Advertisement
Must Read
Security Recruiter Directory
To find the right security job or hire the right candidate, you first need to find the right recruiter. CSO's security recruiter directory is your one-stop shop.
The Microsoft Exchange Server hack: A timeline
Research shows plenty of unpatched systems remain. Here's how the attacks unfolded, from discovery of vulnerabilities to today's battle to close the holes.
What is cryptojacking? How to prevent, detect, and recover from it
Criminals are using ransomware-like tactics and poisoned websites to get your employees’ computers to mine cryptocurrencies. Here’s what you can do to stop it.
Advertisement
8 cybersecurity startups to watch
Security startups are often innovation leaders that attempt to solve critical and persistent problems. These are some of the most interesting ones to watch as they tackle issues around multicloud security, identity management,...
How malicious Office files and abused Windows privileges enable ransomware
Ransomware groups most often gain entry to Windows networks through malicious Office documents and then move laterally by abusing Windows privileges. Here's how to defend against both.
5 key qualities of successful CISOs, and how to develop them
CISOs today need significantly different skillsets to cybersecurity leaders of the past as they become more critical to business success.
8 top identity and access management tools
Identity is becoming the new perimeter, and these IAM tools have evolved to help secure assets as organizations rely less on traditional perimeter defenses and move to zero-trust environments.
Cybersecurity Snippets
5 things CISOs want to hear about zero trust at the RSA Conference
Security executives are interested in how ZT vendors will integrate with existing technologies, supplement ongoing projects, and support business processes.
Tips and tactics of today's cybersecurity threat hunters
Having internal threat hunting capability is becoming a necessity for many organizations. Here are the most common things they look for and how they respond to incidents.
Previously undocumented backdoor targets Microsoft’s Equation Editor
RoyalRoad backdoor delivered via spear phishing was identified in an attack on a Russian-based defense contractor.
Advertisement
To better defend digital assets, follow physical security's playbook
It’s high time that the owners and managers of corporate networks take the same approach and sense of urgency to protecting corporate digital assets that their physical security counterparts have taken with building security.
SASE is coming, but adoption will be slow (especially for large enterprises)
Smaller organizations eye SASE to provide secure access to applications. Lack of maturity, existing security and digital transformation investments give large enterprises pause on SASE.
6 tips for better collaboration between security and cloud teams
Good communication, mutual understanding of each team's goals, and proper processes and infrastructure will ensure an effective working relationship between cloud and security teams.
