InfoSec, Security Awareness and Technology

Ask Chloé: Where to Begin In InfoSec

Security Boulevard

JUNE 4, 2021

Each week, Chloé provides advice to readers’ questions to help guide them as they navigate the technology industry. This week, Chloé helps a newbie explore the world of InfoSec. The post Ask Chloé: Where to Begin In InfoSec appeared first on Security Boulevard. What are the first.

InfoSec

InfoSec Technology Cybersecurity Security Awareness

Ask Chloé: Hackers’ Rights and Women in Infosec

Security Boulevard

MAY 21, 2021

Each week, Chloé provides advice to readers’ questions to help guide them as they navigate the technology industry. The post Ask Chloé: Hackers’ Rights and Women in Infosec appeared first on Security Boulevard. Dear Chloé, I came across your talk on hacker rights. Since watching.

InfoSec

InfoSec Technology Cybersecurity Security Awareness

Reducing InfoSec Threats Takes a Village

Security Boulevard

OCTOBER 5, 2021

Chief executive officers and chief technology officers know this is a potentially existential threat both for their companies and for them professionally. The post Reducing InfoSec Threats Takes a Village appeared first on Security Boulevard. In 2021 alone we’ve seen data breaches impact many Fortune 500 companies.

InfoSec

InfoSec Data breaches Cybercrime Technology

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

61 percent of employees fail basic cybersecurity quiz

SC Magazine

APRIL 12, 2021

Despite their largely inherent familiarity with technology, employees aged 18-24 collectively performed the worst on the quiz, with only 16% passing. Users should approach any suspicious messages with extreme caution, or go straight to their IT and security teams to have them examine it first.”.

Cybersecurity

Cybersecurity InfoSec Phishing Security Awareness

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

Security Boulevard

MAY 20, 2021

CybeReady’s Hi-5 brings together InfoSec leaders for peer-to-peer sharing via five short questions and insights. Dmitriy Sokolovskiy has been working in the cybersecurity space for over 14 years in dedicated security roles, in addition to 9 more years working in various IT areas.

CISO

CISO Technology InfoSec Information Security

N-able Technology Alliance Program Primed for Growth into 2022

CyberSecurity Insiders

DECEMBER 29, 2021

NYSE: NABL), the purpose-built technology partner for managed services providers (MSPs), is celebrating strong growth of the Technology Alliance Program (TAP) throughout 2021, adding more than 25 partners this year, more than half of which are focused on security. DURHAM, N.C.–( –( BUSINESS WIRE )– N-able, Inc.

Technology

Technology InfoSec Cybercrime Backups

Malicious Life Podcast: Should the U.S. Ban Chinese and Russian Technology?

Security Boulevard

SEPTEMBER 27, 2021

just banned all technology from Russia and China? Ban Chinese and Russian Technology? appeared first on Security Boulevard. So what should be done in cases like this? What if the U.S. Is it a good idea? Is it even possible? Ira Winkler joins the discussion - check it out. The post Malicious Life Podcast: Should the U.S.

Technology

Technology Software IoT Security Awareness

Protect IT—A Combination of Security Culture and Cyber Hygiene Good Practices

Thales Cloud Protection & Licensing

OCTOBER 24, 2019

In the spirit of National Cyber Security Awareness Month (NCSAM), my colleague Ashvin Kamaraju wrote about how organizations can use fundamental controls to secure their information technology. Effective digital security doesn’t end at “Secure IT,” however. Building a Robust Security Culture.

Security Awareness

Security Awareness InfoSec Passwords Accountability

Ask Chloé: Response Time Etiquette

Security Boulevard

MARCH 24, 2022

Welcome to the Ask Chloé column on Security Boulevard! Each week, Chloé provides answers to readers’ questions to help guide them as they navigate the technology industry. This week, Chloé offers advice to an InfoSec pro struggling with response time anxiety.

InfoSec

InfoSec Technology Media Security Awareness

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Brian Levine is senior director of product security at Axway, a global security engineering organization delivering training, tools, processes and DevSecOps practices for secure applications and cloud services to the enterprise market. In government, Brooks served under President George W.

Computers and Electronics

Computers and Electronics Technology Information Security Education

Ask Chloé: How to Get Your Talk Accepted

Security Boulevard

NOVEMBER 17, 2021

Each week, Chloé provides answers to readers’ questions to help guide them as they navigate the technology industry. This week, Chloé offers advice on getting a talk accepted at an InfoSec conference. Dear Chloé, I’ve been trying to get my talk accepted at InfoSec conferences; however, I keep.

InfoSec

InfoSec Technology Security Awareness Cybersecurity

Cyber CEO – Cyber Hygiene is More Critical for Your Business Now Than Ever Before – Here’s Why

Herjavec Group

MAY 19, 2022

Hackers are routinely attempting novel ways to infiltrate corporate networks so it’s important to ensure that your employees are aware of how their online behavior can make them – and you – more vulnerable. Build security awareness training modules to educate your employees on how to spot phishing emails or business-related scams.

Penetration Testing

Penetration Testing Social Engineering Cybercrime InfoSec

Introducing Behavioral Information Security

The Falcon's View

AUGUST 29, 2017

For those unfamiliar with Fogg's work, he started out doing research on Persuasive Technology back in the 90s, which has become the basis for most modern uses of technology to influence people (for example, use of Facebook user data to influence the 2016 US Presidential Election). Well, low-and-behold, it already exists!

Information Security

Information Security InfoSec Social Engineering Security Awareness

NIST hints at upgrades to its system for scoring a phish’s deceptiveness

SC Magazine

FEBRUARY 18, 2021

Officials from the National Institute of Standards and Technology (NIST) this week teased future improvements to the agency’s recently introduced “Phish Scale” measurement system, which helps companies determine whether phishing emails are hard or easy for their employees to detect.

Phishing

Phishing Mobile Security Awareness Media

Inflation Is Making Cybersecurity Even More Challenging for Leaders

SecureWorld News

OCTOBER 19, 2023

Too many folks focus on the technology as opposed to the people or process. When budgets tighten and we're still responsible for moving the security forward, we should look to the policies, procedures, and controls and which ones can we shore up, what can we do to block/tackle those things we've been putting off, etc.

Cybersecurity

Cybersecurity CISO Education Phishing

SolarWinds blaming intern for leaked password is symptom of ‘security failures’

SC Magazine

MARCH 2, 2021

House Oversight and Homeland Security committees last week, SolarWinds’s former and current CEOs blamed an intern for creating a weak FTP server password and leaking it on GitHub – an act which may or may not have contributed to a supply chain hack that impacted users of the tech firm’s Orion IT performance monitoring platform.

Passwords

Passwords Password Management CISO InfoSec

Security in software development

Notice Bored

JULY 21, 2022

The customer is apparently seeking guidance on integrating infosec into the development process, which begs the question "Which development process?". Reducing the problem to its fundamentals, there is a desire to end up with software/systems that are 'adequately secure', meaning no unacceptable information risks remain.

Software

Software Risk InfoSec Security Awareness

The discomfort zone

Notice Bored

JULY 4, 2022

That's a heady mix of laws and regs that apply to the organisation, its officers and workers, its property and finances, its technologies, its contracts, agreements and relationships with employees and third parties including the authorities, owners, suppliers, partners, prospects and customers, and society at large. All requirements?!

Risk

Risk Accountability InfoSec CISO

The Quest for Optimal Security

The Falcon's View

AUGUST 6, 2018

There's no shortage of guidance available today about how to structure, build, and run a security program. Most guidance comes from a standpoint of inherent bias, whether it be to promote a product class, specific framework/standard, or to best align with specific technologies (legacy/traditional infrastructure, cloud, etc.).

InfoSec

InfoSec Risk Architecture Security Awareness

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

SecureWorld News

MAY 16, 2023

The city has a more established IT setup, including a full-time IT director, which many of the smaller towns lack, according to this Government Technology article. We use this type of model for our 'Whole of State' approach to security in North Dakota," says Michael Gregg, CISO for the State of North Dakota. This is a great approach.

Cybersecurity

Cybersecurity Insurance Cyber Risk CISO

Ask Chloé: Cyber and Pronouns

Security Boulevard

MAY 14, 2021

Welcome to the Ask Chloé column on Security Boulevard! Each week, Chloé provides advice to readers’ questions to help guide them as they navigate the technology industry. Dear Chloé, I.

Technology

Technology Marketing CISO Security Awareness

Zero-Trust Network Access: Why so Many Teams Get it Wrong

Security Boulevard

MARCH 18, 2024

Zero-trust encompasses a variety of technologies, from strong identity systems to microsegmentation. The post Zero-Trust Network Access: Why so Many Teams Get it Wrong appeared first on Security Boulevard. Why are so many organizations getting it wrong?

Technology

Technology Data privacy Security Awareness InfoSec

Apple Finally Adopts RCS, AI Powered Scams Targeting the Elderly

Security Boulevard

NOVEMBER 26, 2023

In this episode, Tom shows off AI generated images of a “Lonely and Sad Security Awareness Manager in a Dog Pound” and the humorous outcomes. The conversation shifts to Apple’s upcoming support for Rich Communication Services (RCS) and the potential security implications.

Scams

Scams Security Awareness Social Engineering Data privacy

Ask Chloé: Reducing Biased Language in Job Descriptions

Security Boulevard

AUGUST 8, 2021

Welcome to the Ask Chloé column on Security Boulevard! Each week, Chloé provides answers to readers’ questions to help guide them as they navigate the technology industry. The post Ask Chloé: Reducing Biased Language in Job Descriptions appeared first on Security Boulevard. Dear Chloé, I’ve been told.

Technology

Technology CISO Security Awareness InfoSec

Rehumanizing Cybersecurity with Lianne Potter

Security Boulevard

APRIL 24, 2022

Award-winning security transformation manager and digital anthropologist Lianne Potter joins us to discuss the fascinating topic of digital anthropology and how we can rehumanize cybersecurity.

Cybersecurity

Cybersecurity Security Awareness InfoSec Technology

Exploring the Role of Empathy in Cybersecurity with Andra Zaharia

Security Boulevard

MARCH 19, 2023

We cover how empathy relates to cybersecurity in the industry, the importance of being empathetic in our roles as […] The post Exploring the Role of Empathy in Cybersecurity with Andra Zaharia appeared first on The Shared Security Show.

Cybersecurity

Cybersecurity Data privacy Security Awareness InfoSec

NBlog Aug 23 - ISMS comms plan

Notice Bored

AUGUST 23, 2020

on security awareness which is already in the plan anyway: maybe we should mention A.7.2.2 Ben Woelk, program manager for the Information Security Office at Rochester Institute of Technology, has published a detailed ISO comms plan - 16 pages laying out all the things they planned to communicate as part of their ISMS.

Information Security

Information Security Security Awareness Security Performance Risk

The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15

Security Boulevard

SEPTEMBER 10, 2023

Finally, we […] The post The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15 appeared first on Shared Security Podcast. In this episode we discuss the FBI’s remarkable takedown of the Qakbot botnet, a saga involving ransomware, cryptocurrency, and the FBI pushing an uninstaller to thousands of victim PCs.

Phishing

Phishing Cryptocurrency Ransomware Social Engineering

Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up?

Security Boulevard

APRIL 28, 2024

In episode 327 Tom, Scott, and Kevin discuss the findings from Mandiant’s M-Trends 2024 report, highlighting a significant rise in traditional vulnerability exploitation by attackers while observing a decline in phishing. Despite phishing’s decreased prevalence, it remains the second most popular method for gaining initial network access.

Phishing

Phishing Data privacy Passwords Security Awareness

Emergency Satellite Messaging, Stagnation in User Cybersecurity Habits

Security Boulevard

OCTOBER 13, 2024

In the milestone 350th episode of the Shared Security Podcast, the hosts reflect on 15 years of podcasting, and the podcast’s evolution from its beginnings in 2009. The ‘Aware Much’ segment focuses on […] The post Emergency Satellite Messaging, Stagnation in User Cybersecurity Habits appeared first on Shared Security Podcast.

Cybersecurity

Cybersecurity Password Management Passwords Media

Application Security Trends & Challenges with Tanya Janca

Security Boulevard

DECEMBER 3, 2023

In this episode, noteworthy guest Tanya Janca returns to discuss her recent ventures and her vision for the future of Application Security. Tanya sheds light on her decision to partner […] The post Application Security Trends & Challenges with Tanya Janca appeared first on Shared Security Podcast.

Data privacy

Data privacy Security Awareness InfoSec Technology

MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches

Security Boulevard

JULY 2, 2023

Several major organizations, including British Airways and the BBC, fell victim to the recent MOVEit cyberattack. We discuss the alarming trend of hackers targeting trusted suppliers to gain access to customer data, potentially holding companies and individuals for ransom.

Passwords

Passwords Data privacy Data breaches Security Awareness

Building a Healthy Security Culture: Insights from Kai Roer

Security Boulevard

APRIL 30, 2023

In this episode we speak with Kai Roer, a renowned author, security culture coach, and CEO of Praxis Security Labs. Kai shares his career journey in cybersecurity and emphasizes the importance of building a strong security culture within organizations.

Cybersecurity

Cybersecurity Data privacy Security Awareness InfoSec

The Psychic and the Social Engineer

Security Through Education

NOVEMBER 30, 2022

At Social Engineer LLC, our purpose is to bring education and awareness to all users of technology. However, they will remember how you made them feel and that you treated them with empathy and compassion. Always remember, knowledge and skill have the best results when used ethically. Sources: [link]. Image: [link].

Social Engineering

Social Engineering Engineering Education Technology

Truths and Myths of Privacy, Fake Shopping Apps, Borat RAT Malware

Security Boulevard

APRIL 10, 2022

The post Truths and Myths of Privacy, Fake Shopping Apps, Borat RAT Malware appeared first on The Shared Security Show. Scott and Tom explain why privacy isn’t dead, why should everyone should care about their privacy, and how you should respond to someone that says “I don’t care about privacy, I have nothing to hide!”.

Malware

Malware Social Engineering Scams Engineering

Cyber Security Informer

Ask Chloé: Where to Begin In InfoSec

Ask Chloé: Hackers’ Rights and Women in Infosec

Webinars

Trending Sources

Reducing InfoSec Threats Takes a Village

Webinars

61 percent of employees fail basic cybersecurity quiz

Hi-5 With A CISO Dmitriy Sokolovskiy, Avid Technology

N-able Technology Alliance Program Primed for Growth into 2022

Malicious Life Podcast: Should the U.S. Ban Chinese and Russian Technology?

Protect IT—A Combination of Security Culture and Cyber Hygiene Good Practices

Ask Chloé: Response Time Etiquette

Meet the 2021 SC Awards judges

Ask Chloé: How to Get Your Talk Accepted

Cyber CEO – Cyber Hygiene is More Critical for Your Business Now Than Ever Before – Here’s Why

Introducing Behavioral Information Security

NIST hints at upgrades to its system for scoring a phish’s deceptiveness

Inflation Is Making Cybersecurity Even More Challenging for Leaders

SolarWinds blaming intern for leaked password is symptom of ‘security failures’

Security in software development

The discomfort zone

The Quest for Optimal Security

Seven Massachusetts Cities Join Forces to Bolster Cybersecurity Posture

Ask Chloé: Cyber and Pronouns

Zero-Trust Network Access: Why so Many Teams Get it Wrong

Apple Finally Adopts RCS, AI Powered Scams Targeting the Elderly

Ask Chloé: Reducing Biased Language in Job Descriptions

Rehumanizing Cybersecurity with Lianne Potter

Exploring the Role of Empathy in Cybersecurity with Andra Zaharia

NBlog Aug 23 - ISMS comms plan

The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15

Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up?

Emergency Satellite Messaging, Stagnation in User Cybersecurity Habits

Application Security Trends & Challenges with Tanya Janca

MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches

Building a Healthy Security Culture: Insights from Kai Roer

The Psychic and the Social Engineer

Truths and Myths of Privacy, Fake Shopping Apps, Borat RAT Malware

Stay Connected