news analysisNation state actors increasingly hide behind cybercriminal tactics and malwareMicrosoft’s Digital Defense Report offers new insights into a rising trend that sees lines blurring between cyberespionage and cybercriminal activity.By Lucian Constantin01 Nov 20248 minsAdvanced Persistent ThreatsCyberattacksThreat and Vulnerability Management news NIS2 compliance eats up IT budgets despite doubtsBy Manfred Bremmer01 Nov 20242 minsRegulationSecuritynews Take action now to plug Windows Themes vulnerability, says expertBy Howard Solomon31 Oct 20246 minsWindows SecurityVulnerabilities newsFortinet launches its first standalone endpoint DLP productBy Sean Michael Kerner 31 Oct 20241 minData and Information SecurityNetwork Security opinionThe rise of the vCISO: From niche to necessity?By Dr. Mark Shmulevich 31 Oct 20246 minsCareersIT LeadershipSecurity news analysisOT security becoming a mainstream concernBy John Leyden 31 Oct 20247 minsDigital TransformationIT StrategyNetwork Security opinionCISA’s guides can help you demand – and receive – secure software from the get-goBy Susan Bradley 31 Oct 20248 minsSoftware ProvidersSecurity PracticesSecurity featureThe CSO guide to top security conferencesBy CSO Staff 31 Oct 20244 minsTechnology IndustryIT SkillsEvents newsRedLine and META infostealers taken down in international law enforcement action By Lucian Constantin 30 Oct 20244 minsAdvanced Persistent ThreatsHacker GroupsHacking More security newsnewsPSAUX ransomware takes down 22,000 CyberPanel servers in massive zero-day attackAlmost all 22,000 vulnerable CyberPanel devices identified on LeakIX were encrypted by PSAUX within hours.By Shweta Sharma 30 Oct 2024 3 minsRansomwareZero-day vulnerabilitySecuritynewsRussian hackers target US officials in a new spear-phishing campaignMicrosoft has warned that Midnight Blizzard, linked to Russia’s SVR, employs novel tactics to compromise government and NGO accounts.By Gyana Swain 30 Oct 2024 4 minsHacker GroupsPhishingZero TrustnewsBlack Basta attacks via MS Teams chatsThe ransomware gang Black Basta is now using a new attack tactic that runs via Microsoft Teams chats.By Julia Mutzbauer 29 Oct 2024 2 minsRansomwareSecuritynewsSecuriti to help businesses build secure, compliant Gen AI with a new toolGencore AI will leverage Securiti’s existing data security and compliance capabilities to overcome control and governance challenges with enterprise GenAI.By Shweta Sharma 29 Oct 2024 3 minsGenerative AISecurity SoftwareSecuritynewsAtende refused to pay the ransom, and now pays the priceCybercriminals have published data taken from Polish IT services provider Atende, after the company rejected their ransom demands. By Ludwik Krakowiak 29 Oct 2024 3 minsData BreachRansomwareSecuritynews analysisSecurity outsourcing on the rise as CISOs seek cyber reliefSecurity chiefs see managed security providers as an opportunity to tap seasoned practitioners, as persistent talent shortages complicate their in-house cyber strategies.By John Leyden 29 Oct 2024 5 minsSecurity Operations CenterThreat and Vulnerability ManagementCloud SecuritynewsSecurity researchers circumvent Microsoft Azure AI Content SafetyTwo vulnerabilities identified by researchers enable attackers to bypass gen AI guardrails to push malicious content onto protected LLM instances.By John Leyden 28 Oct 2024 5 minsVulnerabilitiesSecuritynewsDelta gets serious and sues CrowdStrikeAfter CrowdStrike’s software glitch caused massive cancellations and delays in air traffic worldwide, the US airline is now going to court.By Tristan Fincken 28 Oct 2024 2 minsLegalSecuritynewsPatched SonicWall critical vulnerability still used in several ransomware attacksResearchers increasingly observe compromised SonicWall devices involved in infections dropping Fog and Akira ransomware.By Shweta Sharma 28 Oct 2024 3 minsRansomwareVulnerabilitiesnews analysis77% of CISOs fear next big breach will get them firedIncreased pressures are putting CISOs in the hot seat, but should they bear all the blame when the inevitable comes?By Evan Schuman 28 Oct 2024 3 minsCSO and CISOData BreachIncident ResponsenewsPredictable AWS cloud deployment resources allow full account takeoverThe staging S3 buckets created within CDK bootstrapping have predictable naming patterns attackers can exploit.By Shweta Sharma 25 Oct 2024 3 minsCloud SecurityVulnerabilitiesSecuritynewsChange Healthcare data breach exposed ‘only’ 100 million US health recordsUnitedHealth CEO Andrew Witty testified in May that the breach may impact a third of the US population, about 112 million citizens.By Gyana Swain 25 Oct 2024 5 minsRansomwareCyberattacks Show more Show less Explore a topic Application Security Business Continuity Business Operations Careers Cloud Security Compliance Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy View all topics All topics Close Application Security Business Continuity Business Operations Careers Cloud Security Compliance Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy Risk Management Security Security Infrastructure Software Development Vulnerabilities Generative AI Popular topicsCybercrime interviewHow Interpol is adapting to the ever-evolving cybercrime landscapeBy Mario Moreno 25 Oct 2024 8 minsGovernment ITGovernmentCyberattacks newsLockbit dismantling progressesBy Florian Maier 02 Oct 2024 2 minsRansomwareCybercrime feature9 types of phishing attacks and how to identify themBy Fahmida Rashid and John Leyden 01 Oct 2024 11 minsPhishingCybercrimeData and Information Security View topic Careers featureHow CISOs can turn around low-performing cyber prosBy Andrada Fiscutean 30 Oct 2024 11 minsCSO and CISOCareersSecurity news analysisLow turnover leaves job-seeking CISOs with nowhere to goBy John Leyden 22 Oct 2024 5 minsCSO and CISOSalariesCareers featureWhat makes a great CISOBy Rosalyn Page 21 Oct 2024 8 minsCSO and CISOCareersIT Leadership View topic IT Leadership featureSecurity priorities emphasize CISO role on the riseBy Esther Shein 23 Oct 2024 9 minsCSO and CISOIT StrategyIT Leadership featureCISOs grapple with a growing concern: Stress-related substance abuseBy Deb Radcliff 16 Oct 2024 8 minsCSO and CISOHuman ResourcesIT Leadership featureWhat’s next for the CISO role?By Mary K. Pratt 14 Oct 2024 9 minsCSO and CISOCSO50IT Strategy View topic In depth featureHow cybersecurity roles are changing and what to look for when hiringAI, automation, and the increasing need for cybersecurity professionals with good soft skills are some of the things to look out for when hiring the next incident responder, GRC specialist, and SOC analyst.By Aimee Chanthadavong19 Dec 20239 mins CSO and CISOCareers Read the Article Podcasts podcastsCSO Executive Sessions: IndiaHost Qiraat Attar, content strategist for Foundry India, interviews top chief information security officers throughout India to discuss current security threats, critical IT projects, security skills and careers, and much more.5 episodesApplication SecurityCloud Security Ep. 05 CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi) 17 Jul 202417 mins CSO and CISO Ep. 04 CSO Executive Session India with Charanjit Bhatia, Head of Cybersecurity, COE, Bata Brands 08 Jul 202418 mins CSO and CISO Show me moreLatestArticlesPodcastsVideos brandpost Sponsored by Microsoft Security Generative AI is reshaping security risk. Zero Trust can help manage it By Mark Simos, Lead Cybersecurity Architect, Microsoft 30 Oct 20245 mins Artificial IntelligenceSecurity interview An inside look at Mapfre’s 2020 ransomware response By Esther Macías 30 Oct 202410 mins Insurance IndustryRansomwareIncident Response feature 5 cybersecurity issues at stake in next week’s US election By Cynthia Brumfield 29 Oct 20248 mins Government ITRegulationGovernment podcast CSO Executive Sessions: Guardians of the Games – How to keep the Olympics and other major events cyber safe 07 Aug 202417 mins CSO and CISO podcast CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi) 17 Jul 202417 mins CSO and CISO podcast CSO Executive Session India with Charanjit Bhatia, Head of Cybersecurity, COE, Bata Brands 08 Jul 202418 mins CSO and CISO video CSO Executive Sessions: Standard Chartered’s Alvaro Garrido on cybersecurity in the financial services industry 23 Oct 202410 mins Financial Services IndustrySecurity video CSO Executive Sessions: New World Development’s Dicky Wong on securing critical infrastructure 16 Oct 202412 mins Critical InfrastructureSecurity video CSO Executive Sessions: DocDoc’s Rubaiyyaat Aakbar on security technology 12 Sep 202419 mins Healthcare IndustryArtificial IntelligenceSecurity