Latest articles for CSO magazine

Federal government agencies are still fighting the last cybersecurity war, the one where computer networks had a strong, defensible perimeter, according to a new report…

The FBI may have backed off from its demand that Apple build a backdoor to an iPhone security mechanism, for now at least, but experts…

In a survey released today, 27 percent of of U.S. office workers at large companies would sell their work password to an outsider, compared to…

A new report released by Shape Security yesterday details how the Sentry MBA tool makes credential stuffing attacks more widely available to cybercriminals.The traditional “brute…

The email comes from a trusted source — the CEO, a regular vendor, the company attorney or accountant. It’s part of an ongoing conversation, the…

The FTC is on a data breach enforcement roll. Last summer, the courts allowed it to fine companies with weak cybersecurity practices. Now, the FTC…

As little as four years ago, only about a third of companies considered cybersecurity when planning a merger. Today, that percentage has flipped.”When you look…

The market for next-generation endpoint security tools has doubled each of the last two years, and will continue to grow at a compound annual growth…

In a recent study of a million client devices over the course of 10 months in 2015, every web gateway allowed outbound malicious communications –…

Cybercriminals and hacktivists face many of the same hiring problems as defending security organizations, but with their own particular twists, according to report released this…

The U.S. Senate recently proposed a cybersecurity disclosure bill that would require public companies to describe what cybersecurity expertise their boards have, or, if they…

Verizon is known for its huge annual Data Breach Investigations Report, but this morning it released a less data-heavy digest organized by case study. The…

The biggest driver of encryption technology is the need to comply with privacy or data security regulations, according to a new report.In a survey of…

Firms are detecting breaches nearly 30 percent sooner than before, according to a new report from Mandiant, but attackers are also getting more aggressive in…

Despite widespread public condemnation, Hong Kong toy maker VTech is not backing down from a change in its Terms and Conditions ducking its responsibilities in…

2015 was the “Year of Collateral Damage,” according to a report released this morning by Hewlett Packard Enterprise.Attackers targeting companies or other organizations are not…

In response to attempts to put restrictions on encryption technology, a new report surveys 546 encryption products in 54 countries outside the United States, out…

As buildings get smarter and increasingly connected to the Internet, they become a potential vector for attackers to target.IBM’s X-Force ethical hacking team recently ran…

Is your industry next in line to be targeted by China’s government-sponsored hackers? To find out, look at China’s latest five-year plan, suggests a global…

The majority of cyber attackers are motivated by money, but make less than $15,000 per successful attack, according to a survey of hackers in the…

Last year was a record year for malware, according to a new report from Panda Security, with more than 84 million new malware samples collected…

Cybersecurity pros are most likely to leave to find more challenging work, better pay, and more flexible working hours, according to a survey released this…

One out of every three Americans was affected by a healthcare record breach last year, or more than 113 million people, up more than 10-fold…

Preparation can significantly lower the long-term costs of a breach, according to a SANS report released this morning. Companies that had plans in place, that…

An increasing number of experts are urging companies to stop having the CSOs and CISOs report to the CIO in order to reduce conflict of…

The late December telephonic denial-of-service attack against a Ukrainian power company was a smokescreen to cover up a cyber attack, experts say.”This is one of…

Security professionals were less confident in their security infrastructure in 2015 than in 2014, according to a report released today by Cisco.In 2014, 64 percent…

A new zero-day vulnerability has been discovered that allows Android or Linux applications to escalate privileges and gain root access, according to a report released…

A new zero-day vulnerability has been discovered that allows Android or Linux applications to escalate privileges and gain root access, according to a report released…

The majority of security organizations received more alerts than they can handle and don’t have a way to spot stolen credentials, according to a survey…