Strategy
-
Staples hit by cyberattack during critical Cyber Week sales push
The office supply retailer expects to fully catch up on back orders after online processing and deliveries were briefly disrupted.
By David Jones • Dec. 1, 2023 -
Okta again promises it is taking security seriously
CEO Todd McKinnon used the company's earnings call to once again pledge improvements and address a culture of lax security.
By Matt Kapko • Nov. 30, 2023 -
Explore the Trendlineâž”
TCmake_photo via Getty ImagesTrendlineSecuring the cloud
The ubiquity of the cloud has left security gaps for organizations, leaving them to navigate a complex vendor landscape and defend their technology supply chain
By Cybersecurity Dive staff -
For financial services firms, a pattern of malicious cyber activity is emerging
The suspected ransomware attack against Fidelity National Financial marks the latest in a series of incidents, leading regulators to take additional enforcement actions.
By David Jones • Nov. 29, 2023 -
Amazon CSO likens security to psychological chess matches
Security professionals should focus on ambiguous, dynamic problems that can’t be solved by software, Stephen Schmidt says.
By Matt Kapko • Nov. 28, 2023 -
Cloud security myths can leave SMBs exposed
AWS identified three cyber misconceptions that hinder small- and medium-sized businesses as they migrate workloads.
By Matt Ashare • Nov. 22, 2023 -
Retailers brace for cyberthreat feast ahead of Thanksgiving shopping weekend
A rise in social engineering and generative AI pose increased risks as phishing attacks and ransomware gain speed and grow more sophisticated.
By David Jones • Nov. 21, 2023 -
Companies are getting smarter about cyber incidents
Although incidents are up and risks are expanding, businesses are better prepared to send threat actors away empty-handed, a specialist says.
By Robert Freedman • Nov. 21, 2023 -
Cisco looks to Splunk for security business growth
Security remains a small part of Cisco’s business, but Splunk could bolster the company’s ability to grow and improve other offerings.
By Matt Kapko • Nov. 16, 2023 -
Palo Alto Networks’ largest customers get no-cost incident response
Available through January, the response program comes at a time of heightened demand for rapid forensic services, particularly in light of the coming SEC incident response enforcement.
By David Jones • Nov. 15, 2023 -
Rackspace records $5M in expenses related to 2022 ransomware attack
The cloud services company expects insurance to cover its incident costs, however multiple lawsuits are still pending.
By David Jones • Nov. 14, 2023 -
MGM Resorts anticipates no further disruptions from September cyberattack
The company expects insurance to cover more than $100 million in losses stemming from lost bookings and disruptions at its Las Vegas properties.
By David Jones • Nov. 9, 2023 -
Countries pledge to not pay ransoms, but experts question impact
There is no mandate to ban governments or businesses from paying ransom demands, but the pledge could be a step toward that outcome.
By Matt Kapko • Nov. 6, 2023 -
Sponsored by QBE Insurance
Top ways businesses can manage the risk implications of the SEC cybersecurity disclosure rule
The SEC final rule requires public companies to disclose any material cybersecurity incidents within four business days of determination.
Nov. 6, 2023 -
Microsoft overhauls cyber strategy to finally embrace security by default
The plan follows major backlash Microsoft experienced earlier this year for charging customers for additional security features.
By David Jones • Nov. 3, 2023 -
Splunk to cut 7% of staff in latest layoff round this year
CEO Gary Steele said the cuts, which largely impact employees in the U.S., are not related to Cisco's deal to acquire the company.
By Matt Kapko • Nov. 1, 2023 -
BeyondTrust, Cloudflare averted Okta attacks thanks to security chops
With details scant, worries remain about how the attacks might have played out for less security-focused businesses that were impacted.
By Matt Kapko • Nov. 1, 2023 -
How to protect sensitive school data during a cyberattack
The CFO of a Texas school district recommends safer ways to request sensitive employee data and stronger password and verification policies.
By Kara Arundel • Oct. 27, 2023 -
CISA targets software identification in push to boost supply chain security
The plan is part of a wider effort to boost software security using vulnerability management and SBOMs.
By David Jones • Oct. 27, 2023 -
Microsoft touts demand for its security services in fiscal Q1, driven by AI appetite
The company said it is gaining market share in the cybersecurity segment and is opening access to its AI-based Security Copilot after an early preview.
By David Jones • Oct. 25, 2023 -
LastPass working through ‘systemic’ security overhaul
“We didn’t just address the issues that were the cause of the breach,” CEO Karim Toubba said. Still, nearly 1 in 10 customers are fleeing the password manager.
By Matt Kapko • Oct. 25, 2023 -
FAIR Institute wants to quantify just how much a cyberattack costs
The risk-management body is trying to create a standard to estimate material cyber attack costs and help stakeholders better understand risk.
By Matt Kapko • Oct. 20, 2023 -
Tech spend to hit milestone as businesses react to AI security scare
Gartner is projecting worldwide IT spend will top $5 trillion next year, and CIOs are investing more in security to curb concerns associated with AI and risk.
By Matt Ashare • Oct. 20, 2023 -
Cyber venture capital funding on pace to hit four-year low
VC activity in cybersecurity reflects a pragmatic period in an industry oversaturated with vendors, Crunchbase data shows.
By Matt Kapko • Oct. 19, 2023 -
Retrieved from Pixabay.
EPA rescinds rule to include cybersecurity in water system audits after legal challenge
The Biden administration said it will continue efforts to reduce cyber risk in critical infrastructure sectors.
By David Jones • Oct. 16, 2023 -
CISA’s top 10 misconfigurations reveal ‘systemic weaknesses’
Common mistakes including poor credential management, weak MFA and lackluster patching continue to harm large enterprises.
By Matt Kapko • Oct. 16, 2023