Business

October 11, 2024

Retail CISOs Take on More Risk to Foster Innovation

Chief information security officers (CISOs) have long borne the reputation of blocking innovation to keep their organization and all its data safe and sound.

Cyber Security

September 13, 2024

NFL Teams Block & Tackle Cyberattacks in a Digital World

This past weekend, the National Football League kicked off its 2024 season, and while the sport itself has remained the same, mainly...

Cyber Security

September 12, 2024

Socially Savvy Scattered Spider Traps Cloud Admins in Web

The dangerous ransomware group is targeting financial and insurance sectors using smishing and vishing against IT service desk administrators, cybersecurity teams, and other employees with top-level privileges.

Cyber Security

June 27, 2024

China-Sponsored Attackers Target 40K Corporate Users in 90 Days

The attacks infiltrate enterprise networks through browsers, and show an evolution in evasive and adaptive tactics from well-resourced state-sponsored actors.

Cyber Security

June 21, 2024

Multifactor Authentication Is Not Enough to Protect Cloud Data

Ticketmaster, Santander Bank, and other large firms have suffered data leaks from a large cloud-based service, underscoring that companies need to pay attention to authentication.

Cyber Security

June 19, 2024

How Cybersecurity Can Steer Organizations Toward Sustainability

By integrating environmental initiatives, social responsibility, and governance into their strategies, security helps advance ESG goals.

Cyber Security

June 10, 2024

New York Times Internal Data Nabbed From GitHub

The tranche of data, lifted from under-protected GitHub repositories, reportedly includes source code, though the country's paper of record has not yet confirmed the nature of the data accessed.

Cyber Security

May 28, 2024

Making the Case for 'Reasonable' Cybersecurity

Reasonable cybersecurity is highly subjective. Organizations need to plan carefully in order to quantify cyber-risk and apply security controls.

Privacy

May 24, 2024

Microsoft's 'Recall' Feature Draws Criticism From Privacy Advocates

Despite Microsoft's reassurances, multiple security researchers describe the technology as problematic for users and their organizations.

Cyber Security

May 22, 2024

Preparing Your Organization for Upcoming Cybersecurity Deadlines

Federal and state regulators have introduced new rules and mandates aimed at holding organizations accountable when it comes to cybersecurity. Here's how to get ready.

Cyber Security

May 21, 2024

Outsourcing Security Without Increasing Risk

Few enterprises have all the cybersecurity skills and resources they need in-house, making outsourcing a necessity. How do they select, and work with, third-party security service providers?

Technology

May 20, 2024

Google Pitches Workspace as Microsoft Email Alternative, Citing CSRB Report

The new Secure Alternative Program from Google aims to entice customers away from Exchange Online and break Microsoft's dominance in the enterprise.

Scams

May 15, 2024

Scammers Fake DocuSign Templates to Blackmail & Steal From Companies

Cybercriminals are trafficking DocuSign assets that allow for easy extortion and business email compromise....

Cyber Security

May 14, 2024

Top 5 Most Dangerous Cyber Threats in 2024

SANS Institute experts weigh in on the top threat vectors faced by enterprises and the public at large in busy 2024...

Technology

May 6, 2024

Microsoft Previews Feature to Block Malicious OAuth Apps

Microsoft is previewing new AI and machine learning capabilities in Defender XDR that will help detect and block malicious OAuth applications.

Cyber Security

December 4, 2023

23andME: Data Breach was a Credential-stuffing attack

On Oct. 1, a threat actor made a post on the Dark Web claiming to possess profile information of 23andMe users.