Latest articles for CSO magazine

The average global 5,000 company spends about $15 million to recover from the loss of business due to a certificate outage — and faces another…

The other day, I was in a room full of CIOs, CTOs and CISOs who — as an ice-breaking activity — were asked to share…

Companies in the healthcare sector are three times more likely to encounter data theft than the average firm, according to a report released this morning.The…

Three times as many credit cards will be chip-enabled by the end of the year as debit cards, making the slower banks bigger targets for…

Members of the Russian military have been receiving well-crafted phishing emails since mid-summer from attackers that use Chinese-language tools and Chinese command-and-control installations, according to…

Containers offer a quick and easy way to package up applications and all their dependencies, and are popular with testing and development.According to a recent…

Containers offer a quick and easy way to package up applications and all their dependencies, and are popular with testing and development.According to a recent…

There’s a new botnet malware on the loose, called Corebot, that researchers believe has the potential to develop into a significant threat.The malware was first…

The top 10 travel apps in the iOS and Android app stores are all riddled with security flaws, according to a new report from Bluebox…

To avoid detection, some hackers are ditching malware and living “off the land” — using whatever tools are already available in the compromised systems, according…

In a cybersecurity survey of 485 large colleges and universities, the Massachusetts Institute of Technology came in at the bottom of the list.In a report…

This fall, the Senate is expected to take another look at the Cybersecurity Information Sharing Act, or CISA, but many security experts and privacy advocates…

The number of individual records compromised by data breaches has declined by 41 percent during the first half of this year, compared to the same…

This October, US merchants and payment providers are scheduled to switch to new, more secure, chip-based payments. But financial transactions aren’t going to become safer…

The Ashley Madison breach has been a Christmas-in-August present for spammers and scammers of all kinds, and your company could be the next target.Here are…

The US Court of Appeals has ruled that the FTC mandate to protect consumers against fraudulent, deceptive and unfair business practices extends to oversight of…

In the past two years, 81 percent of hospitals and health insurance companies have had a data breach, according to a report released by KPMG.”These…

Enterprises tend to be highly focused on keeping attackers out of their systems, but most of the actual damage happens not when the bad guys…

Wouldn’t it be convenient if all the spam and malware sites were all grouped together under one top-level domain — .evil, say — so that…

The real cause of the talent shortage in the information security field isn’t a lack of new people entering the profession, but retention and churn…

Amazon will stop accepting Flash ads on its advertising network on Tuesday, and it will help make the entire Web more secure, security experts say.According…

The average 10,000-employee company spends $3.7 million a year dealing with phishing attacks, according to a new report from the Ponemon Institute.The report, which surveyed…

Just 1 percent of employees are responsible for 75 percent of cloud-related enterprise security risk, and companies can dramatically reduce their exposure at very little…

More than 70 percent of Android phones from LG have a plugin installed that exposes them to the Certifi-gate remote support app vulnerability, where a…

To get more value out of stolen personal information, cybercriminals doubled their rate of account creation fraud this summer, according to a report report from…

When a security incident involves virtual machines in either a public or private cloud environment, the recovery costs double compared to that of a traditional…

CrytoLocker is malware cyber criminals use to encrypt the contents of a computer until users pay up.But that’s only one type of cyber extortion, according…

Digital rights management might be coming back to the enterprise, experts say, as long as usability issues don’t get in the way.You might remember the…

The war against Islamic State has resulted in a cyber attack on US soil, and other such attacks are likely, according to a new report…

The number of distributed denial-of-service attacks in the second quarter of this year was more than double that of last year, according to a new…