CSO | Security news, features and analysis about prevention, protection and business innovation.

'I Voted' sticker / abstract data encryption / secure voting in elections

Why manipulation campaigns are the biggest threat facing the 2020 election

This era of political espionage is rooted in manipulative ads, fake news articles and other forms of digital content. It's one of the nation’s greatest threats, especially as we approach the 2020 presidential election.

Theresa Payton

Job vacancy / staffing staffing problem > empty chair / binary code / lock + shield

Cybersecurity Snippets

5 ways to cope with the cybersecurity skills shortage (that don't involve hiring)

Unable to hire their way out of cybersecurity staffing problems, CISOs are turning to process automation, advanced analytics, and third-party services, among other methods.

Jon Oltsik

Conceptual illustration of the convergence of disparate technology threads in a digital environment.

Closing the security gap in OT/IT convergence

End-to-end security between converging information technology and operational technology worlds is imperative, but technical and cultural differences separate them. Here’s how to close the gap.

Stacy Collett

Citrix races out more patches to fix critical bug, plus a free detection tool

The detection tool however won’t detect all compromises.

Liam Tung

medical network h/ ealthcare IoT / hospital connections and communications

Insecure configurations expose GE Healthcare devices to attacks

The six high-risk vulnerabilities result from hard-coded or no credentials in remote access software and the use of outdated applications.

Lucian Constantin

Tour de France cyclists racing / global digital broadcast connections

How the Tour de France secures its broadcast from disruption

Few sporting events have the scale and logistics challenges that the Tour de France presents. Event organizer ASO uses the cloud and tight physical security to avoid cyberattacks and broadcast integrity.

Dan Swinhoe

What is cryptojacking? How to prevent, detect, and recover from it

Criminals are using ransomware-like tactics and poisoned websites to get your employees’ computers to mine cryptocurrencies. Here’s what you can do to stop it.

Michael Nadeau

Safeguarding essential infrastructure from attacks in a digitised world: why Australian utilities need to put cyber-security on the agenda in 2020

The extraordinary life of operational infrastructure in utilities means that many devices that were never designed to be accessible from an IP network are now vulnerable to external attacks And even new systems like the Siemens...

Jim Cook, ANZ Regional Director at Attivo Networks

Microsoft accidentally exposed 250 million customer support records online

Even Microsoft isn’t immune to security blunders due to misconfigured databases. Microsoft today revealed it had briefly exposed its internal customer support database on the web, potentially giving anyone access to over 250...

Liam Tung

Microsoft Windows 7 security patches/updates

How to implement Windows 7, Server 2008 security updates after end-of-life

Microsoft has ended support for Windows 7 and Windows Server 2008, but you can purchase extended security updates. Here's what you need to do to implement them.

Susan Bradley

Popular Resources

View All

White Paper

Smarter, Faster Experiences for Your Entire Workforce
White Paper

Smarter, Faster Experiences for Your Entire Workforce
eBook
Sponsored

The making of the modern workplace
eBook
Sponsored

The Secrets of High-Performing Teams… Wherever They’re Located

Overflow > Pouring more binary water into a glass than it can hold causing overflow.

What is a buffer overflow? And how hackers exploit these vulnerabilities

A buffer overflow or overrun is a memory safety issue where a program does not properly check the boundaries of an allocated fixed-length memory buffer and writes more data than it can hold. This causes data to overflow to adjacent...

Lucian Constantin

CSO Executive Sessions

Episode 1: Tracking privacy from a risk standpoint

Podcast Episode 1: Listen now as Ken Foster, head of global cyber risk governance at First Data, discusses how privacy now carries with it a risk weight that has to be part of every conversation around policies and standards. But...

Bob Bragdon

New Google Chromebooks to get 8 years of security and feature updates

As Microsoft kills off free Windows 7 support, Google has announced that all new Chrome OS-based Chromebooks from 2020 and beyond will get eight years of security and feature updates. Google announced the increased support...

Liam Tung

Brexit / GDPR > Cutting connections / United Kingdom / European Union / global security shield

What the Brexit Withdrawal Agreement Bill means for data protection and the GDPR

Boris Johnson's Withdrawal Agreement Bill (WAB) largely leaves existing data protection regulation in place, but changes are still possible.

Dan Swinhoe

3 patch training update software band aid laptop with virus binary

Citrix issues ADC patch amid new attacks, pushes forward more patches

US enterprise virtualization firm Citrix has shipped patches for a critical vulnerability that is being actively exploited and accelerated additional patches for other affected products. The first round of patches arrives amid...

Liam Tung

From Our Advertisers

cso online

Infrastructure cyberattacks pose a clear and present danger in 2020 and beyond: WEF

Increasing cyber threats will force organisations to embrace cloud security in 2020

Microsoft’s offers Application Inspector to probe untrusted open source code

Why manipulation campaigns are the biggest threat facing the 2020 election

This era of political espionage is rooted in manipulative ads, fake news articles and other forms of digital content. It's one of the nation’s greatest threats, especially as we approach the 2020 presidential election.

5 ways to cope with the cybersecurity skills shortage (that don't involve hiring)

Unable to hire their way out of cybersecurity staffing problems, CISOs are turning to process automation, advanced analytics, and third-party services, among other methods.

Closing the security gap in OT/IT convergence

End-to-end security between converging information technology and operational technology worlds is imperative, but technical and cultural differences separate them. Here’s how to close the gap.

Citrix races out more patches to fix critical bug, plus a free detection tool

The detection tool however won’t detect all compromises.

Insecure configurations expose GE Healthcare devices to attacks

The six high-risk vulnerabilities result from hard-coded or no credentials in remote access software and the use of outdated applications.

How the Tour de France secures its broadcast from disruption

Few sporting events have the scale and logistics challenges that the Tour de France presents. Event organizer ASO uses the cloud and tight physical security to avoid cyberattacks and broadcast integrity.

What is cryptojacking? How to prevent, detect, and recover from it

Criminals are using ransomware-like tactics and poisoned websites to get your employees’ computers to mine cryptocurrencies. Here’s what you can do to stop it.

Safeguarding essential infrastructure from attacks in a digitised world: why Australian utilities need to put cyber-security on the agenda in 2020

The extraordinary life of operational infrastructure in utilities means that many devices that were never designed to be accessible from an IP network are now vulnerable to external attacks And even new systems like the Siemens...

Microsoft accidentally exposed 250 million customer support records online

Even Microsoft isn’t immune to security blunders due to misconfigured databases. Microsoft today revealed it had briefly exposed its internal customer support database on the web, potentially giving anyone access to over 250...

How to implement Windows 7, Server 2008 security updates after end-of-life

Microsoft has ended support for Windows 7 and Windows Server 2008, but you can purchase extended security updates. Here's what you need to do to implement them.

What is a buffer overflow? And how hackers exploit these vulnerabilities

A buffer overflow or overrun is a memory safety issue where a program does not properly check the boundaries of an allocated fixed-length memory buffer and writes more data than it can hold. This causes data to overflow to adjacent...

Episode 1: Tracking privacy from a risk standpoint

Podcast Episode 1: Listen now as Ken Foster, head of global cyber risk governance at First Data, discusses how privacy now carries with it a risk weight that has to be part of every conversation around policies and standards. But...

New Google Chromebooks to get 8 years of security and feature updates

As Microsoft kills off free Windows 7 support, Google has announced that all new Chrome OS-based Chromebooks from 2020 and beyond will get eight years of security and feature updates. Google announced the increased support...

What the Brexit Withdrawal Agreement Bill means for data protection and the GDPR

Boris Johnson's Withdrawal Agreement Bill (WAB) largely leaves existing data protection regulation in place, but changes are still possible.

Citrix issues ADC patch amid new attacks, pushes forward more patches

US enterprise virtualization firm Citrix has shipped patches for a critical vulnerability that is being actively exploited and accelerated additional patches for other affected products. The first round of patches arrives amid...