Advertisement
Reddit’s Allison Miller builds trust through transparency
Miller joined the social media company in February 2021, assuming a range of responsibilities, from security and privacy to trust and safety, that reflect broadening of the CISO position itself—a role she summarizes as “keeping...
How deepfakes enhance social engineering and authentication threats, and what to do about it
Cybercriminals are investing in deepfake technology to make social engineering and authentication bypass campaigns more effective. Here are strategies for defending against the most notable deepfake cyberthreats.
Security Recruiter Directory
To find the right security job or hire the right candidate, you first need to find the right recruiter. CSO's security recruiter directory is your one-stop shop.
Advertisement
Decline in ransomware claims could spark change for cyber insurance
New research indicates that ransomware attack and payment claims are in decline as resiliency takes priority for organizations.
Detecting anomalies with TLS fingerprints could pinpoint supply chain compromises
Researchers at Splunk outline a technique, pioneered by Salesforce, that could detect malicious activity in the software supply chain, but with some limitations.
Kraft Heinz dishes up security transformation
For CISO Ricardo Lafosse, security modernization is the first order of business.
What is Magecart? How this hacker group steals payment card data
Hacking groups that make up Magecart are effective and persistent at stealing customer and payment card data through skimmers. Here's how they work and what you can do to mitigate the risk.
New Windows browser security options and guidance: What you need to know
Microsoft has added new Edge update options and enhanced browser security modes, including a beta Super Duper Secure Mode.
(ISC)2 pilots new entry-level cybersecurity certification to tackle workforce shortages
New certification aims to validate knowledge of foundational cybersecurity concepts and best practices to address skills gap. Is another cybersecurity qualification the answer?
SSRF attacks explained and how to defend against them
Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. Defending against them can be relatively easy.
-
White Paper
-
Video/Webcast
Sponsored -
eBook
Sponsored -
Advertisement
8 top multifactor authentication products and how to choose an MFA solution
Learn the key considerations when choosing an MFA solution and why these top picks are worth a look.
White House international ransomware initiative outlines hopes and challenges
More than 30 nations discussed tactics for collaborating in the fight against ransomware, but it competes with a Russian-led UN initiative.
Microsoft's very bad year for security: A timeline
Microsoft has had a horrible 2021, with vulnerabilities impacting its biggest services.
6 zero trust myths and misconceptions
If you’ve fallen for one of these myths, you may need to rethink your zero trust strategy.
Top cybersecurity M&A deals for 2021
The cybersecurity market is hot, and vendors are buying competitors to solidify their position or acquiring other firms to expand their offerings.
From Our Advertisers
-
![HP Wolf Security]()
Featured Sponsor HP Wolf SecurityThe Need for Endpoint Security Rooted In Zero Trust -
![istock 1135380665]()
Sponsored by WatchGuardOvercoming Today’s Top Distributed Workforce Security Challenges -
![cyber security]()
Sponsored by CISCIS CSAT Pro v1.7: CIS Controls v8 Assessment and More -
![istock 1156386644]()
Sponsored by Code42Your Employees Aren’t the Problem—It’s Your Technology
