Insider

Get exclusive access to premium articles, product guides, reviews, how-tos, and more from CIO, CSO, Computerworld, InfoWorld, ITworld, and Network World - the best enterprise tech publications in the business. Learn more!

A fishing lure with multiple hooks baits a binary stream. [fraud / phishing / social engineering]
Feature

How to prepare for an effective phishing attack simulation

virtual puzzle cube / problem-solving / solution / strategy
Feature

How to reboot a broken or outdated security strategy

detection radar computer bug threats identify breach by the lightwriter kao studio getty
Security IntelligenceBy

5 things to look for in an XDR solution

The XDR market is hot, with vendors large and small jumping on the bandwagon. Here are 5 key capabilities to look for when evaluating XDR solutions.

A hacker attacks from within a Windows system.
Feature

Top SolarWinds risk assessment resources for Microsoft 365 and Azure

Government and private organizations, including Microsoft, have released a wealth of information and tools to assess risk from SolarWinds-like attacks.

Australia > Sydney > Streetscape / vanishing-point perspective / path / future / progress
Lohrmann on GovSpaceBy

3 security career lessons from 'Back to the Future'

You don't need to be able to predict the future to have a successful security career, but you had darned well better be able to learn from the past.

digital cloud computing cyber security digital data network future picture id1216520824
Feature

Top 7 security mistakes when migrating to cloud-based apps

As organizations rush key apps to the cloud to support remote workers, they often create opportunities for attackers. These are the most common mistakes to avoid.

Binary Russian flag
Checks and BalancesBy

SolarWinds hack is a wakeup call for taking cybersecurity action

Many questions are yet to be answered as the investigation and response continues, but one thing is clear: managing supply chain risks requires a level of sophistication similar to that of the attackers.

cyber attack alert
Feature

How to prepare for and respond to a SolarWinds-type attack

If you can perform these tasks on your Windows network, then you are properly prepared to respond to a nation-state attack like SolarWinds.

A gavel rests on open law book. [law / regulation / compliance / legal liability]
Feature

5 questions CISOs should ask prospective corporate lawyers

Where can you find an attorney with the knowledge and insight to help you navigate thorny privacy and security issues? These five questions will help you find the right match.

abstract data flows / data streams
Feature

Differential privacy: Pros and cons of enterprise use cases

Hiding sensitive data in a sea of noise might have more value than encryption in some use cases. Here are the most likely differential privacy applications and their trade-offs.

cso security malware breach hack alert gettyimages 1144604134 by solarseven 2400x1600px
How-To

How to block malicious JavaScript files in Windows environments

Attackers frequently send malicious JavaScript files through bogus emails. It's easy to block these files from reaching a hapless user. Here's how.

Email takeover > Puppeteer hands manipulating strings
How-To

How to avoid subdomain takeover in Azure environments

Active but unused subdomains in Microsoft Azure give attackers the opportunity to use them for malicious purposes. Here's how to identify and delete vulnerable subdomains before attackers do.

A network of linked question marks.
Feature

6 board of directors security concerns every CISO should be prepared to address

The COVID pandemic and spike in cybercriminal activity has raised interest in security among corporate boards. These are the concerns and questions CISOs say they are now hearing from them.

Security system alert, warning of a cyberattack.
Feature

How to prepare for the next SolarWinds-like threat

It is possible to minimize the risk from nation-state attacks like SolarWinds. This is the best advice based on what experts have learned so far.

retro boss hiring interview job happy executive handshake greeting office
Feature

CISO playbook: 3 steps to breaking in a new boss

As CISOs know all too well, change is inevitable—and that includes organizational regime change. Here, security leaders share their best advice for starting new C-suite relationships off on the right foot.

Shaking hands
Feature

Perfect strangers: How CIOs and CISOs can get along

The rise of security as a strategic imperative has altered the relationship between IT and infosec leaders. Here’s how CIOs and CISOs can become better partners.

Fraud / deception / social engineering > A wolf in sheep's clothing in a binary environment.
Cybersecurity SnippetsBy

Why 2021 will be a big year for deception technology

New use cases, MITRE Shield support, and greater awareness will drive market growth and penetration.

Two figures within a data center / server maze, strewn with clouds.
Feature

What CISOs need to know about Europe's GAIA-X cloud initiative

A new cloud platform based on "European values" around data sovereignty, data protection and privacy will be an alternative to the likes of AWS or Azure.

A conceptual representation of accessing username and password credentials.
How-To

4 Windows 10 settings to prevent credential theft

Review these Windows settings to make sure you're not making it easy for attackers to steal login credentials.

CSO > security threats / laptop bombarded by attacks
Feature

6 new ways threat actors will attack in 2021

Cyber criminals will leverage improved capabilities and vulnerabilities introduced during the COVID crisis to improve the efficiency of their attacks.

Load More