Accountability, CISO and Cyber threats - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Part two of a four-part series The explosion of AI-driven phishing, insider threats, and business logic abuse has forced a shift toward more proactive, AI-enhanced defenses. Gen AI threats and quantum computing exposures must be accounted for. The drivers are intensifying. Attackers arent hacking in theyre logging in.

Cyber threats

Cyber threats CISO IoT Phishing

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

As organizations continue facing escalating cyber threats, how they communicate multiplying and rapidly morphing cyber exposures – in essence how much they choose to abide by industry standards and embrace ethical practices — remains under intense scrutiny. Some have moved away from the CISO role.

CISO

CISO CSO Risk Cyber threats

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

SecureWorld News

JANUARY 21, 2025

As I was spraying Pestiea DIY pest spray subscription servicearound my home this weekend (sun's out, spray gun's out), I was thinking about the correlation of this home perimeter defense to what CISOs and their teams do to keep their organizations secure. CISO takeaway: Effective cybersecurity isn't a generic solution.

CISO

CISO Cybersecurity Cyber threats Education

CISO Perspectives on Complying with Cybersecurity Regulations

The Hacker News

APRIL 5, 2024

Compliance requirements are meant to increase cybersecurity transparency and accountability. As cyber threats increase, so do the number of compliance frameworks and the specificity of the security controls, policies, and activities they include.

CISO

CISO Cybersecurity Cyber threats Accountability

Operation Heart Blocker: International Police Disrupt Phishing Network

SecureWorld News

FEBRUARY 3, 2025

BEC attacks: a growing financial and security risk BEC remains one of the most financially devastating cyber threats, with losses worldwide reaching into the billions. Organizations should enforce least privilege access and enable multi-factor authentication (MFA) on all accounts that have it available.

Phishing

Phishing Cybercrime Scams Authentication

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. The growing sophistication of cyber threats demands robust identity assurance solutions that include multifactor authentication, risk monitoring and adaptive verification collectively forming multi-factor verification (MFV.)

Risk

Risk Threat Detection Technology Phishing

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

SecureWorld News

MAY 2, 2024

The role of a Chief Information Security Officer (CISO) is undeniably complex, yet incredibly rewarding. However, the challenges faced by CISOs are mounting, exacerbated by the evolving threat landscape and regulatory environment. The recent release of NIST's Cybersecurity Framework version 2.0

CISO

CISO Government CSO Artificial Intelligence

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

SecureWorld News

DECEMBER 12, 2024

James Scobey, CISO at Keeper Security, stated, "The reported downtime of online ordering demonstrates how even temporary interruptions can have a significant impact on revenue and brand reputation." The Krispy Kreme hack is a sobering reminder that no industry is immune to cyber threats.

Password Management

Password Management Passwords CISO Cybersecurity

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. Regularly audit and remove unused credentials and accounts.

Ransomware

Ransomware IoT Encryption Social Engineering

Today’s CISO Insights – How to Tackle the Quantum Threat

CyberSecurity Insiders

MAY 3, 2023

This is why CISOs everywhere should be concerned. CISOs should begin to familiarize themselves with these and evaluate their potential suitability for adoption. Once that ecosystem is understood and its supporting cryptology has been identified, CISOs should develop a plan that considers quantum-resistant technology.

CISO

CISO Identity Theft Encryption Social Engineering

CISOs Getting Back to 'Business as Usual,' Proofpoint Survey Shows

SecureWorld News

MAY 9, 2023

Proofpoint today released its annual report titled, "2023 Voice of the CISO: Global insights into CISO challenges, expectations and priorities," in which it surveyed 1,600 CISOs sharing their experiences over the past year and their outlook for what is to come for the cybersecurity industry.

CISO

CISO Cyber Attacks DDOS Cyber Risk

Is fighting cybercrime a losing battle for today’s CISO?

CyberSecurity Insiders

JANUARY 12, 2022

In this blog, we’ll look at the root causes of concern for today's CISO and share some practical strategies to deter cybercriminals. The CISO role can be an unenviable one. Is the cyber deck stacked against today's CISO? As CISO, you are usually accountable for the security of the application fleet.

CISO

CISO Cybercrime Risk Healthcare

5 Ways to Strengthen the Weak Link in Cybersecurity

IT Security Guru

JUNE 7, 2024

Foster accountability among your team by employing software that prompts users to install updates on their individual devices. In the digital realm, passwords act as the gatekeepers to systems, email accounts, and websites, akin to the passcodes of the past that granted access.

Cybersecurity

Cybersecurity CISO Passwords Backups

Unmasking the Cracks of Today’s Cyber Defence

Jane Frankland

OCTOBER 31, 2023

C-suites across all industries, from traditional finance to the latest “unicorns” emerging in the fintech industry, are facing a formidable challenge: how to protect their business and customer data against growing cyber threats. As a CISO or ITDM, the cyber defence challenges you face in your business couldn’t be tougher.

CISO

CISO Threat Detection Cyber threats Cybercrime

NEW TECH SNAPSHOT: The role of ‘MSSPs’ in helping businesses manage cybersecurity

The Last Watchdog

SEPTEMBER 6, 2022

The new normal CISOs face today is something of a nightmare. They must take into account a widely scattered workforce and somehow comprehensively mitigate new and evolving cyber threats. Network security has been radically altered, two-plus years into the global pandemic.

Cloud Migration

Cloud Migration Cybersecurity Marketing CISO

Cybersecurity Insights with Contrast CISO David Lindner | 10/11/24

Security Boulevard

OCTOBER 11, 2024

Insight #1: CISOs, you need insurance coverage According to German multinational insurance company Munich Re, the global cyber insurance market is expected to rise from $14 billion to $29 billion by 2027. Rather, the onus is on the providers to do so: e.g., require multifactor authentication (MFA) for all accounts, as a starting point.

CISO

CISO Insurance Cyber Insurance Cybersecurity

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Chief Information Security Officers (CISOs) across the Global 2000 and Fortune 1000 are obsessed with protecting the workforce endpoints as critical vulnerabilities in the cybersecurity and risk management posture of their enterprises. These actions and their potential for disaster cause CISOs to greet every day with an anticipatory grimace.

Security Awareness

Security Awareness Risk CISO Cybersecurity

The Resurgence of Zero Trust: Why it’s Essential for CISOs and CIOs to Include in Their Strategy

CyberSecurity Insiders

JUNE 8, 2023

Zero trust emphasizes the importance of micro-segmentation, multi-factor authentication, encryption, and monitoring of user behavior to prevent lateral movement within the network and detect and respond to potential threats in real time. Importance for CISOs and CIOs Zero trust is no longer just a buzzword for CISOs and CIOs.

CISO

CISO Cyber threats Risk Cybersecurity

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SecureWorld News

NOVEMBER 16, 2023

In a move that has raised concerns about the company's cybersecurity posture, Amy Bogac, Clorox's CISO, has stepped down from her position. For CISOs, the 'C' in the title designates a considerable degree of responsibility for material business value.

CISO

CISO Cybersecurity CSO Risk

SHARED INTEL: Here’s why CEOs who’ve quit Tweeting are very smart to do so

The Last Watchdog

MARCH 6, 2020

Cyber threats now command the corporate sector’s full attention. Corporate consultancy PwC’s recent poll of 1,600 CEOs worldwide found that cyber attacks are now considered the top hinderance to corporate performance, followed by the shortage of skilled workers and the inability to keep up with rapid tech advances.

CISO

CISO VPN Digital transformation Internet

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Thales Cloud Protection & Licensing

JANUARY 16, 2025

It emphasizes the need for encryption, data governance, and secure information-sharing practices to prevent and mitigate cyber threats. More than any other FinServ regulation, it includes unique components, such as the requirement for a Chief Information Security Officer (CISO) and an annual compliance certification.

Financial Services

Financial Services Encryption Insurance Government

Port of Seattle, Including Sea-Tac Airport, Disrupted by Cyber Attack

SecureWorld News

AUGUST 26, 2024

The incident underscores the increasing vulnerability of critical infrastructure to cyber threats, particularly as digital systems become more integral to operations. The CISO panel—the opening keynote on Day 2—features Maggie Amato , Sr.

Cyber Attacks

Cyber Attacks CISO Risk Cyber threats

A Cybersecurity Role Has Topped List of Best Jobs

CyberSecurity Insiders

JANUARY 14, 2022

The list ranks the 100 best jobs across 17 sectors including business, healthcare and technology, taking into account factors such as growth potential, salary and work-life balance. Having a cybersecurity position at the top of the list is exciting for a young industry that has struggled with perception problems.

Cybersecurity

Cybersecurity Healthcare Information Security CISO

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

The Last Watchdog

AUGUST 2, 2018

Schrade r: The legacy is a group of CISOs from companies like Facebook, Google, Microsoft, Cisco, Oracle, Mastercard, Visa, Bank of America, Wells Fargo and a lot of others. LW : What are you doing for small and medium sized businesses? LW: What should we all understand about cyber threats as they exist today?

Internet

Internet Internet Cybersecurity Education

Impersonating Executives’ LinkedIn Profiles Presents a Significant Challenge for CISOs

Security Boulevard

OCTOBER 31, 2022

LinkedIn scams that target the public accounts of executives are on the rise and contributed to more than 40% of all phishing and social media cyber incidents in the second quarter of 2022. The post Impersonating Executives’ LinkedIn Profiles Presents a Significant Challenge for CISOs appeared first on Security Boulevard.

CISO

CISO Media Scams Phishing

Aircraft Cybersecurity: New Report About the FAA

SecureWorld News

OCTOBER 13, 2020

In an interview at our own SecureWorld Cincinnati conference, Deneen DeFiore, former VP & CISO at GE Aviation and current CISO at United Airlines, discussed the importance of cybersecurity and aviation. This information is shared with pilots, maintenance crews, other airplanes, and air traffic controllers.

Cybersecurity

Cybersecurity Risk CISO Cyber threats

CISO’s Guide to Presenting Cybersecurity to Board Directors

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

Cybersecurity Is the Most Prevalent ESG Issue We're Not Talking About

SecureWorld News

AUGUST 14, 2022

A data breach leading to PII or PHI theft is not just a loss of trust and loss of revenue problem to the organization, rather an immediate impact to the individual citizens and the cyber threat that they face. Register here to watch the session on-demand.

Cybersecurity

Cybersecurity Data breaches Accountability Cyber Risk

New York Enhances Cybersecurity Regulations of Financial Services

SecureWorld News

NOVEMBER 14, 2023

These amendments, which represent the most substantial revisions since the initial implementation of Part 500 in 2017, aim to address the evolving cybersecurity landscape and equip regulated entities with the necessary tools to combat cyber threats.

Financial Services

Financial Services Cybersecurity CISO Risk

WEF Outlines Path to Cyber Resilience for Manufacturing Sector

SecureWorld News

MAY 29, 2024

The manufacturing sector faces an increasingly daunting cyber threat landscape that puts production operations, intellectual property, and entire supply chains at risk. The risk is too great, and key business partnerships are required," said Amy Bogac , former CISO at The Clorox Company. "If trillion annually. "

Manufacturing

Manufacturing CISO Artificial Intelligence Cyber threats

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

SecureWorld News

DECEMBER 11, 2023

Sam Masiello , CISO at The Anschutz Corporation, had this to say back in July: "I would expect that many CISOs today are feeling as if their job just got harder and now has a brighter spotlight shining specifically on them. I would think that boards would want to have that experience, even though it is somewhat difficult to come by.

CISO

CISO Risk Cybersecurity Government

On Trust and Transparency in Detection

Anton on Security

SEPTEMBER 14, 2022

the cornerstone of all effective cyber threat detection systems is accurate detection. And more importantly, as we seek to deploy more autonomous threat response processes, it doesn’t matter how much malicious activity is blocked if the system is also incorrectly blocks benign traffic sometimes. Now, who is accountable?

Threat Detection

Threat Detection CISO Ransomware Accountability

CopperStealer malware infected up to 5,000 hosts per day over first three months of 2021

SC Magazine

MARCH 19, 2021

“Credentials make the world go round when it comes to the current threat landscape and this shows the lengths that threat actors will take to steal valuable credential data. CopperStealer is going after big service provider logins like social media and search engine accounts to spread additional malware or other attacks.

Malware

Malware Media Passwords Accountability

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

Security Boulevard

JANUARY 18, 2024

This demand leads to the development of cybersecurity predictions which must take into account underlying drivers of the attackers, defenders, and technology where the battles will play out. The highly controversial regulation took effect at the end of 2023 and publicly owned businesses in 2024 are now held accountable for compliance.

Risk

Risk Cybersecurity CISO Technology

NEW TECH: Devolutions’ ‘PAM’ solution helps SMBs deal with rising authentication risks

The Last Watchdog

MARCH 10, 2020

Related : SMBs are ill-equipped to deal with cyber threats Without a cohesive cybersecurity framework, SMBs are falling further behind as digital transformation, or DX, ramps up. I spoke with Maurice Côté, VP Business Solutions, and Martin Lemay, CISO, of Devolutions , at the RSA 2020 Conference in San Francisco recently.

Authentication

Authentication Risk Digital transformation Passwords

Spotlight Podcast: QOMPLX CISO Andy Jaquith on COVID, Ransomware and Resilience

The Security Ledger

JULY 22, 2020

In this Spotlight podcast* we’re joined by Andrew Jaquith, the CISO at QOMPLX to talk about how the COVID pandemic is highlighting longstanding problems with cyber risk management and cyber resilience. Andy is an amazing resource on all matters cyber security. Read the whole entry. » New Tech Meets Old Tools.

CISO

CISO Cyber Risk Ransomware Risk

In Memory of Amit Yoran: A Visionary Cybersecurity Leader

SecureWorld News

JANUARY 6, 2025

His efforts in these roles established him as a key figure in defending critical infrastructure and responding to emerging cyber threats. James Scobey, CISO at Keeper Security, emphasized Yoran's foundational role in shaping federal cybersecurity initiatives: "His leadership was instrumental in establishing US-CERT.

Cybersecurity

Cybersecurity CISO Cyber threats Accountability

Cybersecurity’s Newest Advocate: the CFO

Approachable Cyber Threats

OCTOBER 18, 2021

Traditionally, this involves overseeing both the finance and accounting divisions and its cadre of personnel. Recently, however, this has evolved to add a new responsibility: collaboration with the Chief Information Officer (CIO) and the Chief Information Security Officer (CISO). Don’t know where to get started?

CISO

CISO Risk Cybersecurity Phishing

Snowflake Data Breach Rocks Ticketmaster, Live Nation, and Others

SecureWorld News

JUNE 3, 2024

This allowed the threat actor to access and exfiltrate data hosted on the Snowflake platform across multiple customer accounts. Brad Jones, CISO at Snowflake, issued a Joint Statement regarding Preliminary Findings in Snowflake Cybersecurity Investigation on its Snowflake Forums. It did not contain sensitive data.

Data breaches

Data breaches Authentication Accountability Passwords

Boards Challenged to Embrace Cybersecurity Oversight

Security Boulevard

MARCH 13, 2025

Many regulatory bodies, insurance providers, business partners, and customers take cybersecurity very seriously and now hold the CEO and Board accountable. CISOs have become a focal point, being the leader and subject matter expert, often providing regular status reports and conversing directly with the Board.

Cybersecurity

Cybersecurity CISO Cyber Risk Risk

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

The New York Department of Financial Services (NYDFS) Cybersecurity Regulation, officially known as 23 NYCRR Part 500, is a forward-thinking framework designed to protect consumers sensitive data while holding businesses accountable for their cybersecurity practices. The program should be tailored to your specific business risks.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

SecureWorld News

FEBRUARY 29, 2024

In a LinkedIn comment regarding a blog post about BlackCat's retaliatory move on HealthcareInfoSecurity , Krista Arndt , CISO at United Musculoskeletal Partners, said: " Retaliation is so much fun. These organizations, previously held hostage by the insidious ransomware, were suddenly liberated from the clutches of the cyber threat.

Healthcare

Healthcare Ransomware Cyber threats Encryption

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

As the economy grows increasingly data-driven, and as cyber threats proliferate, business leaders recognize they must find a more effective approach to protecting their intellectual property, financial records, employee and customer information, and other sensitive data — while also ensuring their employees’ access to that data is not hindered.

Encryption

Encryption Data privacy Cloud Migration Risk

Inflation Is Making Cybersecurity Even More Challenging for Leaders

SecureWorld News

OCTOBER 19, 2023

All of this makes it more difficult for organizations to protect themselves from new and emerging cyber threats. I think it requires taking a step back and assessing what you can do with less," said Chris Roberts, CISO and Senior Director at Boom Supersonic. It is a figure that has decreased from 11.1%

Cybersecurity

Cybersecurity CISO Education Phishing

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Trending Sources

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

CISO Perspectives on Complying with Cybersecurity Regulations

Operation Heart Blocker: International Police Disrupt Phishing Network

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

From Compliance to Resilience: Cyber Governance as the Cornerstone of CISO Strategy

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Today’s CISO Insights – How to Tackle the Quantum Threat

CISOs Getting Back to 'Business as Usual,' Proofpoint Survey Shows

Is fighting cybercrime a losing battle for today’s CISO?

5 Ways to Strengthen the Weak Link in Cybersecurity

Unmasking the Cracks of Today’s Cyber Defence

NEW TECH SNAPSHOT: The role of ‘MSSPs’ in helping businesses manage cybersecurity

Cybersecurity Insights with Contrast CISO David Lindner | 10/11/24

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

The Resurgence of Zero Trust: Why it’s Essential for CISOs and CIOs to Include in Their Strategy

Clorox's Cybersecurity Chief Departs Amidst Incident Recovery Efforts

SHARED INTEL: Here’s why CEOs who’ve quit Tweeting are very smart to do so

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Port of Seattle, Including Sea-Tac Airport, Disrupted by Cyber Attack

A Cybersecurity Role Has Topped List of Best Jobs

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

Impersonating Executives’ LinkedIn Profiles Presents a Significant Challenge for CISOs

Aircraft Cybersecurity: New Report About the FAA

CISO’s Guide to Presenting Cybersecurity to Board Directors

Cybersecurity Is the Most Prevalent ESG Issue We're Not Talking About

New York Enhances Cybersecurity Regulations of Financial Services

WEF Outlines Path to Cyber Resilience for Manufacturing Sector

December 15 Marks Deadline for SEC's New Cyber Disclosure Rules

On Trust and Transparency in Detection

CopperStealer malware infected up to 5,000 hosts per day over first three months of 2021

The Unseen Threats: Anticipating Cybersecurity Risks in 2024

NEW TECH: Devolutions’ ‘PAM’ solution helps SMBs deal with rising authentication risks

Spotlight Podcast: QOMPLX CISO Andy Jaquith on COVID, Ransomware and Resilience

In Memory of Amit Yoran: A Visionary Cybersecurity Leader

Cybersecurity’s Newest Advocate: the CFO

Snowflake Data Breach Rocks Ticketmaster, Live Nation, and Others

Boards Challenged to Embrace Cybersecurity Oversight

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

BlackCat Eats into Its Nine Lives, Threatens More Attacks on Hospitals

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Inflation Is Making Cybersecurity Even More Challenging for Leaders

Stay Connected