CISO Archives - Page 4 of 18 - Cyber Security Minute

China theft of US agriculture sector trade secrets prompts government guidance

Issued by: CSO

If you didn’t think the agriculture and food sector is of national security significance, then the issuance of the Insider Risk Mitigation Guide by the National Counterintelligence and Security Center (NCSC) in conjunction with the Department of Defense’s Center for Development of Security Excellence (CDSE) should be the equivalent of the bat-signal shining over Gotham….

Application Security

The OWASP Top 10 Threats Haven’t Changed in 2021 — But Defenses Have

Issued by: Security Intelligence

The more things change, the more they stay the same. Despite a changing threat landscape and threat actors who keep upping their game, the vulnerabilities behind the threats remain consistent. The OWASP Top 10, ranked by the Open Web Application Security Project, lists the 10 most prominent and dangerous risks and threats for applications. The OWASP…

Network Security

Data Security Company Symmetry Systems Raises $15 Million

Issued by: Security Week

The round was led by Prefix Capital and ForgePoint Capital, with participation from Accenture Ventures, as well as individual investors Tom Gonser, founder of DocuSign; Omkhar Arasarathnam, engineering director at Google Cloud; Bob Gleichauf, EVP at InQTel and ex-CTO at Cisco; David Tsao, VP of security engineering at Marqeta; and Sameer Sait, CISO at Amazon…

Network Security

The VC View: Data Security – Deciphering a Misunderstood Category

Issued by: Security Week

I’m both excited and concerned to write about data security as one of the hot trends to monitor in 2021. Data security is a tough topic to summarize and I’d argue it may be the most misunderstood category in security right now. We’re a raw industry that has been shaken up multiple times for years….

Network Security

All Eyes on PCAP: The Gold Standard of Traffic Analysis

Issued by: Security Week

PCAP, or full packet data capture for analysis, does what it says – it captures the entirety of every packet that comprises the network traffic (both metadata and content). If something happens on the network, PCAP knows about it. Whether it is malware moving data around, or staff arranging a private party, it can be…

Network Security

CISO Conversations: Princeton, Cal State and Ohio State CISOs Talk Higher Ed Cybersecurity

Issued by: Security Week

A few weekends ago, I went to a birthday party for a buddy of mine. The theme was “Lord of the Rings.” When I arrived, I could see that many of my friends were already there, bunched up in groups of five or six, as the host circulated among them. I said hi to the…

Software Security

SecurityWeek to Host Supply Chain Security Summit on March 10, 2021

Issued by: Security Week

In the wake of the SolarWinds mega-hack that continues to unravel, software supply chain security and fragility is again on the front-burner for enterprise security decision makers. The complexity and opaqueness of the software supply chain has led to nation-state compromises and major worries that we’re only seeing the tip of the iceberg. Free to…

Network Security

Data loss prevention strategies for long-term remote teams

Issued by: Help Net Security

Before the recent pandemic, many executives began appreciating the risks and opportunities associated with cybersecurity. A 2019 survey on cybersecurity priorities from Optiv Security found that 96% of CISOs are taking “a more strategic approach to cybersecurity,” and many were even willing to slow business development to account for cybersecurity-related risks. This was great news…

Vulnerabilities

How much is a vulnerability worth?

Issued by: Help Net Security

As part of its crowdsourced security program, Zoom has recently increased the maximum payout for vulnerabilities to $50,000. Such figures make great headlines and attract new talent in search of the big bucks, but here is a question that begs to be answered: how much is a vulnerability worth? I have previously found several bugs…

Vulnerabilities

6 board of directors security concerns every CISO should be prepared to address

Issued by: CSO

Data breaches, ransomware attacks and concerns over risks tied to the global pandemic have heightened interest in cybersecurity among corporate boards of directors. Security leaders say BoDs have become more engaged in security matters, have a keener understanding of cyber issues, and have begun asking more sophisticated question about risk exposure and ways to manage…