Cybersecurity (255)
There are many approaches to conduct a strategic cybersecurity risks assessment. This is one of my favorite ways, using a Threat Agent Risk Assessment (TARA) methodology.
This paper was authored by Tim Casey, David Houlding, and I while we were at I
Ever wonder what kinds of things happen when good-intentioned people try to manage cybersecurity? Well, in this case, a High School in Illinois responded to a system error by resetting every student’s password and then communicating it to all the pa
Hackers are exploiting an un-patchable vulnerability (CVE-2023–2868) in Barracuda Email Security Gateway appliances. Barracuda has announced that customers should discontinue using the email security product or upgrade. Hackers are using multiple typ
In this Cybersecurity Vault episode, I talk with Roger Sels about cybersecurity resource efficiency and maximizing value. Roger is a longtime cybersecurity executive and co-founder of a startup that is focused on helping CISOs identify opportunities
Aggressive countries are leveraging cyber to conduct offensive operations against targets across the globe. The threat of nation-state attacks is growing and I had the opportunity to discuss the challenges with Jeremey Strozer, a strategic risk and i
I greatly appreciate being included in the “Top Cyber Security Experts & Influencers to Follow in 2023” list from WhizLabs!
This group of leaders is a driving force for cybersecurity education, evolving best practices, communicating emerging risks, an
Cybersecurity and Privacy are both necessary for organizations to earn and maintain trust with their partners and customers.
This lively discussion brings together privacy, cybersecurity, and business leadership experts to unravel the benefits, risks,
When I heard of the MSI compromise, I had similar fears of an IT supply chain attack. However, after walking the logic and high-level details I felt that the current attack was unlikely a sophisticated play to compromise downstream consumers of MSI p
People often assume the goal of perfect cybersecurity is to be impervious to attack. That is not true! In fact, it is about an optimal balance between competing goals and limitations such as costs, user friction, and acceptable risks.
Please click th
One of my cybersecurity predictions for 2023 is the rise of cyber Private Military Companies (PMC) to specialize in cyberattacks.
One of the most famous PMCs currently in the news is the Russian Wagner group that is fighting for Russia on the ground
The cyber attacks on LastPass continue to be more invasive and damaging to its customers. Numerous security failures and poor leadership decisions have undermined this cybersecurity company’s reputation and sent its customers scrambling to protect t
I had a great conversation with Marco Ciappelli and Sean Martin from ITSPmagazine Podcast discussing the mistakes and hard-learned lessons in cybersecurity!
They are such characters! A fun and informative discussion.
Podcast: https://bluelava.io/cruci
You can’t insure, what you don’t understand.
The cybersecurity insurance industry is in a tumultuous period, with skyrocketing deductibles, new limitations, hidden assumptions, and suffering from a slew of lawsuits from customers. The market is hot, w
Has the CRYSTALS-Kyber encryption algorithm, one of 4 quantum resistant methods that NIST has recommended to replace legacy encryption, fallen even before it has been rolled out?
There is news that researchers from the KTH Royal Institute of Technolo
Far too often we focus only on the doom-and-gloom of our industry. Let's take a moment to recognize how our efforts have made a difference in avoiding or minimizing the risks of cyber losses.
Please click the Like button if you found this insightful
CISO Platform
A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.
Join CISO Community Share Your Knowledge (Post A Blog)
CISOPlatform Breakfast Meetup @ Reston
- Description:
CISOPlatform is hosting Breakfast meetup @Reston
Topic: CISO Burnout & Stress Management: Addressing Through Mindfulness
Join us if you are interested.Register Here: https://www.cisoplatform.com/ciso-burnout-stress-management-roundtable
- Created by: pritha
CISOPlatform Breakfast Meetup @ Philadelphia
- Description:
CISOPlatform is hosting Breakfast meetup @Reston
Topic: CISO Burnout & Stress Management: Addressing Through Mindfulness
Join us if you are interested.Register Here: https://www.cisoplatform.com/ciso-burnout-stress-management-roundtable
- Created by: pritha
CISOPlatform Summit 2024
- Description:
CISOPlatform Summit: Stronger Together As A Community.
Join us on 30th May, Thursday, Shangri-La at Bangalore
Register Here : https://events.cisoplatform.com/cisoplatform-summit-2024
- Created by: pritha
SACON + AICON 2024
- Description:
(Train Your Team) Trainings From Past Blackhat/Defcon/Nullcon Trainers
Register Here : https://event.cisoplatform.com/sacon/
- Created by: pritha