Insider

Get exclusive access to premium articles, product guides, reviews, how-tos, and more from CIO, CSO, Computerworld, InfoWorld, ITworld, and Network World - the best enterprise tech publications in the business. Learn more!

Eyeglasses rest on a binary field / code review / threat assessment / check vulnerabilities
Cybersecurity SnippetsBy

Security hygiene and posture management: A 2022 priority

Tim Fitzgerald, CISO and SVP, Arm
Feature

Arm’s vulnerability management program has legs

programmer abstract code glasses devops certification skills kevin unsplash
Feature

How chaos engineering can help DevSecOps teams find vulnerabilities

DevOps teams have used chaos engineering concepts to find software bugs for years. Tools are now available to help identify security flaws, too.

adding processor to circuit board computer hardware
Feature

Microsoft's Pluton security processor tackles hardware, firmware vulnerabilities

Pluton-equipped Windows 11 computers are now available, but the decision to purchase them depends on your threat model.

Shared responsibility concept > Hands take equal shares of pie chart [partnership / teamwork]
Feature

Collective resilience: Why CISOs are embracing a new culture of openness

CISOs are finding value in information sharing among trusted, vetted sources. Here’s how they are maximizing the intelligence gathered from these channels.

A stressed businessman with head in hand sits at a desk and computer in an office workspace.
Feature

The emotional stages of a data breach: How to deal with panic, anger, and guilt

Intense situations require both the security experts and stakeholders to be calm and focused, but that is easier said than done. This advice can help.

Teresa Merklin, Fellow, Lockheed Martin Aeronautics
Feature

Lockheed’s Teresa Merklin: There’s no such thing as a quick fix

Forget the silver bullet; focus on cyber resiliency, advises the Lockheed Martin fellow.

microsoft 365 channel attributes apps
Feature

A 2022 checklist for protecting Microsoft 365 users and data

You have native options to better secure Microsoft 365. Use them effectively and you might save time and money spent on other solutions.

hot and cold fire and ice clash temperature
Feature

7 hot cybersecurity trends (and 2 going cold)

Is that security trend hot or not? From tools and technologies to threats and tactics, the numbers don't lie.

gavel / abstract binary lines > court judgment / fine / penalty / settlement
Feature

The biggest data breach fines, penalties, and settlements so far

Hacks and data thefts, enabled by weak security, cover-ups or avoidable mistakes have cost these companies a total of nearly $1.3 billion and counting.

keys on a keychain / key ring / password management / binary code overlay
Feature

Exploit chains explained: How and why attackers target multiple vulnerabilities

Here is what you need to know about exploit chain risks, use cases, and mitigation.

access control / authentication / privileges / security / key
Feature

Active Directory security updates: What you need to know

These Active Directory updates address critical privilege bypass and elevation vulnerabilities. Implement them now if you can.

Activists protest against racism and advocate for social justice and equal rights.
Feature

Aligning security strategy with ESG objectives: The next big issue for CISOs

As interest in environmental, social, and governance issues increases among investors, business partners, consumers, and employees, CISOs will need to shape their security and risk strategies to align with the organization’s ESG...

A stack of school books sits on a desk, with an apple on top. [Education/Learning]
Feature

TIAA boosts cybersecurity talent strategy with university partnership

CISO Tim Byrd teams up with New York University Tandon School of Engineering to create a new educational pathway for TIAA employees.

train tracks converge / rails switch / paths merge / convergence / directory traversals
Feature

6 ways hackers hide their tracks

From trusted pentesting tools to LOLBINs, attackers abuse trusted platforms and protocols to evade security controls.

network security / network traffic scanning
Feature

Lessons learned from 2021 network security events

Rather than predict what 2022 will bring, let's manage the future by implementing the lessons learned from this year's biggest security threats.

A laptop user with magnifying lens examines binary data.
Feature

How to detect Log4Shell exposure and exploitation

Software dependencies and third-party products make detecting Log4j exploits tough, but this advice and some specialized tools can help.

high priority gauge
Feature

Security priorities for 2022: Advancement, not revolution

Security leaders say their priorities reflect security needs due to recent shifts in their organization’s IT and business environments, a changing threat landscape, and emerging risks.

Outdated, obsolete computer systems in need of updating display binary code.
Feature

Your Microsoft network is only as secure as your oldest server

It's time to inventory your network to identify systems to replace or migrate away from.

storytelling primary
Opinion

How CISOs can drive the security narrative

If you want people to follow proper security practices, they need to understand why. That's best done by telling a good story.

Load More