Cloud sprawl frustrates enterprise connectivity

Companies are losing control of IT and security amid a tangle of apps and SaaS tools, according to a Forrester report commissioned by Cloudflare.

By Matt Ashare • Sept. 26, 2023

FBI director urges private sector to work with the agency on cyber threats

Christopher Wray told attendees at Mandiant’s mWISE 2023 private sector assistance contributed to the success of several recent operations.

By David Jones • Sept. 25, 2023

What Cisco learned about Mac vs. PC in the enterprise

A year-long internal trial revealed MacBooks were less vulnerable to cyber threats than PCs, and less expensive over time, according to SVP and CIO Fletcher Previn.

By Matt Ashare • Sept. 21, 2023

Cloud attainable for SMBs as costs come down

AWS sees opportunities for business growth in tech-hungry small and midsize businesses.

By Matt Ashare • Sept. 20, 2023

Compromised credential use jumps 300% in cloud intrusions: IBM

Valid credentials are also a hot commodity in the cybercrime marketplace, accounting for the vast majority of assets for sale on the dark web, IBM found.

By Matt Kapko • Sept. 15, 2023

SEC disclosure rules: What’s the role of the CIO?

The new rules for reporting cybersecurity incidents highlight the CIO's role as a communicator and connector.

By Roberto Torres • Sept. 13, 2023

Cybersecurity investments boost profitability, resilience: White House

Resilience spending will help companies avoid downtime, acting National Cyber Director Kemba Walden said at the Billington Cybersecurity Summit.

By David Jones • Sept. 7, 2023

SEC cyber disclosure rules are taking effect: Here’s what to expect

With enforcement on the horizon, much of the SEC's rules for material disclosures are subject to interpretation.

By Naomi Eide • Sept. 1, 2023

Software industry urged to assume risk on open source security

The Open Source Security Foundation called on commercial and non-commercial organizations that use open source software components to adopt better security practices.

By David Jones • Sept. 1, 2023

Security basics aren’t so basic — they’re hard

Lax security controls cause heavy damages, and security experts warn unmet basic requirements lead, time and again, to data breaches.

By Matt Kapko • Aug. 21, 2023

Hidden revenue: Checkout is the key to conversion in retail

Learn how important the customer checkout experience is in e-commerce.

Aug. 21, 2023

AWS customers’ most common security mistake

All too often organizations are not doing least-privilege work with identity systems, according to AWS’ Mark Ryland.

By Matt Kapko • Aug. 18, 2023

Zoom’s AI terms overhaul set the stage for broader data use scrutiny

The shift to adopt generative AI has created tension between SaaS vendors' data desires and enterprises' security concerns.

By Lindsey Wilkinson • Aug. 16, 2023

SEC cyber rules ignite tension between reputation and security risk

The rules, which take effect Sept. 5, encountered mixed reactions. Some champion board-level accountability. Others say the rules are too big of a lift.

By David Jones • Aug. 16, 2023

Microsoft, cloud security under the microscope with federal cyber review

The federal Cyber Safety Review Board will examine issues related to the state-linked hack of Microsoft Exchange and larger concerns tied to identity management and authentication.

By David Jones • Aug. 14, 2023

How to create seamless customer journeys with generative AI

Explore the transformative power of generative artificial intelligence (GAI) in enhancing customer experiences, leveraging big data and fostering brand loyalty.

By Rick Laner, Chief Customer Officer, Elastic • Aug. 14, 2023

The MOVEit spree is as bad as — or worse than — you think it is

The mass exploit has compromised more than 600 organizations, but that only scratches the surface of the potential number of downstream victims. Security experts project years of fallout.

By Matt Kapko • Aug. 10, 2023

White House launches AI cyber competition to fix software vulnerabilities

In partnership with OpenAI, Anthropic, Google and Microsoft, participants will have access to top AI companies’ technology for designing new cybersecurity solutions.

By Lindsey Wilkinson • Aug. 9, 2023

Zoom emphasizes customer consent as critics question AI service terms

Concerns stem from what Zoom says it will do with customer and service-generated data and what its policy language allows. 

By Lindsey Wilkinson • Updated Aug. 11, 2023

AWS pledges $20M to K-12 cyber training, incident response

The cloud services provider is participating in a broad White House plan to build additional protection to defend schools against ransomware and other threats.

By David Jones • Aug. 8, 2023

Businesses improved cyber incident response times following Log4j, report finds

Security teams have improved their response times during attacks, but post-incident recovery still lagged, according to Immersive Labs.

By David Jones • Aug. 4, 2023

C-suite, rank-and-file at odds over security’s role

Half of executives say security is prioritized when implementing a cloud strategy. Most security workers beg to differ.

By Roberto Torres • Aug. 3, 2023

FINOS moves to rationalize financial industry cloud controls

Citi, Goldman Sachs and Morgan Stanley are among the companies participating in the Fintech Open Source Foundation project, which will introduce a framework this year.

By Matt Ashare • July 28, 2023

SEC votes to overhaul disclosure rules for material cyber events

After a fierce debate, the agency voted to require companies to come clean on material breaches and attacks within four business days of determination.

By David Jones • July 26, 2023

Cybercriminals target highly profitable companies, study finds

Damage from cybercrime far exceeds the sum of costs to targeted companies, harming peer companies and the broader economy, researchers at AEI found. 

By Jim Tyson • July 7, 2023