Home - CISO Series

<i>Defense in Depth</i>: Is Shift Left Working?

Defense in Depth: Is Shift Left Working?

David Spark - April 28, 2022

Developers and security professionals have been heavily sold on the concept of “shift left” or deal with security issues early in development rather bolting it…

Cybersecurity News – April 28, 2022

Rich Stroffolino - April 28, 2022

Russia experiences hacks at scale Up until Russia’s invasion of Ukraine, many cyber actors specifically didn’t target Russian speaking countries, as many malware operators were…

[5-13-22] “Hacking Complexity” – Super Cyber Friday

David Spark - April 27, 2022

Please join us on Friday, May 13th, 2022 for Super Cyber Friday. Topic will be “Hacking Complexity: An hour of critical thinking about how to…

Cybersecurity News – April 27, 2022

Sean Kelly - April 27, 2022

Elon Musk’s Twitter takeover could be bad for security and privacy After this week’s announcement that Twitter has accepted Elon Musk’s $44 billion purchase offer,…

Is It a Promotion or a Red Flag Telling You To Get Out?

David Spark - April 26, 2022

A young woman is killing it in her first cybersecurity job out of college. Management is so thrilled with her that they want to give…

Cybersecurity News – April 26, 2022

Rich Stroffolino - April 26, 2022

Mandiant finds record zero-days in 2021 According to the security firm’s annual report, disclosed zero-day vulnerabilities exploded in 2021, more than doubling the previous 2019…

64% of SOC Analysts Are Going to Quit in the Next 12 Months

David Spark - April 25, 2022

In the next six month, 64 percent of your SOC analysts are going to quit next year, said Eoin Hinchy, CEO and co-founder, Tines quoting…

Cybersecurity News – April 25, 2022

Steve Prentice - April 25, 2022

Hackers find 122 vulnerabilities, 27 deemed critical, during first round of DHS bug bounty program These vulnerabilities were found by more than 450 security researchers…

Cybersecurity News – April 22, 2022

Steve Prentice - April 22, 2022

Critical chipset bugs open millions of Android devices to remote spying Three security vulnerabilities have been disclosed in the audio decoders of Qualcomm and MediaTek…

<i>Defense in Depth</i>: Technical vs. Compliance Professionals

Defense in Depth: Technical vs. Compliance Professionals

David Spark - April 21, 2022

Do we have a Monitgue/Capulet rivalry between technical and compliance professionals? Why is this happening, and what can be done to improve it? Does it…

Cybersecurity News – April 21, 2022

Rich Stroffolino - April 21, 2022

Okta reports on Lapsus$ breach The company completed its third-party forensic investigation into its recent attack by the pernicious threat actor. Lapsus$ “actively controlled” a…

[5-6-22] “Hacking Shadow Data” – Super Cyber Friday

David Spark - April 20, 2022

Please join us on Friday, May 6th, 2022 for Super Cyber Friday. Our topic of discussion will be “Hacking Shadow Data: An hour of critical…

Cybersecurity News – April 20, 2022

Sean Kelly - April 20, 2022

LinkedIn is now the most popular phish bait Researchers at Check Point indicate that LinkedIn has become the most popular brand used in phishing attacks,…

It’s a Great Job, But I’m Alone and Terrified

David Spark - April 19, 2022

First job out of college and you get the cybersecurity job of your dreams… and nightmares. It’s just too much, and you definitely don’t have…

Cybersecurity News – April 19, 2022

Rich Stroffolino - April 19, 2022

Catalan leaders targeted by NSO spyware According to security researchers at Citizen Lab, dozens of pro-independence Catalan officials, including the past four presidents of the…

Cybersecurity News – April 18, 2022

Steve Prentice - April 18, 2022

Microsoft: Office 2013 will reach end of support in April 2023 Microsoft reminded customers earlier this week that Office 2013 is approaching its end of…

Cybersecurity News – April 15, 2022

Steve Prentice - April 15, 2022

Data breach disclosures surge 14% in Q1 2022 The number of publicly reported data breaches in the US increased by double digits year-on-year in the…

<i>Defense in Depth</i>: Why Do So Many Cybersecurity Products Suck?

Defense in Depth: Why Do So Many Cybersecurity Products Suck?

David Spark - April 14, 2022

Why do we end up with so many bad security products? Who is to blame and how can we fight back an ecosystem that may…

Cybersecurity News – April 14, 2022

Rich Stroffolino - April 14, 2022

Industrial cybersecurity companies form coalition The Operational Technology Cybersecurity Coalition will primarily work to advocate for standardized rules on industrial control systems used for critical…

[4-29-22] Hacking the SOC (Security Operations Center) – Super Cyber Friday

David Spark - April 13, 2022

Please join us on Friday April 29th, 2022 for Super Cyber Friday. Topic will be “Hacking the SOC (Security Operations Center): An hour of critical…

Best moments from “Hacking Risk Reduction” – Super Cyber Friday

Andrew Freels - April 13, 2022

Here is another video of great moments from Super Cyber Friday “Hacking Risk Reduction: An hour of critical thinking about actions we should take to…

Cybersecurity News – April 13, 2022

Steve Prentice - April 13, 2022

RaidForums hacker marketplace shut down in cross-border law enforcement operation The operation, named Tourniquet, was coordinated by Europol in support of the independent investigations of…

Instead of Increased Cybersecurity, Could We Just Order Less Risk?

David Spark - April 12, 2022

“No business wants more security, they want less risk,” said a redditor on the cybersecurity subreddit. Executives seem to not care about cybersecurity because they’re…

Cybersecurity News – April 12, 2022

Rich Stroffolino - April 12, 2022

NSO Group spyware reportedly used against European Commission According to documents seen by Reuters as well as sources, at least five senior officials of the…

All Posts

ABOUT US

FOLLOW US