Capture the CISO Finals – Season 2
CISO Series
by Rich Stroffolino
2d ago
Welcome to the finals of Capture the CISO Season 2! Our host is Rich Stroffolino and our judges are Alexandra Landegger, executive director and CISO, Collins Aerospace, and Edward Contreras, EVP and CISO, Frost Bank. Our contestants: Attila Szász, CEO & Founder, BugProve Omer Singer, vp, strategy, Anvilogic Russell Spitler, CEO & co-founder, Nudge Security Got feedback? Join the conversation on LinkedIn. Huge thanks to all our contestants who are also sponsors of Capture the CISO BugProve BugProve offers a vulnerability management platform for embedded devices.  Its ..read more
Visit website
Cybersecurity News: Nissan NA breach, VMware Pwn2Own fix, GE Ultrasound flaws
CISO Series
by Steve Prentice
3d ago
In today’s cybersecurity news… Nissan North America breach impacts over 53,000 employees The car manufacturer has disclosed that a breach discovered last November has exposed personal data of more than 53,000 current and former employees of the company. This breach occurred during a hit on its external VPN by a threat actor who then demanded a ransom. The company states that none of its systems was encrypted during the attack. The employee data accessed included names and Social Security numbers but not financial details. This attack is different from that of Nissan Oceania, which occurred at ..read more
Visit website
Where Are Secure Web Gateways Falling Short?
CISO Series
by David Spark
4d ago
Are secure web gateways still an effective tool in the enterprise? The browser has changed a lot in the last decade, are Secure Web Gateways – SWGs still keeping up? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Joining us is our sponsored guest, Vivek Ramachandran, founder, SquareX. Got feedback? Join the conversation on LinkedIn. Huge thanks to our sponsor, SquareX SquareX helps organizations detect, mitigate and threat-hunt web attacks happening aga ..read more
Visit website
Cybersecurity News: FBI seizes BreachForums, Android threat detection, US AI investment
CISO Series
by Rich Stroffolino
4d ago
In today’s cybersecurity news… FBI seizes BreachForums On the morning of March 15th, the U.S. FBI announced its seizure of the illicit clear-net hacking forum as well as its Telegram channel, updating the BreachForums homepage with a takedown notice. It also said it obtained and began reviewing the site’s backend data. The FBI sent a Telegram message from BreachForum’s admin Baphomet, but it’s unclear if it arrested the individual operating the account. BreachForums began operation in March 2022, leaking stolen data from Europol,  AT&T, 23andMe, HPE, Home Depot, and many other breach ..read more
Visit website
Join Us 05-31-24 for “Hacking Microsoft Copilot” – Super Cyber Friday
CISO Series
by David Spark
5d ago
Please join us on Friday May 31, 2024 for Super Cyber Friday. Our topic of discussion will be Hacking Microsoft Copilot: An hour of critical thinking of how to get your Copilot pilot into production. REGISTER for 05-31-24 Super Cyber Friday event Joining David Spark (@dspark), producer of CISO Series for this discussion will be: Brian Vecci, field CTO, Varonis Cyrus Tibbs, CISO, PennyMac In preparation for our discussion, think about the following: Why is everyone talking about Microsoft Copilot?  What productivity gains are being promised? What are we actually seeing? What are the sec ..read more
Visit website
Cybersecurity News: Singing River breach, D-Link exploit released, Google AI spots scams
CISO Series
by Sean Kelly
5d ago
In today’s cybersecurity news… Singing River patient data was swiped in ransomware attack  Mississippi-based Singing River Health System has warned that more than 895,000 patients have been impacted by a ransomware attack it suffered in August 2023. That number is roughly four times greater than the number of affected individuals the health system announced back in December. Exposed data includes names, dates of birth, addresses, Social Security Numbers (SSN), and medical information. While Singing River said there is no evidence that the exposed data was fraudulently used, it is offerin ..read more
Visit website
How Material Security Protects Your Email Beyond Phishing Attacks
CISO Series
by David Spark
6d ago
Many people view email security as just stopping phishing attacks. In this video, Abhishek Agrawal, CEO, Material Security, argues that this limited appreciation for email security obscures a lot of the other insidious activity threat actors can do with access to email systems. HUGE thanks to our sponsor, Material Security The post How Material Security Protects Your Email Beyond Phishing Attacks appeared first on CISO Series ..read more
Visit website
Our Help Desk Plaque Reads “Over 100,000 Threat Actors Served”
CISO Series
by David Spark
6d ago
The shine is off the cybersecurity promise of MFA. While its certainly vital to implement, threat actors are increasingly finding ways to get around it. Most recently we’ve seen social engineering proving effective at this, targeting the help desk. Given the high profile attacks we’ve seen getting around MFA, how much security stock should we put into it going forward? This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest, Martin Mazor, vp and CISO, onsemi. Huge thanks to our spons ..read more
Visit website
Cybersecurity News: FCC implements new classification, MITRE releases embedded devices framework, World renowned auction house attacked
CISO Series
by Lauren Verno
6d ago
FCC implements new classification to combat robocall groups A classification fit for royalty; well I should say robocall royalty. The Federal Communications Commission (FCC) is targeting an entity named Royal Tiger, marking it as the first to be designated under its new Consumer Communications Information Services Threat (C-CIST) classification, aimed at combating robocall fraud. Royal Tiger, which operates out of India, the UK, the UAE, and the U.S. has been involved in scams such as impersonating government agencies, offering fake credit card rate reductions, and soliciting bogus purchase a ..read more
Visit website
Cybersecurity News: Boeing confirms ransomware, Dell announces breach, Ascension Healthcare attacked
CISO Series
by Steve Prentice
1w ago
Boeing confirms $200 million ransomware extortion attempt Following up on the stories regarding LockBit that we covered last week, as well as a story we covered in November, Boeing has now come forward to state it is the unnamed multinational aeronautical and defense corporation referenced in an indictment unsealed Tuesday by the U.S. Department of Justice. The indictment was part of the arrest proceedings of LockBit admin Dmitry Yuryevich Khoroshev. Boeing was targeted by LockBit in October 2023, and faced a $200 million ransomware demand. Although Boeing has not commented on the demand, Ble ..read more
Visit website

Follow CISO Series on FeedSpot

Continue with Google
Continue with Apple
OR