All Posts

Cybersecurity News: NetGear urgent patch, malicious PyTorch compromise, LockBit ransoms Lisbon

Cybersecurity News: NetGear urgent patch, malicious PyTorch compromise, LockBit ransoms Lisbon

Steve Prentice -
NETGEAR fixes a severe bug in its routers. Patch it ASAP! Netgear has fixed a bug affecting multiple WiFi router models, including Wireless AC Nighthawk,…
Cybersecurity News: Google Home snooping, 3Commas API leak, Ireland investigating Twitter data sale

Cybersecurity News: Google Home snooping, 3Commas API leak, Ireland investigating Twitter data sale

Rich Stroffolino -
Snooping bug found on Google Home speakers A security researcher discovered a bug in Google Home smart speakers that could allow for installing a backdoor.…
Cybersecurity News: Ransomware hammers hospitals, Citrix servers not applying patches, Log4Shell at 1-year old

Cybersecurity News: Ransomware hammers hospitals, Citrix servers not applying patches, Log4Shell at 1-year old

Rich Stroffolino -
Ransomware continues to hammer hospitals The Lake Charles Memorial Health System began notifying patients of a data breach impacting almost 270,000 that received treatment at…
Cybersecurity News: Facebook reaches Cambridge Analytica settlement, BTC.com lost $3 million in cyberattack, $8 million stolen from BitKeep users

Cybersecurity News: Facebook reaches Cambridge Analytica settlement, BTC.com lost $3 million in cyberattack, $8 million stolen from BitKeep users

Sean Kelly -
Facebook reaches settlement related to Cambridge Analytica scandal Facebook has agreed to pay $725 million as a penalty to settle a long pending legal battle…
Cybersecurity News: Severe LastPass breach, Inglis resigns post, Xfinity accounts hacked

Cybersecurity News: Severe LastPass breach, Inglis resigns post, Xfinity accounts hacked

Steve Prentice -
LastPass admits to severe data breach, encrypted password vaults stolen The August 2022 security breach of LastPass may have been more severe than the company…
Cybersecurity News: Malware in search ads, Guardian hit with ransomware, Okta source code accessed

Cybersecurity News: Malware in search ads, Guardian hit with ransomware, Okta source code accessed

Rich Stroffolino -
FBI warns of malware in search ads A new public service announcement from the law enforcement agency warned of threat actors purchasing ads in search…
If the Board Knows Risk, Why Is It Such a Struggle to Explain Cyber Risk?

If the Board Knows Risk, Why Is It Such a Struggle to Explain Cyber Risk?

David Spark -
It’s not so easy to explain information security risk through the business lens, as Evelin Biro, CISO, Alliant Credit Union pointed out in our conversation…
Cybersecurity News: McGraw Hill data leak, UK ICO names breached firms, Twitter aided Pentagon propaganda

Cybersecurity News: McGraw Hill data leak, UK ICO names breached firms, Twitter aided Pentagon propaganda

Sean Kelly -
McGraw Hill exposed student grades and personal info Misconfigured Amazon Web Services S3 buckets belonging to McGraw Hill exposed more than 100,000 students’ information. Roughly…
Cybersecurity News: Glupteba botnet returns, the future of ransomware, and Epic Games’ privacy fine

Cybersecurity News: Glupteba botnet returns, the future of ransomware, and Epic Games’ privacy fine

Rich Stroffolino -
Botnet shrugs off Google In December 2021, Google caused significant disruption in the operations of the Glupteba botnet. This included technical mitigations and legal actions…
Cybersecurity News: Russia infiltrates satellites, Gmail’s end-to-end encryption, NSA’s Russia warning

Cybersecurity News: Russia infiltrates satellites, Gmail’s end-to-end encryption, NSA’s Russia warning

Steve Prentice -
CISA says Russia’s Fancy Bear infiltrated US satellite network Researchers at CISA recently discovered suspected Russian hackers lurking inside a U.S. satellite network, raising fresh…
Cybersecurity News Week in Review: Antivirus data wipers, TSA expands facial recognition, Uber breach 

Cybersecurity News Week in Review: Antivirus data wipers, TSA expands facial recognition, Uber breach 

Steve Prentice -
This week’s Cyber Security Headlines – Week in Review, December 12-16, is hosted by Rich Stroffolino with our guest, Jeremy Embalabala, CISO, HUB International Cyber…
Cybersecurity News: Japanese MirrorStealer malware, HTML smuggling SVGs, DDoS-for-hire arrests

Cybersecurity News: Japanese MirrorStealer malware, HTML smuggling SVGs, DDoS-for-hire arrests

Steve Prentice -
Hackers target Japanese politicians with new MirrorStealer malware A hacking group tracked as MirrorFace had been targeting Japanese politicians for weeks before the House of…
How Should We Discuss Cyber With the C-Suite?

How Should We Discuss Cyber With the C-Suite?

David Spark -
How detailed do we get in our conversation with business leaders? Do we dumb it down? Or is that a recipe for trouble? Check out this…
Cybersecurity News: EU drafts new US-data sharing agreement, Microsoft signed malicious drivers, InfraGard data leak

Cybersecurity News: EU drafts new US-data sharing agreement, Microsoft signed malicious drivers, InfraGard data leak

Rich Stroffolino -
EU gets closer to US-data sharing agreement The US and EU used to have the Privacy Shield agreement to allow companies to move data back…
Does Not Have Budget Approval

Does Not Have Budget Approval

David Spark -
Security researcher, John Dickson (@johnbdickson), has worn some very funny t-shirts at trade shows like RSA and Black Hat. At Black Hat 2022, Dickson was…
Cybersecurity News: Twitter data leak, Uber hit with another breach, Chinese police arrest crypto laundering gang

Cybersecurity News: Twitter data leak, Uber hit with another breach, Chinese police arrest crypto laundering gang

Sean Kelly -
Twitter addresses claims of recent data leak On Friday, Twitter confirmed that earlier this year someone had potentially exploited a vulnerability that Twitter discovered back…
Sound Security Advice That’s Perfect to Ignore

Sound Security Advice That’s Perfect to Ignore

David Spark -
It appears our security awareness training is falling short at the point of taking any type of real action. While most people are aware of…
Cybersecurity News: India leaks expat passport info, Cloudflare expands free security tools, Greece outlaws spyware

Cybersecurity News: India leaks expat passport info, Cloudflare expands free security tools, Greece outlaws spyware

Rich Stroffolino -
India’s foreign ministry leaks passport details The publication Cybernews reports the Global Pravasi Rishta Portal, a platform for expats run by the Ministry of External…
Your Risk Isn’t the Only Risk You Have to Worry About

Your Risk Isn’t the Only Risk You Have to Worry About

David Spark -
It’s tough enough trying to figure out your business’ risk, but you also need to know and consider the unique risks of your partners and…
Cybersecurity News: Pwn2Own Toronto winners, EDR data wipers, MuddyWater’s new campaign

Cybersecurity News: Pwn2Own Toronto winners, EDR data wipers, MuddyWater’s new campaign

Steve Prentice -
Pwn2Own Toronto 2022 nets almost $1M for 63 zero days The Zero Day Initiative’s Pwn2Own Toronto 2022 hacking competition has ended and the final numbers…
Cybersecurity News Week in Review: DHS reviews Lapsus$, AI generated malware, unsupported applications warning

Cybersecurity News Week in Review: DHS reviews Lapsus$, AI generated malware, unsupported applications warning

Steve Prentice -
This week’s Cyber Security Headlines – Week in Review, December 5-9, is hosted by Rich Stroffolino with our guest, Ken Athanasiou, CISO, VF Corporation Edit…
Cybersecurity News: APT37 exploits zero-day, Firewalls bypassed generically, Zombinder’s Android malware

Cybersecurity News: APT37 exploits zero-day, Firewalls bypassed generically, Zombinder’s Android malware

Steve Prentice -
North Korea-linked APT37 exploits Internet Explorer zero-day flaw APT37 group (aka ScarCruft, Reaper, and Group123) has actively exploited an Internet Explorer zero-day vulnerability, tracked as…
Can You Be a vCISO If You’ve Never Been a CISO?

Can You Be a vCISO If You’ve Never Been a CISO?

David Spark -
Why are there so many vCISOs who have never been a CISO? Isn’t it difficult to advise on a role you’ve never done? Do organizations…
Cybersecurity News: Pentagon cloud deal, Apple now encrypts iCloud backups, CloudSEK hacked by cybersecurity firm?

Cybersecurity News: Pentagon cloud deal, Apple now encrypts iCloud backups, CloudSEK hacked by cybersecurity firm?

Sean Kelly -
Pentagon awards cloud deal to four major providers The Pentagon said Wednesday that Amazon, Google, Microsoft and Oracle received a cloud-computing contract that could total…
1...192021...88Page 20 of 88

ABOUT US

Acting as a media network for cyber information and exchange, CISO Series is just a member of this fantastic community that unfortunately has some conflicts. We're just putting ourselves at the center of the conversation, acting as couples counseling for security vendors and practitioners.

CISO Series: Delivering the most fun you'll have in cybersecurity.

Contact us: info@cisoseries.com

FOLLOW US

© 2023 CISO Series