Features
What is cross-site scripting (XSS)? Low-hanging fruit for both attackers and defenders
With XSS, attackers enter malicious code into a web form or web app URL to trick the application into doing something it's not supposed to do.
Security Recruiter Directory
To find the right security job or hire the right candidate, you first need to find the right recruiter. CSO's security recruiter directory is your one-stop shop.
Top cyber security certifications: Who they're for, what they cost, and which you need
Expand your skills, know-how and career horizons with these highly respected cyber security certifications.
The CSO guide to top security conferences
CSO Online’s calendar of upcoming security conferences makes it easy to find the events that matter the most to you.
Adobe’s CSO talks security, the 2013 breach, and how he sets priorities
Brad Arkin has led Adobe's new approach to security and aims to make sure one of history’s biggest data breaches doesn’t happen again.
6 steps for a solid patch management process
Patch management is simply the practice of updating software – most often to address vulnerabilities. Although this sounds straightforward, patch management is not an easy process for most IT organizations. Here are the steps you need...
Verizon report: Ransomware top malware threat of 2017, moving into critical systems
DDoS attacks are also on the rise, but spying reports are down. Fewer people are clicking on phishing links.
5 myths of API security
In light of Panera Bread’s API-related data breach, here what is — and isn’t — true about protecting application programming interfaces.
Microsoft Windows 10 vs. Apple macOS: 18 security features compared
Here's how the world's two most popular desktop OSes keep systems and data safe from malware, unauthorized access, hardware exploits and more.
How to detect and prevent crypto mining malware
Hackers are placing crypto mining software on devices, networks, and websites at an alarming rate. These tools can help spot it before it does great harm.
video
What is Kubernetes?
In this 90-second video, learn about Kubernetes, the open-source system for automating containerized applications, from one of the technology's inventors, Joe Beda, founder and CTO at Heptio.
video
Technologies that will disrupt business in 2018
From artificial intelligence to augmented reality, these dozen disruptive technologies and trends will begin driving how business gets done at forward-thinking organizations this year.
What is Mitre's ATT&CK framework? What red teams need to know
The ATT&CK framework allows security researchers and red teams to better understand hacker threats.
video
8 essential sites for researching your next employer
Landing a job interview feels great, but how much do you know about your potential employer? Job listings often illicit more questions than provide answers. Knowing where to find inside information can mean the difference between...
Open source software security challenges persist
Using open source components saves developers time and companies money. In other words, it's here to stay. Here's a look at what it will take to improve open source security.
What is FedRAMP? How cloud providers get authorized to work with the U.S. government
The process for getting the FedRAMP seal of approval is complex, but it can ultimately be lucrative for companies that meet the security requirements.
Want to hack a voting machine? Hack the voting machine vendor first
How password reuse and third-party breaches leave voting machine vendors vulnerable to attack.
11 ways ransomware is evolving
Ransomware creators are getting more sophisticated in how they infect systems, avoid detection, and foil decryption efforts.
-
White Paper
-
Video/Webcast
Sponsored -
White Paper
-
Case Study
Sponsored -
White Paper
Most Popular
BrandPosts
Learn more-
Sponsored by Fortinet
-
Sponsored by CIS
-
Sponsored by AT&T
Sponsored Links