Advertisement
- Don't Miss:
- CSO50 2022 Award Winners
- CSO Hall of Fame honorees
Threat group targets over 1,000 companies with screenshotting and infostealing malware
Tactics and malware suggest financial motivation, but espionage might also be the goal.
Growing number of endpoint security tools overwhelm users, leaving devices unprotected
A new study shows that the sprawl of new management and security tools can end up leaving some endpoints unprotected.
Cohesity Data Cloud 7.0 enhances privileged access authentication, ransomware recovery
Vendor announces the 7.0 software release of its Cohesity Data Cloud platform with a focus on “data-centric” cyber resilience.
Advertisement
Surge of swatting attacks targets corporate executives and board members
Swatters use data brokers and stolen information on the dark web to target C-suite and board members. Removing personal information from the web is the best way to minimize this risk.
What CISOs need to know about the renewal of FISA Section 702
Section 702 of the Foreign Intelligence Surveillance Act sets out the rules for the US intelligence community around gathering information abroad—but is it inadvertently being used at home too?
MKS Instruments falls victim to ransomware attack
The semiconductor equipment maker reported the ransomware incident just a day after national cybersecurity agencies and security experts around the world warned about a global ransomware attack that hit thousands of servers running on...
Massive ransomware attack targets VMware ESXi servers worldwide
Cybersecurity agencies globally — including in Italy, France, the US and Singapore — have issued alerts about a ransomware attack targeting the VMware ESXi hypervisor.
Vulnerabilities and exposures to rise to 1,900 a month in 2023: Coalition
The cybersecuirty insurer predicts that the 1,900 CVEs would include 270 high-severity and 155 critical-severity vulnerabilities. The predictions are based on data collected over the last ten years.
OPSWAT mobile hardware offers infrastructure security for the air gap
A new, tablet-sized media scanner boasts a wide range of capabilities for critical infrastructure defense.
Microsoft attributes Charlie Hebdo attacks to Iranian nation-state threat group
NEPTUNIUM group claims access to the personal information of more than 200,000 Charlie Hebdo customers and uses sockpuppet accounts to taunt France’s cybersecurity sector.
Advertisement
Will your incident response team fight or freeze when a cyberattack hits?
CISOs train their teams to fight hackers but often overlook the human tendency to freeze up during a crisis. Planning for the psychology of incident response can help prevent a team from seizing up at the wrong moment.
Critical vulnerability patched in Jira Service Management Server and Data Center
Atlassian has issued fixed versions of the software and described a workaround to the flaw that could make access tokens available to attackers.
New US CISO appointments, January 2023
Keep up with news of CSO, CISO, and other senior security executive appointments.
Remote code execution exploit chain available for VMware vRealize Log Insight
Researchers found four vulnerabilities in vRealize Log Insight that were relatively non-threatening on their own but lead to significant compromise when used together.
NTT, Palo Alto partner for managed SASE with AIOps
Using a managed services provider to deliver SASE can streamline deployment and free up enterprise resources.
From Our Advertisers
-
Featured Sponsor IntelCompetitive Advantage with a Modern Data Center that Delivers Boundless Agility
-
Sponsored by LookoutHow Do You Protect Your Data in the Age of Hybrid Work?
-
Sponsored by Microsoft SecurityTackling Cyber Influence Operations: Exploring the Microsoft Digital Defense
-
Sponsored by CiscoIs Your Organization Security Resilient? Here’s How to Get There