Botnet attacks on APIs: Why most companies are unprepared
CSO–The use of botnets to target applications for illegal and unethical purposes is growing, yet implementation of bot detection tools and best practices lags.
Category: CSO
How API attacks work, and how to identify and prevent them
CSO–Attackers know how to get around WAFs and API gateways when targeting APIs. Here’s how some companies are coping with the rapid increase in API attacks.
Tips and tactics of today’s cybersecurity threat hunters
CSO—Having internal threat hunting capability is becoming a necessity for many organizations. Here are the most common things they look for and how they respond to incidents.
5 ways attackers counter incident response, and how to stop them
CSO ONLINE—IR has become a chess match with attackers who can cleverly spoil responders’ efforts and keep a foothold in systems. Here’s how they do it and how to kick them out for good.
How strong, flexible data protection controls can help maintain regulatory compliance
CSO ONLINE—An effective approach to data protection controls embraces ethical standards and anticipates new requirements. Here’s how some CISOs and other experts tackle the issue.
Supply chain attacks show why you should be wary of third-party providers
CSO ONLINE—The weak link in your enterprise security might lie with partners and suppliers. Here’s how to understand and mitigate that risk.
CPRA explained: New California privacy law ramps up restrictions on data use
CSO ONLINE—The California Privacy Rights Act more closely aligns with the EU’s General Data Protection Regulation. Mid-sized companies not yet GDPR compliant face the biggest impact.
How secure are your AI and machine learning projects?
CSO—Artificial intelligence and machine learning bring new vulnerabilities along with their benefits. Here’s how several companies have minimized their risk.
How to protect backups from ransomware
CSO—Ransomware is getting smarter, attacking backups to prevent recovery. Prevent this from happening by taking a few simple steps.
Supply chain attacks show why you should be wary of third-party providers
CSO—The weak link in your enterprise security might lie with partners and suppliers. Here’s how to understand and mitigate that risk.
IBM, Intel, AMD take different routes to hardware-based encryption
CSO—So-called confidential computing approaches allow data to remain encrypted while in use. That’s best done in hardware, and IBM, AMD and Intel are following different paths, each with its own trade-offs.
Getting started with security automation
CSO—Stressed and stretched, IT security teams look to automation for relief from high volumes of alerts from their detection and response systems. Here’s how three organizations started on the path to automated incident response.
California Consumer Privacy Act (CCPA): What you need to know to be compliant
CSO—California’s new privacy law, AB 375, might not burden security as much as the GDPR, but details are subject to change.
8 ways to get more life out of an old SIEM
CSO—Can’t update your old security information and event management system now? Use this advice to maintain its effectiveness.
AI-powered deception technology speeds deployment, improves results
CSO—Aflac says artificial intelligence made its honeypot rollout faster, less complicated, and it produces high-quality alerts. A healthcare facility deploys deception technology for protection during the COVID crisis.