Latest articles for CSO magazine

Women account for just 10 percent of the information security workforce, a new report shows, but are making progress in governance, risk and compliance jobs.The…

Biometric data such as fingerprint scans is being collected too widely and too casually, according to security company Protegrity USA.”Today, many of the major banks…

Companies that create tools for “rooting” Android phones may be within the law, but they may be inadvertently paving the way for malware developers.According to…

Non-technical health care employees are too complacent about the possibility of a data breach, and few are aware that it has happened to their organizations,…

In the war between malvertisers and legitimate advertising networks, the bad guys seems to be winning. Attackers use real-time bidding platforms to place malicious ads…

Application attacks against clouds jumped 45 percent last year, according to a new report from Houston-based cloud security firm Alert Logic, Inc.The report was based…

The majority of large companies have experienced a breach over the past twelve months, but almost a quarter, 23 percent, of firms do not know…

The average U.S. company of 1,000 employees or more spends $15 million a year battling cybercrime, up 20 percent compared to last year, according to…

The average global 5,000 company spends about $15 million to recover from the loss of business due to a certificate outage — and faces another…

The other day, I was in a room full of CIOs, CTOs and CISOs who — as an ice-breaking activity — were asked to share…

Companies in the healthcare sector are three times more likely to encounter data theft than the average firm, according to a report released this morning.The…

Three times as many credit cards will be chip-enabled by the end of the year as debit cards, making the slower banks bigger targets for…

Members of the Russian military have been receiving well-crafted phishing emails since mid-summer from attackers that use Chinese-language tools and Chinese command-and-control installations, according to…

Containers offer a quick and easy way to package up applications and all their dependencies, and are popular with testing and development.According to a recent…

Containers offer a quick and easy way to package up applications and all their dependencies, and are popular with testing and development.According to a recent…

There’s a new botnet malware on the loose, called Corebot, that researchers believe has the potential to develop into a significant threat.The malware was first…

The top 10 travel apps in the iOS and Android app stores are all riddled with security flaws, according to a new report from Bluebox…

To avoid detection, some hackers are ditching malware and living “off the land” — using whatever tools are already available in the compromised systems, according…

In a cybersecurity survey of 485 large colleges and universities, the Massachusetts Institute of Technology came in at the bottom of the list.In a report…

This fall, the Senate is expected to take another look at the Cybersecurity Information Sharing Act, or CISA, but many security experts and privacy advocates…

The number of individual records compromised by data breaches has declined by 41 percent during the first half of this year, compared to the same…

This October, US merchants and payment providers are scheduled to switch to new, more secure, chip-based payments. But financial transactions aren’t going to become safer…

The Ashley Madison breach has been a Christmas-in-August present for spammers and scammers of all kinds, and your company could be the next target.Here are…

The US Court of Appeals has ruled that the FTC mandate to protect consumers against fraudulent, deceptive and unfair business practices extends to oversight of…

In the past two years, 81 percent of hospitals and health insurance companies have had a data breach, according to a report released by KPMG.”These…

Enterprises tend to be highly focused on keeping attackers out of their systems, but most of the actual damage happens not when the bad guys…

Wouldn’t it be convenient if all the spam and malware sites were all grouped together under one top-level domain — .evil, say — so that…

The real cause of the talent shortage in the information security field isn’t a lack of new people entering the profession, but retention and churn…

Amazon will stop accepting Flash ads on its advertising network on Tuesday, and it will help make the entire Web more secure, security experts say.According…

The average 10,000-employee company spends $3.7 million a year dealing with phishing attacks, according to a new report from the Ponemon Institute.The report, which surveyed…