CISO, CSO and Phishing - Cyber Security Informer

A CISO's Guide to a Good Night's Sleep

SecureWorld News

SEPTEMBER 30, 2020

It is a common feeling in the cybersecurity community that CISOs do not sleep well at night. CISOs worry about the latest incident, end of life technology in their environment, breaches in the news, insecure users and vendors, penetration testing results, budget and resources, and the latest vulnerability report (to name a few).

CISO

CISO Penetration Testing Technology Antivirus

CISOs, IT lack confidence in executives’ cyber-defense knowledge

CSO Magazine

JUNE 5, 2023

Asked to rate from 1 to 10 how confident they were in CEOs and executives’ abilities to know how to recognize a phishing email, only 28% of respondents were confident.

CISO

CISO Phishing

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

SecureWorld News

OCTOBER 2, 2024

CISOs report a growing focus on managing AI-generated vulnerabilities and addressing insider threats amplified by the misuse of advanced AI tools. On the other hand, malicious actors are leveraging AI for more sophisticated attacks, such as deepfakes and AI-enhanced phishing. Promote the CISO's role in digital transformation.

Cyber threats

Cyber threats CISO Digital transformation Artificial Intelligence

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

How to build a zero trust ecosystem

SC Magazine

MAY 19, 2021

With its tailored controls, micro-perimeters and trust-nothing approach to access, Zero Trust gives CISOs confidence that their security program can secure their remote workforce and meet regulatory compliance requirements. James Carder, LogRhythm CSO. When building a strategy, there are five key components to consider: People.

CISO

CISO CSO Architecture IoT

Skilling up the security team for the AI-dominated era

CSO Magazine

MAY 3, 2023

Forward-looking CISOs are already being called upon to think about newly emerging risks like generative AI-enabled phishing attacks that will be more targeted than ever or adversarial AI attacks that poison learning models to skew their output.

Artificial Intelligence

Artificial Intelligence Cyber Risk CISO Risk

Cyber insurer launches InsurSec solution to help SMBs improve security, risk management

CSO Magazine

APRIL 20, 2023

As the frequency and severity of ransomware, phishing, and denial of service attacks have increased, demand for and conditions relating to coverage have evolved. The emergence of InsurSec technology reflects a cyber insurance landscape that has seen significant change recently.

Cyber Insurance

Cyber Insurance Insurance Risk CISO

Interview with Dr. Arun Vishwanath on the Latest Cybersecurity Attacks

CyberSecurity Insiders

JUNE 3, 2021

This breach, like every major ransomware attack, was likely because of spear phishing, where someone either received the malware via an emailed attachment or clicked on a link that took them to a website that hosted it. It triangulates my work and underscores its validity for solving the problem of spear phishing.

Cybersecurity

Cybersecurity Energy and Utilities Social Engineering Phishing

Cybersecurity Snapshot: Tenable Report Warns About Toxic Cloud Exposures, as PwC Study Urges C-Suite Collaboration for Stronger Cyber Resilience

Security Boulevard

OCTOBER 18, 2024

Plus, a PwC study says increased collaboration between CISOs and fellow CxOs boosts cyber resilience. Less than 50% of respondents say their organizations’ CISOs are involved “to a large extent” with strategic planning, reporting to the board and overseeing tech deployments.

Cybersecurity

Cybersecurity CISO CSO Risk

Cybersecurity Snapshot: CISA Warns of Global Spear-Phishing Threat, While OWASP Releases AI Security Resources

Security Boulevard

NOVEMBER 8, 2024

CISA is warning about a spear-phishing campaign that spreads malicious RDP files. 1 - CISA: Beware of nasty spear-phishing campaign Proactively restrict outbound remote-desktop protocol (RDP) connections. 1 - CISA: Beware of nasty spear-phishing campaign Proactively restrict outbound remote-desktop protocol (RDP) connections.

Phishing

Phishing Cybersecurity Ransomware Malware

Theme of Cooperation Resounds at 10th Annual Denver Conference

SecureWorld News

OCTOBER 12, 2022

It was apropos that Ray Yepes, newly appointed CISO for the State of Colorado, opened the 2022 SecureWorld Denver conference on October 6th. Ray Yepes, CISO for the State of Colorado, presents the opening keynote. Down the hall, Brenden Smith, CISO at FirstBank, presented "Revisiting Deception Systems: Enterprise Use Cases."

CISO

CISO Healthcare Government Cybersecurity

ChatGPT Security and Privacy Issues Remain in GPT-4

eSecurity Planet

APRIL 27, 2023

The software supply chain issues identified … in OpenAI’s breach are not surprising, as most organizations are struggling with these challenges, albeit perhaps less publicly,” said Peter Morgan, who is the co-founder and CSO of Phylum.io, a cybersecurity firm that focuses on the supply chain.

Engineering

Engineering Risk CSO Software

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

.” “It would be possible, on detailed examination of video, to compromise elements of operational security,” agreed Mike Hamilton, co-founder and chief information security officer of CI Security and former Seattle CISO. Individual workers’ patterns and habits could be studied as well, to their detriment. “It

Surveillance

Surveillance IoT Accountability Passwords

Cybersecurity Culture: How Princeton University's Security Team Created It

SecureWorld News

MAY 19, 2020

Sherry brought to Princeton his 25 years of technology experience, 12 of which was in higher education as the former CISO at Brown University. Sherry explained that he (the CISO) would have no operational responsibilities in the beginning to focus solely on the execution of the mission. Measuring a culture of security using metrics.

Cybersecurity

Cybersecurity CISO Risk Education

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

The Last Watchdog

JULY 25, 2024

Starting now and for at least the next month, all organizations should be in a heightened state of vigilance for phishing emails purporting to be from, or affiliated with, CrowdStrike. Dimitri Chichlo , CSO, BforeAI Chichlo Our networks remain fragile because of interdependence and the assumption that technology always works.

Technology

Technology Ransomware Software Cyber Attacks

ROUNDTABLE: Kaseya hack exacerbates worrisome supply-chain, ransomware exposures

The Last Watchdog

JULY 8, 2021

Dom Glavach, CSO and chief strategist, CyberSN. Bill Lawrence, CISO, SecurityGate.io. VPNs, firewalls, email gateways have all been misused recently to gain a foothold with privilege inside an organization’s network without having to phish a user or hope for open RDP to compromise. Tom Garrubba, CISO, Shared Assessments.

Ransomware

Ransomware Hacking Software Architecture

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

The Last Watchdog

DECEMBER 14, 2023

Tyler Farrar , CISO, Exabeam Farrar Traditional SIEM solutions face numerous challenges with limited ability to adapt to new threats and attack vectors — and complex deployment and maintenance processes. Richard Bird , CSO, Traceable AI Bird The bad guys are showing no restraint in exploiting API security weakness to their advantage.

Cybersecurity

Cybersecurity Risk Cyber threats CSO

Key Cybersecurity Trends for 2025. My Predictions

Jane Frankland

JANUARY 12, 2025

Sophisticated social engineering tactics, phishing campaigns, or financial incentives make it easier for cybercriminals to use insiders as tools for gaining access and maintaining their foothold in systems rather than hacking in. Cyber threats often exploit human errors, whether through phishing attacks, weak passwords, or lapses in protocol.

Cybersecurity

Cybersecurity CISO Insurance IoT

Cyber Security Informer

A CISO's Guide to a Good Night's Sleep

CISOs, IT lack confidence in executives’ cyber-defense knowledge

Webinars

Trending Sources

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

Webinars

How to build a zero trust ecosystem

Skilling up the security team for the AI-dominated era

Cyber insurer launches InsurSec solution to help SMBs improve security, risk management

Interview with Dr. Arun Vishwanath on the Latest Cybersecurity Attacks

Cybersecurity Snapshot: Tenable Report Warns About Toxic Cloud Exposures, as PwC Study Urges C-Suite Collaboration for Stronger Cyber Resilience

Cybersecurity Snapshot: CISA Warns of Global Spear-Phishing Threat, While OWASP Releases AI Security Resources

Theme of Cooperation Resounds at 10th Annual Denver Conference

ChatGPT Security and Privacy Issues Remain in GPT-4

Camera tricks: Privacy concerns raised after massive surveillance cam breach

Cybersecurity Culture: How Princeton University's Security Team Created It

Cyber Security Awareness and Risk Management

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

ROUNDTABLE: Kaseya hack exacerbates worrisome supply-chain, ransomware exposures

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

Key Cybersecurity Trends for 2025. My Predictions

Stay Connected