Security: Page 30
-
61% of CIOs worry about malicious insider threats, survey finds
Ignorance is security's Achilles' Heel. Insider threats may be scarier when employees don't believe they’re doing anything wrong.
By Samantha Schwartz • March 25, 2019 -
Opinion
Sorting through the hype: How to get started with DevSecOps
"DevSecWhat?" The methodology, which integrates security into the full application lifecycle, represents a massive process and cultural shift.
By Nitzan Miron • March 25, 2019 -
Explore the Trendline➔
Getty Images
TrendlineIT Security
Executives are working to improve the security posture of their businesses, a task that requires cross-function collaboration.
By CIO Dive staff -
Weak industrial security one explanation for Hydro's global ransomware attack
U.S. operations were hit first, but the company's energy operations are running as normal. Primary metal plants are functioning with a "higher degree of manual operations."
By Samantha Schwartz • March 20, 2019 -
Cybercrime by the numbers: Corporate 'consequences' mount to $13M
When security fails, the price tag to fix it is hefty and it can signal corporate irresponsibility.
By Samantha Schwartz • March 18, 2019 -
The tug of war between infosec and the C-suite on cloud security
"When it comes to cloud visibility, CIOs and CISOs can either be the problem or the solution," said FireMon's Tim Woods.
By Samantha Schwartz • March 14, 2019 -
Opinion
Gartner's top 10 security projects for 2019
Security teams incorrectly assume they can successfully implement projects without first verifying that they have foundational security capabilities and risk assessments in place.
By Brian Reed • March 11, 2019 -
Deloitte partners with comic book initiative to introduce girls to STEM careers, skills
The partnership will produce four comic books and one graphic novel featuring tech-savvy hero Ella the Engineer.
By Riia O'Donnell • March 7, 2019 -
Kendall Davis/CIO Dive
Deep DiveAfter a breach, CISOs fall on their swords or play the role of scapegoat
Neither serves a company well, and yet it's no surprise that a C-suite overhaul is common after a massive data debacle.
By Samantha Schwartz • March 7, 2019 -
DevSecOps steps in for companies that don't have time to dedicate to security
Just over one-quarter of companies have a mature DevOps adoption and those organizations are 350% more likely to integrate automated security, according to a Sonatype report.
By Samantha Schwartz • March 5, 2019 -
How Verizon Media beefs up cybersecurity with red teams and bounties
Just because a software update was deployed doesn't mean potential exploits have been eliminated. Challenging assumptions leaves space for healthy skepticism.
By Samantha Schwartz • March 1, 2019 -
Getty / Edited by Industry Dive
Is big tech too big? FTC's new technology competition task force may soon have an answer
Major antitrust action brought against the likes of Facebook, Google or Amazon could serve up the largest technology competition case since Microsoft's troubles in the '90s.
By Alex Hickey • Feb. 27, 2019 -
Retrieved from Lyft on October 23, 2017
Lyft's CISO exits as company embraces Silicon Valley trend of embedded security
Mike Johnson's resignation comes when the rideshare company is exploring distributed security responsibilities.
By Samantha Schwartz • Feb. 27, 2019 -
Getty / Edited by Industry Dive
Equifax undergoing major tech overhaul as dust settles from breach fallout
The company is breaking down data siloes and moving customer systems to the public cloud as part of its aggressive 2020 technology plan.
By Alex Hickey • Feb. 26, 2019 -
How cybersecurity skill shortage is impacting incident response
Only one in 10 organizations are able to process 75% or more of their data relating to a security event, according to Oracle and KPMG's survey.
By Samantha Schwartz • Feb. 22, 2019 -
Why 'living off the land' has become a preferred method of cybercrime
LotL and supply chain attacks take advantage of trusted applications and partner ecosystems, but prevention requires more sophisticated tools.
By Samantha Schwartz • Feb. 20, 2019 -
Wendy's $50M cyberattack settlement signals growing threat to quick-service restaurants
The lawsuit reveals how costly cyberattacks can be for restaurants, which are facing frequent POS and loyalty system hacks.
By Julie Littman • Feb. 19, 2019 -
No longer a 'big, fat, honking firewall': Cisco focuses on the network amid multicloud complexity
Companies have a "more complicated environment than they had five years ago when they began this journey to simplification," said CEO Chuck Robbins.
By Naomi Eide • Feb. 19, 2019 -
Report: Billion-dollar FTC fines could mark new era for privacy in US
Facebook is negotiating a multibillion dollar fine for the settlement of an investigation into its privacy practice blunders, sources familiar with the matter told The Washington Post and The New York Times.
By Alex Hickey • Feb. 15, 2019 -
The root of Microsoft's patches: Memory safety flaws and dated languages
A memory safety vulnerability is a processing error which can label memory as free though it's still in use.
By Samantha Schwartz • Feb. 12, 2019 -
Supplier cybersecurity risk concerns auto industry
The majority of respondents to a Synopsys and SAE International study said they test less than half of the automotive technology they develop for security vulnerabilities.
By Barry Hochfelder • Feb. 11, 2019 -
European regulators log more than 59K data breaches since GDPR's passage
The Netherlands, Germany and United Kingdom reported 15,400, 12,600 and 10,600 data breaches respectively, the most of any European countries.
By Alex Hickey • Feb. 8, 2019 -
Retrieved from Amazon on October 09, 2018
AWS per seat service tweaks the buying process
While WorkLink will not revolutionize services at AWS or augment the cloud market, it highlights how the company entices customers to stay.
By Naomi Eide • Feb. 7, 2019 -
Alphabet highlights security 41 times in filing as privacy concerns close in
The company is feeling the heat of "increasing regulatory scrutiny" and changes in data policies among other tech companies.
By Samantha Schwartz • Feb. 6, 2019 -
Duke Energy fined $10M for cybersecurity lapses since 2015
The 127 security violations were largely self-reported by the utility and caused by lack of managerial oversight, process deficiencies, inadequate training and lack of internal controls.
By Iulia Gheorghiu • Feb. 4, 2019 -
Container security needs call for more DevSecOps talent
Growing maturity in the container domain has led to the proliferation of more security products, but many products and vendors are difficult for clients to choose between.
By Alex Hickey • Jan. 31, 2019
Previous
