CSO and Event - Cyber Security Informer

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Daniel Lakier , Field CSO, Myriad360 Lakier Cyber professionals represent the companies they work for and are meant to protect them. Richard Bird , CSO, Traceable Bird These penalties are hollow.The SEC fixates on time-to-report metrics and vague “materiality” without defining it. Want to stay out of trouble?

CISO

CISO CSO Risk Cyber threats

The CSO guide to top security conferences, 2020

CSO Magazine

FEBRUARY 19, 2021

There is nothing like attending a face-to-face event for career networking and knowledge gathering, and we don’t have to tell you how helpful it can be to get a hands-on demo of a new tool or to have your questions answered by experts. Fortunately, plenty of great conferences are coming up in the months ahead.

CSO

2022 CSO Hall of Fame honorees

CSO Magazine

MAY 31, 2022

The CSO Hall of Fame was created to spotlight outstanding leaders who have significantly contributed to the practice of information risk management and security. Selected by the editors of CSO, its advisors, and executives, the individuals bestowed with this award exemplify excellence in security leadership.

CSO

CSO CISO Risk

Enterprises report rise in risk events, yet risk management lags

CSO Magazine

MAY 19, 2022

Enterprises around the world are being barraged by risk events, according to a report released Wednesday by Forrester. Risk events, incidents and disruptions have become so frequent that the increased level of risk is the “new normal,” Forrester reported.

Risk

What is SIEM? Security information and event management explained

CSO Magazine

MARCH 16, 2022

Security information and event management (SIEM) tools collect and aggregate log and event data to help identify and track breaches. A SIEM tool's goal is to correlate signals in all that data together to provide security teams with the information they need to identify and track breaches and other problems.

Antivirus

Antivirus Firewall Technology Software

How to enable event collection in Windows Server

CSO Magazine

DECEMBER 20, 2022

Event logs register information about software and hardware events that occur in a system, and they are a key weapon in the arsenal of computer security teams. Windows Server has offered Windows Event Forwarding (WEF) for aggregating system event logs from disparate systems to a central event log server for several versions now.

Software

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

The Last Watchdog

JULY 25, 2024

Implementing zero trust across the entirety of the technology stack would go a long way toward increasing resilience against events like this. Dimitri Chichlo , CSO, BforeAI Chichlo Our networks remain fragile because of interdependence and the assumption that technology always works. Time will tell.

Technology

Technology Ransomware Software Cyber Attacks

4 lessons from recent Microsoft Azure cloud vulnerabilities

CSO Magazine

SEPTEMBER 29, 2021

Get the latest from CSO by signing up for our newsletters. ]. Recent events have brought cloud risks into focus. Below is an overview of those events, the lessons to be learned from them, and other common cloud risks administrators need to understand. Follow these 5 tips for better cloud security. |

CSO

CSO Risk

The T-Mobile data breach: A timeline

CSO Magazine

AUGUST 23, 2021

CSO will update this timeline as events unfold. With the dust still very much settling, here is a timeline of the data breach according to T-Mobile’s public disclosure and other sources. To read this article in full, please click here

Data breaches

Data breaches Mobile CSO Telecommunications

What is physical security? How to keep your facilities and devices safe from on-site attackers

CSO Magazine

AUGUST 4, 2021

Physical security is the protection of people, property, and physical assets from actions and events that could cause damage or loss. Get the latest from CSO by signing up for our newsletters. ]. Get the latest from CSO by signing up for our newsletters. ]. Physical security definition.

Artificial Intelligence

Artificial Intelligence CSO IoT Firewall

How to write a cyberthreat report executives can really use

CSO Magazine

APRIL 20, 2021

The CEO’s email landed in Maurice Stebila’s inbox around midnight, the message asking whether Stebila, the company’s CISO at the time, had heard about the latest news-making cyber event. “He He had no idea we were already looking at this event,” Stebila says. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ]. “I

CSO

CSO CISO Cybersecurity

Cyber insurance explained: What it covers and why prices continue to rise

CSO Magazine

DECEMBER 1, 2021

Cyber insurance, also referred to as cyber risk insurance or cyber liability insurance coverage (CLIC), is a policy with an insurance carrier to mitigate risk exposure by offsetting costs involved with damages and recovery after a cyber-related security breach or similar event. What does a cyber insurance policy cover?

Cyber Insurance

Cyber Insurance Insurance CSO Cyber Risk

Cyber insurance explained and why you need it

CSO Magazine

DECEMBER 1, 2021

Cyber insurance, also referred to as cyber risk insurance or cyber liability insurance coverage (CLIC), is a policy with an insurance carrier to mitigate risk exposure by offsetting costs involved with damages and recovery after a cyber-related security breach or similar event. What does a cyber insurance policy cover?

Cyber Insurance

Cyber Insurance Insurance CSO Cyber Risk

Time to check software and security settings for Windows network vulnerabilities

CSO Magazine

OCTOBER 13, 2021

In honor of this event, I urge you to take the month of October to become more aware of your computer and network assets. Get the latest from CSO by signing up for our newsletters. ] The US Cybersecurity and Infrastructure Security Agency (CISA) has designated October as Cybersecurity Awareness Month.

CSO

CSO Software Architecture Network Security

Lessons learned from 2021 network security events

CSO Magazine

DECEMBER 29, 2021

It’s the end of 2021, a time when you expect to see security pundits predict security issues for the coming year. I’d rather look back at the security issues we’ve been tracking to ensure that we’ve learned all the necessary lessons from them. To read this article in full, please click here (Insider Story)

Network Security

Most interesting products to see at RSA Conference 2023

CSO Magazine

APRIL 21, 2023

That’s a lot of ground to cover, so CSO has sifted through the upcoming announcements and gathered the products and services that caught our eye here. More announcements will be made throughout the event, and CSO will update this article as their embargoes break. We’ve organized the listings by day of announcement.

CSO

CSO Phishing Software

At Nebraska Event, FBI Calls Out Cyber Threats To Agriculture

The Security Ledger

AUGUST 7, 2024

The FBI will host an event exploring agricultural cyber risks in Omaha, Nebraska amid growing concerns of cyber attacks on US agriculture as farms embrace precision agriculture. The post At Nebraska Event, FBI Calls Out Cyber Threats To Agriculture appeared first on The Security Ledger with Paul F. For Hacking.

Cyber threats

Cyber threats CSO Cyber Attacks Cyber Risk

What Is SIEM: How It Works and What Are Its Benefits

Heimadal Security

JULY 1, 2021

Definition As CSO notes, “security information and event management (SIEM) software give enterprise security professionals both insight into and a […]. Wondering what is SIEM, what are its benefits and limitations, and what are the best practices you can apply for your business? Read on to find out the answers to your questions!

CSO

CSO Software

Data loss from insider events increase despite IRM programs, says study

CSO Magazine

MARCH 28, 2023

A vast majority of companies are struggling with data losses from insider events despite having dedicated insider risk management (IRM) programs in place, according to a data exposure study commissioned by Code42.

Technology

Technology Risk Cybersecurity

Cyber insurance explained and why you need it

CSO Magazine

DECEMBER 1, 2021

Cyber insurance, also referred to as cyber risk insurance or cyber liability insurance coverage (CLIC), is a policy with an insurance carrier to mitigate risk exposure by offsetting costs involved with damages and recovery after a cyber-related security breach or similar event. What does a cyber insurance policy cover?

Cyber Insurance

Cyber Insurance Insurance CSO Cyber Risk

New free software signing service aims to strengthen open-source ecosystem

CSO Magazine

MARCH 9, 2021

Get the latest from CSO by signing up for our newsletters. ]. All signatures and signing events will be stored in a tamper-resistant public log that can be monitored to discover potential abuse. Learn how to track and secure open source in your enterprise. |

Software

Software CSO

Three recent events prove the need for an insider risk playbook

CSO Magazine

JANUARY 18, 2022

Every company, regardless of size, should have an insider risk management playbook in place to address the insider threat. The human factor is always in play, mistakes will happen that inadvertently place the company at risk.

Risk

Microsoft Event Log vulnerabilities threaten some Windows operating systems

CSO Magazine

OCTOBER 26, 2022

Discovered by the Varonis Threat Labs team, the exploits affect an IE-specific Event Log that is present on all current Windows operating systems up to, but not including, Windows 11. The vulnerabilities, dubbed LogCrusher and OverLog by the researchers, have been reported to Microsoft, which released a partial patch on October 11, 2022.

Internet

Internet Internet Risk

White House international ransomware initiative outlines hopes and challenges

CSO Magazine

OCTOBER 18, 2021

The White House’s Counter-Ransomware Initiative event, facilitated by the National Security Council (NSC), concluded two days of public-facing and closed-door sessions. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ]

Ransomware

Ransomware CSO Malware

Sigma rules explained: When and how to use them to log events

CSO Magazine

JUNE 16, 2022

Sigma rules are textual signatures written in YAML that make it possible to detect anomalies in your environment by monitoring log events that can be signs of suspicious activity and cyber threats. This is where Sigma rules come in handy. What are sigma rules?

Cyber threats

Diversity in security: How 3 organizations are making a difference—one relationship at a time

CSO Magazine

FEBRUARY 16, 2021

Cybersecurity pro Michaela Barnett didn’t see people like her at DEF CON and the other security industry events she attended. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ]. “We Neither did her sister, Alexandria Barnett. “We The twins set out to change that.

CSO

CSO Cybersecurity

A week in security (Nov 1 – Nov 7)

Malwarebytes

NOVEMBER 8, 2021

Source: The Record) SalesForce bug allows Outlook and Microsoft calendar events to be exposed. Source: CSO Online). (Source: IT Brief) CERT-France has identified the ransomware group behind attacks on French companies. Source: Varonis) Credential phishers impersonate Proofpoint to go after Microsoft and Google credentials.

CSO

CSO Phishing Scams Ransomware

Strangest social engineering attacks of 2021

CSO Magazine

MARCH 8, 2022

“Social engineering is inherently people-centric, and regardless of whether threat actors are targeting businesses or individuals, they’re responding in real time to the events and themes that have the attention of the wider world,” Lucia Milic?, global resident CISO at Proofpoint, tells CSO.

Social Engineering

Social Engineering Engineering CSO CISO

Unlocking New Potential with MSPBots: A Conversation with Callen Sapien

Security Boulevard

OCTOBER 2, 2024

I recently had the opportunity to interview Callen Sapien, President and acting Chief Security Officer (CSO) of MSPBots on the show floor of the Build IT event in Orlando, FL, to explore The post Unlocking New Potential with MSPBots: A Conversation with Callen Sapien appeared first on Seceon Inc.

CSO

Black Hat 2021: Better Than Ever (As Always)

Duo's Security Blog

JULY 13, 2021

While last year was different because most of the events were either virtual or cancelled, this year is looking up — Black Hat is dipping its toes back into in-person events with a hybrid approach! You can always expect certain things at the height of a Las Vegas summer: sunshine, sweltering heat, and Hacker Summer Camp.

CISO

CISO CSO Authentication Passwords

How to choose the best SIEM software

CSO Magazine

JULY 13, 2021

That’s the fundamental notion behind SIEM (security information and event management) software, which is essential to the security defenses of most large and many medium enterprises. To protect your enterprise against security threats, you need maximum visibility.

Software

Software Security Defenses

CrowdStrike adds AI-powered indicators of attack to Falcon platform

CSO Magazine

AUGUST 10, 2022

Brian Trombley vice president product management, endpoint security at CrowdStrike, tells CSO that the AI-powered IoAs leverage intelligence from the CrowdStrike Security Cloud, where the firm collects over one trillion security events per day from its customer base. To read this article in full, please click here

CSO

CSO Cybersecurity

Podcast Episode 113: SAP CSO Justin Somaini and Election Hacks – No Voting Machines Required!

The Security Ledger

SEPTEMBER 25, 2018

In our first segment, I was joined in the Security Ledger studio by Ross and Sam Curry, a Red Team member and Chief Product and Security Officer at Cybereason to talk about the goals of the election hacking exercise and also what surprises the event held. SAP CSO Justin Somaini. October is Cybersecurity awareness month.

CSO

CSO Hacking Security Awareness Password Management

XDR: The Key to Solving SIEM Shortcomings

Security Boulevard

AUGUST 17, 2021

One of the mainstays of organizations’ digital security postures is a Security Information and Event Management (SIEM) platform. According to CSO Online , SIEMs augment threat monitoring and incident response with log analysis. The post XDR: The Key to Solving SIEM Shortcomings appeared first on Security Boulevard.

CSO

CSO InfoSec Cybersecurity Network Security

10 of the hottest new cybersecurity startups at RSA 2022

CSO Magazine

JUNE 2, 2022

The 32 nd edition of the annual security event RSA Conference (RSAC 2022) kicks off on June 6, allowing a fresh breed of security vendors to showcase their capabilities.

Cybersecurity

Cybersecurity Technology

SEC Provides Clarity on Disclosing Material vs. Non-Material Cyber Incidents

SecureWorld News

MAY 23, 2024

The guidance is intended to enhance transparency for investors while avoiding excessive noise from immaterial cyber events being inadvertently disclosed as material incidents. And the recent clarifications—focusing on material cybersecurity incidents—is a step in the right direction," said Glenn Kapetansky , CSO, Trexin Group. "In

CISO

CISO CSO Risk Cybersecurity

Hearing from CISOs at Google Cloud and Beyond

Anton on Security

NOVEMBER 6, 2020

Specifically, my interactions with CISOs showed me that while one CISO of a large enterprise is expanding his or her threat hunting team, another may be dealing with the more mundane challenge of patching Windows servers in time (BTW, CSO or CISO ?). We plan to hit the range of CISO interests and operational maturity levels.

CISO

CISO Cloud Migration CSO Information Security

4 ways security has failed to become a boardroom issue

CSO Magazine

JANUARY 22, 2021

This statement was supported by lots of independent research, business press articles, webinars, local events, and even sessions at RSA and Black Hat crowing about the burgeoning relationship between CISOs, business executives, and corporate boards. To read this article in full, please click here (Insider Story)

CISO

CISO Cybersecurity

Webinar: The Current State and Future Challenges of Security

Security Boulevard

APRIL 28, 2021

Join Ed Amoroso, CEO of TAG Cyber and Sam Curry, CSO of Cybereason as they discuss pre-COVID-19 trends, discontinuities, and the outlook based on recent events and challenges in the security industry. Supply Chain weaknesses, Ransomware, the “new normal” going forward, the evolution of the MITRE framework and more are all fair game.

CSO

CSO Ransomware InfoSec Cybersecurity

Microsoft announces new security, privacy features at Ignite

CSO Magazine

DECEMBER 1, 2021

The recent Microsoft Ignite event had a strong security theme that featured a rebranding of its Defender products and tools to help comply with privacy regulations. That’s why I look to events like Ignite for solutions and ideas that can benefit my firm. We are all pushing our IT teams to do more and protect more.

Technology

Enhancing zero trust access through a context-aware security posture

CSO Magazine

NOVEMBER 25, 2021

Most recently, the Federal Bureau of Investigation (FBI) revealed that some hackers are targeting organizations facing time-sensitive financial events to maximize leverage over their victims. These events include planned earnings report releases as well as mergers and acquisitions (M&A).

Ransomware

Hottest new cybersecurity products at RSA 2022

CSO Magazine

JUNE 6, 2022

This year, the show returns as an in-person event (with a virtual component) in San Francisco after going all-virtual in 2021 due to the pandemic. Every year, global security vendors use the RSA Conference (RSAC) to exhibit new products and capabilities.

Cybersecurity

Rash of hacktivism incidents accompany Russia’s invasion of Ukraine

CSO Magazine

MARCH 1, 2022

The following are notable hacktivist events that have occurred so far related to the Russian invasion of Ukraine. It's worth noting that the situation is really quite unprecedented,” Brett Callow, threat analyst at Emsisoft, tells CSO. “I I don't recall anything like this having happened before.

DDOS

DDOS Hacking Media CSO

99% of cloud identities are overly permissive, opening door to attackers

CSO Magazine

APRIL 12, 2022

Almost all cloud users, roles, services, and resources grant excessive permissions leaving organizations vulnerable to attack expansion in the event of compromise, a new report from Palo Alto’s Unit 42 has revealed.

Government

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The CSO guide to top security conferences, 2020

Trending Sources

2022 CSO Hall of Fame honorees

Enterprises report rise in risk events, yet risk management lags

What is SIEM? Security information and event management explained

How to enable event collection in Windows Server

LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency

4 lessons from recent Microsoft Azure cloud vulnerabilities

The T-Mobile data breach: A timeline

What is physical security? How to keep your facilities and devices safe from on-site attackers

How to write a cyberthreat report executives can really use

Cyber insurance explained: What it covers and why prices continue to rise

Cyber insurance explained and why you need it

Time to check software and security settings for Windows network vulnerabilities

Lessons learned from 2021 network security events

Most interesting products to see at RSA Conference 2023

At Nebraska Event, FBI Calls Out Cyber Threats To Agriculture

What Is SIEM: How It Works and What Are Its Benefits

Data loss from insider events increase despite IRM programs, says study

Cyber insurance explained and why you need it

New free software signing service aims to strengthen open-source ecosystem

Three recent events prove the need for an insider risk playbook

Microsoft Event Log vulnerabilities threaten some Windows operating systems

White House international ransomware initiative outlines hopes and challenges

Sigma rules explained: When and how to use them to log events

Diversity in security: How 3 organizations are making a difference—one relationship at a time

A week in security (Nov 1 – Nov 7)

Strangest social engineering attacks of 2021

Unlocking New Potential with MSPBots: A Conversation with Callen Sapien

Black Hat 2021: Better Than Ever (As Always)

How to choose the best SIEM software

CrowdStrike adds AI-powered indicators of attack to Falcon platform

Podcast Episode 113: SAP CSO Justin Somaini and Election Hacks – No Voting Machines Required!

XDR: The Key to Solving SIEM Shortcomings

10 of the hottest new cybersecurity startups at RSA 2022

SEC Provides Clarity on Disclosing Material vs. Non-Material Cyber Incidents

Hearing from CISOs at Google Cloud and Beyond

4 ways security has failed to become a boardroom issue

Webinar: The Current State and Future Challenges of Security

Microsoft announces new security, privacy features at Ignite

Enhancing zero trust access through a context-aware security posture

Hottest new cybersecurity products at RSA 2022

Rash of hacktivism incidents accompany Russia’s invasion of Ukraine

99% of cloud identities are overly permissive, opening door to attackers

Stay Connected