newsRansomware feared in Octapharma Plasma’s US-wide shutdownThe disruption has impacted more than 150 plasma centers in the US, with possible effects on European operations.By Shweta Sharma19 Apr 20243 minsRansomware news Top cybersecurity product news of the weekBy CSO staff19 Apr 202479 minsGenerative AISecuritynews analysis Cisco fixes vulnerabilities in Integrated Management ControllerBy Lucian Constantin18 Apr 20244 minsThreat and Vulnerability ManagementVulnerabilities newsUK law enforcement busts online phishing marketplaceBy Shweta Sharma 18 Apr 20244 minsPhishingLegal newsConsolidation blamed for Change Healthcare ransomware attackBy John Leyden 18 Apr 20245 minsRansomwareCyberattacks newsCisco announces AI-powered Hypershield for autonomous exploit patching in the cloud By John Dunn 18 Apr 20244 minsThreat and Vulnerability ManagementCloud Security featureAre you a toxic cybersecurity boss? How to be a better CISOBy Christine Wong 18 Apr 20249 minsCSO and CISOHuman ResourcesRisk Management news analysisAWS and Google Cloud command-line tools can expose secrets in CI/CD logsBy Lucian Constantin 17 Apr 20244 minsCloud SecurityData and Information Security newsSAP users are at high risk as hackers exploit application vulnerabilitiesBy Shweta Sharma 17 Apr 20244 minsApplication SecurityVulnerabilities More security newsnews analysisUnderstanding CISA's proposed cyber incident reporting rulesCISA’s massive rulemaking will create the first US cyber incident and ransomware payment reporting mechanism that promises to radically overhaul the workloads of most cybersecurity professionals.By Cynthia Brumfield 17 Apr 2024 10 minsRegulationRansomwareCyberattacksnews analysisMore open-source project takeover attempts found after XZ Utils attackDiscovered after OpenJS Foundation Cross Project Council received a request for administrative access for a ‘quick fix’.By Lucian Constantin 16 Apr 2024 6 minsSocial EngineeringOpen SourcenewsSensitive US government data exposed after Space-Eyes data breachThe breach compromises sensitive data from critical US government agencies including the Department of Justice, Department of Homeland Security, and the US armed forces. By Shweta Sharma 16 Apr 2024 3 minsData BreachCyberattacksnews analysisUS supreme court ruling suggests change in cybersecurity disclosure processDecision puts pressure on CISOs and those crafting SEC filings as wording could be judged as “half-truths” and considered misleading.By Evan Schuman 16 Apr 2024 6 minsRegulationSecuritynewsHacker dumps data of 2.8 million Giant Tiger customersThe hacked information includes the customers' email addresses who either subscribed to the Canadian retailer's emails or had accounts created on its official website, their names, addresses, and phone numbers. By Shweta Sharma 15 Apr 2024 3 minsData BreachHackingnewsOpen-source scanner can identify risky Microsoft SCCM configurationsResearcher that helped compile the knowledge base of common misconfigurations in SCCM releases scanner MisconfigurationManager.ps1.By Lucian Constantin 15 Apr 2024 3 minsConfiguration ManagementThreat and Vulnerability Managementnews analysisAttackers exploit critical zero-day flaw in Palo Alto Networks firewallsPalo Alto Networks works on hotfixes for GlobalProtect vulnerability and is aware of “limited number of attacks".By Lucian Constantin 12 Apr 2024 3 minsZero-day vulnerabilityVulnerabilitiesnewsCISA orders US government agencies to check email systems for signs of Russian compromiseThe scope of cyberattack on Microsoft made public in January widens as government agencies ordered to assess the scale of Russian compromise.By John Dunn 12 Apr 2024 5 minsIncident ResponseSecurity PracticesnewsCISA opens its malware analysis and threat hunting tool for public useMalware Next-Gen will allow organizations to submit suspicious files and URLs for analysis.By Shweta Sharma 12 Apr 2024 3 minsAnti MalwarenewsISC2 study pegs average US cybersecurity salaries at $147K, up from $119K in 2021Gender and ethnicity gaps persist, but female executives and middle managers earned more on average than male counterparts, according to the survey.By John Mello Jr. 12 Apr 2024 4 minsCSO and CISOSalariesHuman ResourcesnewsCustomers of Sisense data analytics service urged to change credentialsSisense customers told to update credentials following a compromise that is under investigation.By Lucian Constantin 11 Apr 2024 5 minsData BreachData and Information Securitynews analysisAI tools likely wrote malicious script for threat group targeting German organizationsLatest attack by TA547 showed signs of large language model involvement in the creation of a PowerShell script used to deploy malware.By Lucian Constantin 10 Apr 2024 4 minsAdvanced Persistent ThreatsThreat and Vulnerability ManagementSecurity Practices Show more Show less Explore a topic Application Security Business Continuity Business Operations Careers Cloud Security Compliance Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy View all topics All topics Close Application Security Business Continuity Business Operations Careers Cloud Security Compliance Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy Risk Management Security Generative AI Vulnerabilities Popular topicsCybercrime opinionWhat is the dark web? How to access it and what you’ll findBy Darren Guccione 02 Apr 2024 13 minsData BreachTechnology IndustryCybercrime newsThe US indicts 7 Chinese nationals for cyber espionageBy Sandeep Budki 26 Mar 2024 6 minsCyberattacksCybercrime news analysisNew phishing campaign targets US organizations with NetSupport RATBy Lucian Constantin 21 Mar 2024 3 minsPhishingCyberattacksMalware View topic Careers newsBoys’ club mentality still a barrier to women’s success in cybersecurity careersBy John Leyden 10 Apr 2024 5 minsCareersSecurity feature5 groups that support diversity in cybersecurityBy Linda Rosencrance 09 Apr 2024 8 minsCSO and CISOCertificationsHuman Resources featureRecruit for diversity: Practical ways to remove bias from the hiring processBy Aimee Chanthadavong 01 Apr 2024 8 minsCareers View topic IT Leadership featureTop cybersecurity M&A deals for 2024By CSO Staff 12 Apr 2024 12 minsMergers and AcquisitionsData and Information SecurityIT Leadership newsNew CISO appointments 2024By CSO Staff 05 Apr 2024 10 minsCSO and CISOIT JobsIT Governance featureWhen the boss doesn’t fit: Cybersecurity workforce more diverse than its managersBy Christine Wong 26 Mar 2024 10 minsCSO and CISOHuman ResourcesIT Leadership View topic Upcoming Events15/May roundtable luncheonInnovating safely: Navigating the intersection of AI, network, and security15 May 202412:00pm-2:30pm AWSTMount Lawley Golf Club, Perth Artificial Intelligence View all events In depth newsAustralian government back on top 5 sectors with most reported data breachesThe only sector where human error was the top cause of breaches.By Samira Sarraf22 Feb 20243 mins Government ITData BreachData Privacy Read the Article Podcasts podcastsSponsored by Microsoft SecurityStrengthen and Streamline Your SecurityThis podcast series brought to you by Microsoft and IDG, will explore the core components of a modern security strategy, with insights and tips from leading security experts. We’ll discuss how ongoing and ever-changing threats, a growing security stack, and a shift to remote work make it difficult for CISOs and their security teams to balance enterprise-grade security with end-user productivity.4 episodesData and Information Security Ep. 03 Episode 3: The Zero Trust Model 25 Mar 202115 mins Multi-factor AuthenticationCSO and CISORemote Work Ep. 04 Episode 4: Reduce SOC burnout 29 Mar 202115 mins CSO and CISOPhishingRemote Work Show me moreLatestArticlesPodcastsVideos brandpost Sponsored by Palo Alto Networks Rethinking work dynamics: Why consumer browsers are no longer enough By Ofer Ben-Noon, SASE CTO, Palo Alto Networks 19 Apr 20244 mins Cloud Security feature Where in the world is your AI? Identify and secure AI across a hybrid environment By Deb Radcliff 17 Apr 20249 mins Application SecurityCloud SecurityNetwork Security feature 10 tips to keep IP safe By Derek Slater and Alyson Behr 16 Apr 202418 mins Intellectual PropertyDLP SoftwareData and Information Security podcast CSO Executive Sessions: Geopolitical tensions in the South China Sea – why the private sector should care 02 Apr 202416 mins CSO and CISO podcast CSO Executive Sessions: 2024 International Women's Day special 13 Mar 202410 mins CSO and CISO podcast CSO Executive Sessions: Former convicted hacker Hieu Minh Ngo on blindspots in data protection 20 Feb 202421 mins CSO and CISO video CSO Executive Sessions: Geopolitical tensions in the South China Sea – why the private sector should care 01 Apr 202416 mins CSO and CISO video CSO Executive Sessions: 2024 International Women's Day special 13 Mar 202410 mins CSO and CISO video LockBit feud with law enforcement feels like a TV drama 05 Mar 202456 mins RansomwareArtificial Intelligence