 2025

Google Cloud is putting quantum-safe digital signatures into its Key Management Service, the latest steps int the cloud giant's plans to adopt post-quantum cryptography through its portfolio to mitigate security risks that likely will come with the arrival of fault-tolerant quantum computers.

Risk

Risk Data privacy Security Awareness Cybersecurity

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. Related: Leveraging security standards to protect your company. Create security awareness for employees. One of the most important ways to protect against data breaches is to increase employee security awareness.

Security Awareness

Security Awareness Passwords Data breaches Cybersecurity

GUEST ESSAY: Cyber hygiene need not be dreary — why engaging training is much more effective

The Last Watchdog

APRIL 10, 2023

Instilling a culture of cyber security at your organization requires your people to maintain a high level of knowledge and awareness about cyber security risks—and that takes an effective, impactful, and ongoing security awareness program. Let’s take a closer look. Make it engaging!

Security Awareness

Security Awareness Risk Media Information Security

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

Boeing itself was targeted by the LockBit ransomware platform in 2023, facing a $200 million ransom demand, while its unit Jeppesen, a provider of flight navigation tools, suffered a major ransomware incident in 2022, delaying flight-planning services and illustrating the cascading risk of a single provider outage.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

When Security Takes a Backseat to Productivity

Krebs on Security

JUNE 17, 2020

A key phrase in the CIA’s report references deficiencies in “compartmentalizing” cybersecurity risk. Also, because employees tend to be the most abundant security weakness in any organization, instituting some kind of continuing security awareness training for all employees is a good idea.

Data breaches

Data breaches Security Awareness Surveillance Media

Striking a Balance Between Business Growth, Risk Management and Cybersecurity

Security Boulevard

AUGUST 16, 2024

Some recommendations and best practices to help organizations strike a balance between business growth, risk management and cybersecurity. The post Striking a Balance Between Business Growth, Risk Management and Cybersecurity appeared first on Security Boulevard.

Risk

Risk Cybersecurity Security Awareness

BYOD Policies Fueling Security Risks

Security Boulevard

SEPTEMBER 12, 2024

The use of employee mobile devices at work, or bring your own device (BYOD), is a significant and growing threat to organizational security. The post BYOD Policies Fueling Security Risks appeared first on Security Boulevard.

Risk

Risk Mobile Social Engineering Security Awareness

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cybersecurity

Cybersecurity Cyber Risk Risk Artificial Intelligence

Security Professionals Cite AI as Top Security Risk

Security Boulevard

SEPTEMBER 26, 2024

Artificial intelligence (AI) is emerging as a top concern in the cybersecurity world, with 48% of respondents identifying it as the most significant security risk facing their organizations, according to a HackerOne survey of 500 security professionals.

Artificial Intelligence

Artificial Intelligence Risk Cybersecurity Security Awareness

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk

Security Boulevard

JULY 1, 2024

The post ‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk appeared first on Security Boulevard. SolarWinds hackers strike again: Remote access service hacked—by APT29, says TeamViewer.

Risk

Risk Hacking Social Engineering Authentication

Strategies for Mitigating LLM Risks in Cybersecurity

Security Boulevard

AUGUST 5, 2024

LLMs are different from other tools and different approaches are required to mitigate their risks involving new security technologies. The post Strategies for Mitigating LLM Risks in Cybersecurity appeared first on Security Boulevard.

Risk

Risk Cybersecurity Technology Security Awareness

AI Cyberattacks Rise but Businesses Still Lack Insurance

Security Boulevard

OCTOBER 30, 2024

Cybersecurity is a leading concern for risk managers as AI-related cyber risks surge, and despite growing investments, many businesses still lack comprehensive cyber insurance, according to a Nationwide survey. The post AI Cyberattacks Rise but Businesses Still Lack Insurance appeared first on Security Boulevard.

Insurance

Insurance Cyber Insurance Cyber Risk Risk

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk

Risk Social Engineering Data privacy Software

Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk

Security Boulevard

JUNE 13, 2024

The post Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk appeared first on Security Boulevard. Location tracking service leaks PII, because—incompetence? Seems almost TOO easy.

Risk

Risk Social Engineering Data privacy Engineering

Q-Day Prepping: What Businesses Can Do Now to Address Quantum Security Risks

Security Boulevard

JULY 12, 2024

We're primed to face another Y2K-like event: Q-Day, the point at which quantum computers become capable of breaking traditional encryption, totally upending security as we know it. The post Q-Day Prepping: What Businesses Can Do Now to Address Quantum Security Risks appeared first on Security Boulevard.

Risk

Risk Encryption Security Awareness Government

The Hidden Security Risk on Our Factory Floors

Security Boulevard

APRIL 25, 2025

The post The Hidden Security Risk on Our Factory Floors appeared first on Security Boulevard. ICS and SCADA (supervisory control and data acquisition) networks were built as isolated systems, never meant to connect to the internet.

Risk

Risk Internet Internet Digital transformation

Networking Equipment Riddled With Software Supply Chain Risks

Security Boulevard

JULY 26, 2024

The post Networking Equipment Riddled With Software Supply Chain Risks appeared first on Security Boulevard. Outdated software components often contain vulnerabilities that have been discovered and are well-understood by threat actors.

Software

Software Risk Security Awareness Cybersecurity

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

Security Boulevard

SEPTEMBER 23, 2024

Understanding business risk empowers CISOs to provide a comprehensive picture of the business’ cloud security posture, which will help teams detect, prioritize and remediate threats to stop cloud and app-related breaches. The post Cloud Security Risk Prioritization is Broken. appeared first on Security Boulevard.

Risk

Risk CISO Security Awareness Cybersecurity

QR Codes: Convenience or Cyberthreat?

Trend Micro

JULY 22, 2024

Security awareness and measures to detect and prevent sophisticated risks associated with QR code-based phishing attacks (quishing)

Security Awareness

Security Awareness Phishing Risk Artificial Intelligence

Olympic Gold at Risk: AI Cybercriminals Target 2024 Games.

Security Boulevard

JULY 15, 2024

The post Olympic Gold at Risk: AI Cybercriminals Target 2024 Games. appeared first on Security Boulevard.

Risk

Risk Social Engineering Security Awareness Engineering

Majority of SaaS Applications, AI Tools Unmanaged

Security Boulevard

OCTOBER 24, 2024

Unmanaged software as a service (SaaS) applications and AI tools within organizations are posing a growing security risk as vulnerabilities increase, according to a report from Grip Security. The post Majority of SaaS Applications, AI Tools Unmanaged appeared first on Security Boulevard.

Software

Software Risk Security Awareness Cybersecurity

Effective Third-Party Risk Management Under PCI DSS 4.0

Security Boulevard

AUGUST 5, 2024

The Payment Card Industry Data Security Standard (PCI DSS) aims to improve credit, debit and cash card transaction security and protect cardholders from breaches of their personal information. The post Effective Third-Party Risk Management Under PCI DSS 4.0 appeared first on Security Boulevard.

Risk

Risk Security Awareness Government Cybersecurity

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Security Boulevard

FEBRUARY 6, 2024

The post Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk appeared first on Security Boulevard. By aligning priorities into a shared game plan, HR and IT can finally set their organizations up to defend against modern cyberthreats.

Risk

Risk Cybersecurity Social Engineering Cyber Risk

Safeguarding Cyber Insurance Policies With Security Awareness Training

Qualys Unfurls Risk Operations Center Platform

Trending Sources

How to improve security awareness and training for your employees

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Phishing Threats, GenAI Among Top Cybersecurity Risks in 2025

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

GUEST ESSAY: Leveraging DevSecOps to quell cyber risks in a teeming threat landscape

Defining Cyber Risk Assessment and a Compliance Gap Analysis and How They Can be Used Together

Qualys TotalAppSec Strengthens Application Risk Management

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

5 Tips to Translate High-Level Risk Into Daily Operations

Corporate Layoffs Put Company IP at Risk

Advancing Security Training With Human Risk Management

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

What Maslow’s Hierarchy of Needs Reveals About Cybersecurity Flaws

Zero-Click Flaw in Microsoft Copilot Illustrates AI Agent, RAG Risks

Beyond Traditional Vendor Management: Navigating AI Risks in the Supply Chain

The Decentralized SaaS Adoption Trend: Why This Poses a Risk to Organizations and Identities

Google Cloud Takes Steps to Guard Against Quantum Security Risks

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

GUEST ESSAY: Cyber hygiene need not be dreary — why engaging training is much more effective

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

When Security Takes a Backseat to Productivity

Striking a Balance Between Business Growth, Risk Management and Cybersecurity

BYOD Policies Fueling Security Risks

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Security Professionals Cite AI as Top Security Risk

Sisense Hacked: CISA Warns Customers at Risk

‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk

Strategies for Mitigating LLM Risks in Cybersecurity

AI Cyberattacks Rise but Businesses Still Lack Insurance

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk

Q-Day Prepping: What Businesses Can Do Now to Address Quantum Security Risks

The Hidden Security Risk on Our Factory Floors

Networking Equipment Riddled With Software Supply Chain Risks

Cloud Security Risk Prioritization is Broken. Here’s How to Fix It.

QR Codes: Convenience or Cyberthreat?

Olympic Gold at Risk: AI Cybercriminals Target 2024 Games.

Majority of SaaS Applications, AI Tools Unmanaged

Effective Third-Party Risk Management Under PCI DSS 4.0

Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk

Stay Connected