Companies grapple with post-breach disclosure risks

The concerns leading organizations to withhold information are aplenty, including reputational damage and financial impacts.

By Matt Kapko • Feb. 21, 2023

Threat actors can use ChatGPT, too. Here’s what businesses should watch

While IT departments seek enterprise applications, cyber teams must be on the lookout for attacks using the generative AI technology.

By Lindsey Wilkinson • Feb. 21, 2023

Explore the Trendline➔

Cybersecurity

Security strategies benefit from nimbleness as companies respond to Log4j and other high-profile vulnerabilities, a boundless perimeter and questions about supply chain trust. 

By CIO Dive staff

IT security budgets triple as businesses confront more cyberattacks

About half of all businesses suffered a breach or attack in 2022, versus 39% in 2020, according to specialty insurance provider Hiscox.

By David Jones • Feb. 16, 2023

GitHub Copilot for Business, now in public release, weaves in security

The AI-powered coding tool now sports a more advanced OpenAI model.

By Lindsey Wilkinson • Feb. 14, 2023

OkCupid helps users find love through ChatGPT

Love is in the air with help from AI, but experts caution against ChatGPT-powered catfishing.

By Lindsey Wilkinson • Feb. 14, 2023

Layoffs come for cybersecurity, too

Even companies in more insulated fields, such as cyber vendors Sophos, Okta and Secureworks, are bound to feel the pain as enterprises cut spending.

By Matt Kapko • Feb. 9, 2023

US government weighs in on cloud adoption in banking

The Department of the Treasury stood up an interagency group to provide neutral guidance as financial services companies accelerate cloud migration.

By Matt Ashare • Feb. 9, 2023

Corporate boards struggle to understand cybersecurity and digital transformation

Boards are trying to understand the ever-evolving threat landscape as federal regulators plan additional breach disclosure rules.

By David Jones • Feb. 6, 2023

CISOs to face new budget hurdles in 2023 as economic anxiety lingers

Boards and the C-suite still see cybersecurity as a cost center, forcing CISOs to rethink their approach amid cost cuts become more prominent. 

By David Jones • Jan. 31, 2023

Microsoft surpasses $20B in security revenue as enterprise customers consolidate

The company’s cybersecurity business is growing, but CEO Satya Nadella warned that customers, in an uncertain economy, are exercising caution.

By David Jones • Jan. 30, 2023

Threat actors are using remote monitoring software to launch phishing attacks

CISA, the NSA and MS-ISAC warned threat actors could leverage legitimate tools using help-desk themed lures. 

By David Jones • Jan. 27, 2023

Live Nation’s IT capabilities scrutinized as company blames bots

Senators questioned whether there was a fundamental flaw in the company's technology stack in a high-profile congressional hearing.

By Lindsey Wilkinson • Jan. 25, 2023

Only half of companies have the budgets necessary to mitigate cybersecurity risks: study

Macroeconomic pressures squeeze IT security spending, Neustar data shows.

By David Jones • Jan. 24, 2023

Top tech talent rewarded with remote work

Software and data professions command the highest percentage of flexible work options, a Remote report shows.

By Matt Ashare • Jan. 24, 2023

Threat actors lure phishing victims with phony salary bumps, bonuses

Multiple campaigns underscore threat actors’ ability to shift tactics and target employees by exploiting current events and themes.

By Matt Kapko • Jan. 19, 2023

Cyber, business interruption remain top global corporate risks

Cybersecurity risk sits top of mind for corporations around the world, according to Allianz Global.

By David Jones • Jan. 18, 2023

The cybersecurity talent shortage: The outlook for 2023

The available potential workforce isn’t keeping pace with demand, and experts blame a lack of interest from young people entering the job market.

By Sue Poremba • Jan. 13, 2023

Slack employee tokens stolen, GitHub repository breached

The firm said a threat actor downloaded private code repositories, but none included customer data or the company’s primary code base.

By David Jones • Jan. 5, 2023

Rackspace executives stand by ransomware response

Chief Product Officer Josh Prewitt said the company restored email access to more than three-quarters of its Hosted Exchange customers. 

By David Jones • Dec. 16, 2022

What does it take to be good at cybersecurity?

Few large enterprises meet Deloitte’s standards for high cyber maturity. The 21% at that level reap benefits not typically associated with security.

By Matt Kapko • Dec. 13, 2022

Fear, panic and Log4j: One year later

Fears of catastrophic cyberattacks have thus far failed to materialize. But federal authorities stress threat actors are playing the long game.

By David Jones • Dec. 12, 2022

Google stresses unmet need for software supply chain security

The open source software ecosystem remains vulnerable, and fragmented efforts could stifle progress, according to Google.

By Matt Kapko • Dec. 9, 2022

Internet Explorer is still a viable attack vector

North Korea-linked threat actors are using a technique that has been widely used to exploit the browser since 2017, Google researchers found.

By Matt Kapko • Dec. 8, 2022

AWS CEO stresses the core elements of cloud security

Adam Selipsky described security as a prerequisite for organizations to trust cloud infrastructure. And for that, he claimed, AWS is the best in the game.

By Matt Kapko • Dec. 1, 2022

Why cyberattackers love IT professionals — and how organizations can keep risk at bay

Limiting admin access is one step toward strengthening defenses, but there are other ways to reduce vulnerabilities.

By Brian Eastwood • Nov. 30, 2022