C-suite, rank-and-file at odds over security’s role

Half of executives say security is prioritized when implementing a cloud strategy. Most security workers beg to differ.

By Roberto Torres • Aug. 3, 2023

FINOS moves to rationalize financial industry cloud controls

Citi, Goldman Sachs and Morgan Stanley are among the companies participating in the Fintech Open Source Foundation project, which will introduce a framework this year.

By Matt Ashare • July 28, 2023

SEC votes to overhaul disclosure rules for material cyber events

After a fierce debate, the agency voted to require companies to come clean on material breaches and attacks within four business days of determination.

By David Jones • July 26, 2023

Cybercriminals target highly profitable companies, study finds

Damage from cybercrime far exceeds the sum of costs to targeted companies, harming peer companies and the broader economy, researchers at AEI found. 

By Jim Tyson • July 7, 2023

The role for AI in cybersecurity

Generative AI can become an ally for new security professionals who may otherwise feel overwhelmed. For more seasoned security analysts, it can offer time to refine their skills through automation of repetitive tasks.

By Sue Poremba • July 5, 2023

AI linked to new crop of business email scams

Fraudsters appear to be using AI to craft well-written, malicious email messages at scale.

By Alexei Alexis • June 28, 2023

Google backs $20M effort to train students for key cybersecurity jobs

The program will train diverse students at 20 higher education centers in the U.S. Students will then provide services at under-resourced infrastructure providers.

By David Jones • June 27, 2023

6 strategies for optimizing the security of your SaaS stack

Learn more about different solutions for how your organizations can enhance the security of your ever-growing SaaS stacks.

By Robbie Strickland, Chief Information Officer at Miro • June 26, 2023

Cyber CEOs are all-in on generative AI

Generative AI and LLMs are gaining attention in the security industry, but not everyone is convinced the technologies will deliver the benefits promised.

By Matt Kapko • June 23, 2023

Banks are leveraging modern cloud security tools to mitigate human error

The financial sector’s cloud workloads more than doubled from 2021 to 2022. What does this mean for the industry?

By Brandon Mavleos • June 20, 2023

Hyperscalers seen as key tool in shifting balance of cyber risk

The acting national cyber director says more oversight may be necessary, but a resilient cloud infrastructure is critical to the national cybersecurity strategy.

By David Jones • June 12, 2023

Cybercriminals target C-suite, family members with sophisticated attacks

Senior executives are being targeted for IP theft, doxxing and extortion, often through home office networks.

By David Jones • June 7, 2023

CISOs still expect cyber budget increases amid economic pressure

Security executives continue to focus on maximizing value as they seek a more efficient and simplified security posture, according to a report from Nuspire.

By David Jones • June 1, 2023

Palo Alto Networks teases plans for generative AI across security services

The security vendor is taking a restrained approach to deploying generative AI products, but the company’s leaders still believe the technology will herald a major shift for cybersecurity.

By Matt Kapko • May 31, 2023

Cyber resilience programs fall short on preparing workers for a crisis

The report from Immersive Labs raises questions about whether corporate employees would know how to respond after a major cyberattack.

By David Jones • May 30, 2023

Why and how to report a ransomware attack

The majority of ransomware attacks go unreported, creating a blind spot that hampers response, recovery efforts and the prevention of future attacks.

By Matt Kapko • May 19, 2023

Why cyber is also a CIO problem

When an incursion occurs, IT teams need to have a recovery plan and backup systems ready for deployment.

By Matt Ashare • May 18, 2023

SolarWinds turns to Infosys to accelerate SaaS shift

The move eases the transition from on-prem to cloud-based software that was already underway, President and CEO Sudhakar Ramakrishna said.

By Matt Ashare • May 11, 2023

White House considers ban on ransom payments, with caveats

Experts suggest the effort, a reversal from the administration's previous stance, is fraught with complications that could cause unintended consequences.

By Matt Kapko • May 8, 2023

How 7 cybersecurity experts manage their passwords

What do CIOs and other cyber experts do to manage credentials? Hint: they don’t reuse passwords.

By Matt Kapko • May 4, 2023

Software industry leaders debate real costs and benefits of CISA security push

The global effort toward secure by design is seen as a potential game changer for software security, but may require investments and cultural changes.

By David Jones • April 17, 2023

There’s a movement afoot to make tech vendors responsible for cybersecurity

The international joint guide to secure by design encapsulates security recommendations long-touted by CISA, including technical tactics for software and infrastructure design.

By Matt Kapko • April 13, 2023

How Target approaches identity and access management

Designing an IAM system that provides a good user experience while preventing unauthorized access is a critical responsibility.

By Matt Kapko • April 12, 2023

Leftover data lurks in the enterprise, creating business risk

When an organization has little data visibility, it becomes even more vulnerable to leaks and breaches — as well as insider and external threats. 

By Sue Poremba • April 11, 2023

Samsung employees leaked corporate data in ChatGPT: report

Data privacy is a concern for companies with employees using ChatGPT’s web-based interface, as input data is used to train and improve the tool.

By Lindsey Wilkinson • April 7, 2023