Jane Frankland

FEBRUARY 7, 2025

But as a CISO or cyber risk owner, it’s not just about locking down sensitive informationits about doing it without slowing down your people. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

Cyber Risk 130

Cyber Risk CISO Risk Encryption 130

The Last Watchdog

DECEMBER 16, 2021

At its core, Zero Trust is all about authenticating and authorizing access policies that have been designed to provide the least privilege, for the least amount of time, to the least amount of assets. The ascendency of CISOs. Prior to his career in information technology, Lance was a professional mountain guide.

CISO 262

CISO Ransomware Risk Authentication 262

SecureWorld News

DECEMBER 12, 2024

Thankfully, customers can still visit physical stores to purchase their favorite treats, but the incident reminds us of our operational reliance on interconnected technologies. Strong Password Management: Enforce strong, unique passwords and multi-factor authentication to protect against unauthorized access.

Password Management 108

Password Management Passwords CISO Cybersecurity 108

IT Security Guru

FEBRUARY 28, 2022

As CISOs embark on their transformational journeys, identifying these areas of weakness should be the top priority. This has led to CISOs shifting how they approach protecting the corporate perimeter with additional controls and monitoring tools being used to scan any access to the network. Cloud dominance .

CISO 97

CISO Digital transformation Artificial Intelligence Risk 97

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. An integration with Cigent Technology is now available for Secure Endpoint customers to integrate with. Kenna has a healthy 3rd Party ecosystem of technology partners.

Technology 144

Technology Firewall VPN Authentication 144

Security Boulevard

DECEMBER 30, 2024

In this post, we look at the enforcement actions the SEC has taken and what public company CISOs should do to stay in compliance. Check Point Software Technologies Ltd. Exposure management can help meet the SEC requirements So what can a CISO do about this? For example, in October 2024, the SEC fined Unisys Corp.,

Cybersecurity 85

Cybersecurity Cyber Risk CISO Risk 85

The Last Watchdog

DECEMBER 13, 2023

I had the opportunity to sit down with DigiCert’s Jason Sabin , Chief Technology Officer and Avesta Hojjati , Vice President of Engineering to chew this over. And PKI is the best technology we’ve got to get us there. We met at DigiCert Trust Summit 2023.

Encryption 311

Encryption Technology CISO IoT 311

Duo's Security Blog

FEBRUARY 8, 2021

Setting Up an Instant Registration Database You don’t know who’s going to sign up and register, and you don’t have time to integrate it with any databases you have with citizen data in order to uniquely identify and authenticate them. This does a bit of authentication by proving possession of the email address that was registered.

CISO 120

CISO Passwords Authentication Accountability 120

CyberSecurity Insiders

JUNE 11, 2023

Zero Trust is a cybersecurity framework that can greatly support Chief Information Security Officers (CISOs) and Chief Technology Officers (CTOs) in their roles of securing organizational systems and data. Simplified Compliance: Compliance with industry regulations and data protection laws is a significant concern for CISOs and CTOs.

CISO 116

CISO Technology Architecture Risk 116

Security Boulevard

OCTOBER 11, 2024

Passwordless Authentication without Secrets! This highlights an increasing demand for advanced authentication methods like passkeys and multi-factor authentication (MFA), which provide robust security for most use cases. Similarly, in retail and manufacturing, delays caused by authentication procedures reduce overall efficiency.

Authentication 69

Authentication Retail Healthcare Manufacturing 69

Troy Hunt

SEPTEMBER 17, 2019

And while I'm here questioning CommBank's logic, what the hell is going on with this : 1Password has an open letter to banks on precisely this because its awful advice steeped in legacy misunderstandings of both technology and human brains. We take security seriously, and use industry-leading technology to protect your accounts.

Banking 253

Banking Passwords Accountability Authentication 253

CyberSecurity Insiders

FEBRUARY 28, 2023

He’ll also look at why identity and access management are the first elements you should modernize as you start your zero trust journey, and how Zero Trust Authentication will help accelerate your journey. They’ll also discuss recommended steps to advance security posture. We will also feature speakers from Ping Identity and others.

Architecture 132

Architecture Authentication Technology CISO 132

Thales Cloud Protection & Licensing

FEBRUARY 19, 2025

Go Beyond FIDO Standards: Best Practices When Deploying FIDO Security Keys in Enterprise madhav Thu, 02/20/2025 - 06:22 Initially designed for the consumer market, the FIDO (Fast IDentity Online) standard aims to replace passwords with more secure authentication methods for online services. While recent versions, like FIDO2.1, standard (i.e.,

Authentication 71

Authentication Passwords Marketing Risk 71

Security Boulevard

SEPTEMBER 27, 2024

Insight #1: Don't just focus on the catastrophe du jour A CISO must have both long-term and short-term plans to improve security posture. These plans must include people, process and technology. The post Cybersecurity Insights with Contrast CISO David Lindner | 09/27/24 appeared first on Security Boulevard.

CISO 59

CISO Cybersecurity Authentication Accountability 59

The Last Watchdog

JUNE 6, 2024

A new Forrester Trends Report dissects ten IAM trends now in play, notably how AI is influencing IAM technologies to meet evolving identity threats. A new Forrester Trends Report dissects ten IAM trends now in play, notably how AI is influencing IAM technologies to meet evolving identity threats. Related: Can IAM be a growth engine?

CISO 113

CISO Technology Threat Detection Engineering 113

The Last Watchdog

FEBRUARY 21, 2022

Knowing what Information Technology (IT) hardware exists is a good place to start (servers, laptops, desktops, tablets, etc.). As technology and threats evolve, so must the security organization. which supplies ultra-sensitive, portable marijuana breathalyzer technology. •Create an asset inventory.

Healthcare 214

Healthcare Cyber Attacks Education Social Engineering 214

The Last Watchdog

AUGUST 19, 2021

The attacker claims to have compromised an end-of-lifed GPRS system that was exposed to the internet and was able to pivot from it to the internal network, where they were able to launch a brute force authentication attack against internal systems. Clearly, there was a failure somewhere, either human error or faulty technology or both.

Mobile 235

Mobile Data breaches Authentication Accountability 235

Security Affairs

JULY 10, 2020

Citrix CISO, Fermin J. Johannes Ullrich, the head of research at the SANS Technology Institute, confirmed that one of its honeypots set up to capture attacks attempting to exploit the recently disclosed flaw in the F5 Networks’ BIG-IP systems was targeted by hackers attempting to exploit two of the recent Citrix vulnerabilities.

Advertising 144

Advertising CISO Technology Authentication 144

CyberSecurity Insiders

JUNE 15, 2022

By Gunnar Peterson, CISO, Forter. Earlier this year, cybercriminals infiltrated Okta’s systems, an authentication company thousands of organizations around the world use to manage access to their networks and applications. Identity and access control systems focus on enforcing authentication and authorization policies.

CISO 119

CISO Policy Compliance Authentication Technology 119

Duo's Security Blog

SEPTEMBER 16, 2021

At Duo, we're building a passwordless authentication solution that’s as easy to set up as it is to use – with our world-class security baked in. Your Journey Begins with Multi-Factor Authentication See the video at the blog post. Advisory CISO J. The passwordless future is sooner than you think. Our experts have you covered.

Authentication 128

Authentication Passwords Phishing CISO 128

The Last Watchdog

APRIL 13, 2022

While you might think that these actors are interested in government and defense information, their operations prove they are interested in much more – including software development and information technology, data analytics, and logistics. which supplies ultra-sensitive, portable marijuana breathalyzer technology.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Duo's Security Blog

JANUARY 23, 2024

Additionally, Chief Information Security Officers (CISOs) have also been under scrutiny for the actions they’ve taken to address these issues. Technology exists to harden your infrastructure. WebAuthn addresses this attack vector by requiring strong MFA as it requires physical human interaction when authenticating.

Authentication 116

Authentication Accountability CISO Technology 116

The Last Watchdog

JUNE 2, 2022

The National Institute of Standards and Technology recognized this huge security gap for what it was, and issued NIST 800-53 and NIST 800-171 –detailed criteria for securely configuring cloud connections. But many companies simply shrugged off the NIST protocols. And malicious hackers attained deep, unauthorized access left and right.

Cloud Migration 229

Cloud Migration CISO Technology Security Awareness 229

Elie

DECEMBER 20, 2018

This post looks at two-factor authentication adoption in the wild, highlights the disparity of support between the various categories of websites, and illuminates how fragmented the two factor ecosystem is in terms of standard adoption. How prevalent is 2FA authentication? reuse of passwords found in data breaches and phishing attacks.

Authentication 90

Authentication Internet Internet Software 90

The Last Watchdog

JULY 11, 2023

Enforce a culture of strong passwords, two-factor authentication and responsible data access practices to foster a security-conscious culture. About the essayist: Brian Nadzan, is CTO/CISO of Templum , a provider of technology and infrastructure solutions for the private markets.

Penetration Testing 189

Penetration Testing Antivirus Threat Detection Encryption 189

Duo's Security Blog

MAY 23, 2023

Passwords are a weak point in modern-day secure authentication practices, with Verizon highlighting that almost 50% of breaches start with compromised credentials. Until a fully password-free environment is deployed, accepted, and adopted by all users, less secure methods of authentication will still be relied on.

Authentication 144

Authentication Passwords Data breaches Phishing 144

Duo's Security Blog

JUNE 12, 2023

Before we can discuss passkeys, we need to lay some groundwork and discuss authentication, Passwordless and WebAuthn. What is authentication? Authentication is the process of verifying your online identity. We added multi-factor authentication (MFA) – something you know and something you have or are. What is passwordless?

Authentication 135

Authentication Passwords Password Management Phishing 135

The Last Watchdog

MARCH 6, 2020

We find many CISOs spend their time explaining what threats matter and why, as opposed to why cybersecurity matters in the first place,” he says. Fortanix is in the vanguard of startups introducing advanced technologies designed to keep data encrypted as it moves back and forth through multiple cloud services. I’ll keep watch.

CISO 185

CISO VPN Digital transformation Internet 185

Thales Cloud Protection & Licensing

FEBRUARY 25, 2020

The Verizon 2019 Data Breach Investigations Report advises organizations to deploy multifactor authentication throughout all systems and discourage password reuse. MFA awareness is not new to CISOs or IT teams. authentication technologies. This has become more popular through the adoption of FIDO2 (FastIDentity Online 2.0)

Digital transformation 108

Digital transformation Authentication Identity Theft Passwords 108

Duo's Security Blog

OCTOBER 6, 2023

Threat actors have dramatically escalated their attacks – targeting security controls like multi-factor authentication (MFA), conducting wily social engineering attacks and extorting businesses large and small with ransomware. Since then, teams have had years to adjust to this new reality, yet the attackers have as well.

Authentication 144

Authentication Risk Social Engineering InfoSec 144

Krebs on Security

OCTOBER 5, 2022

Last week, KrebsOnSecurity examined a flood of inauthentic LinkedIn profiles all claiming Chief Information Security Officer (CISO) roles at various Fortune 500 companies, including Biogen , Chevron , ExxonMobil , and Hewlett Packard. Some of the fake profiles flagged by the co-administrator of a popular sustainability group on LinkedIn.

Accountability 321

Accountability Scams Artificial Intelligence Cryptocurrency 321

SC Magazine

MAY 19, 2021

With its tailored controls, micro-perimeters and trust-nothing approach to access, Zero Trust gives CISOs confidence that their security program can secure their remote workforce and meet regulatory compliance requirements. Thanks to a rapid shift to remote work, Zero Trust is finally garnering the attention it deserves.

CISO 134

CISO CSO Architecture IoT 134

Thales Cloud Protection & Licensing

MARCH 6, 2020

Before implementing any long-term security strategy, CISOs must first conduct a data sweep. Technology such as encryption will provide the last and most important layer of defense for data, rendering it useless if hackers break in. Two-factor authentication requires an extra layer of information beyond simple user names and passwords.

Encryption 130

Encryption Authentication Passwords CISO 130

Security Boulevard

NOVEMBER 28, 2022

Adaptive control, no trust, zero-trust, auto-remediation artificial intelligence, and content filter with multi-factor authentication aligning with your CASB deployment add in open-source technology, unpatched critical infrastructure, is your organization’s cybersecurity risks and compliance mandates protected? Absolutely.

Cybersecurity 101

Cybersecurity Digital transformation Technology Risk 101

Cisco Security

AUGUST 11, 2021

In case you missed them, below is a brief recap of some of the Cisco sessions, including a fight that almost broke out between the Incident Response (IR) team represented by Matt Olney, Talos’ Intel Director, and Wendy Nather, Head of Advisory CISOs. Read on for details…. ” -Wendy Nather. Don’t Set It and Forget It.

Backups 145

Backups CISO Ransomware Cyber Attacks 145

Security Boulevard

OCTOBER 7, 2022

7 Things Every CISO Needs to Know About PKI. With PKI, CISOs and other information security specialists can implement hardware, software, policies, and procedures to better establish, manage, distribute, implement, and protect digital certificates and key policies. What can CISOs do right now to protect machine identities?

CISO 52

CISO Risk Cyber Attacks Technology 52

SC Magazine

FEBRUARY 8, 2021

Geyer attributes the growing number of bugs to “the long depreciation period of equipment in critical infrastructure environments” as well as “technology obsolescence.” discussion… The key is how remote access can be implemented securely – with strong authentication mechanisms, access controls, auditing, and session recording.”.

Internet 144

Internet Internet CISO Media 144