Image

Decoding CISO Success: 8 Key Performance Indicators to Evaluate Your Cybersecurity Leader

In today's digital age, the role of a Chief Information Security Officer (CISO) has dramatically evolved. Beyond technical expertise, a CISO's responsibilities now encompass leadership, strategic planning, and effective communication with both technical and non-technical stakeholders. Measuring the success of a CISO can be challenging given the multifaceted and ever-evolving nature of cybersecurity.

Image

Cybersecurity Bingo

Meetings, especially in the cybersecurity realm, can sometimes feel like a stroll through a jargon jungle. There's a lot of "phishing" but not the kind that requires a fishing rod. There's talk of "firewalls," but nobody's trying to keep warm. To make our ventures through this linguistic labyrinth a tad more enjoyable, I've created a Cybersecurity Bingo Card. Loaded with popular terminologies—from the straightforward "DNS" to the all-too-relatable "Sorry, was on mute"—this card will help you decode the tech talk and bring a competitive edge to your meetings. Remember to play fair: no "proxy" players allowed, and don't just mark "threat" because someone side-eyed you for stealing the last donut. Dive in, have fun, and may the best jargon-juggler win!

Image

LAPSUS$ and the Rising Tide: Navigating the Murky Waters of Insider Threats

Ransomware attacks are no longer just about encrypting data. They've morphed into a more sinister strategy: stealing data from substantial companies and then hanging the threat of its public release over their heads unless a hefty ransom is settled. More often than not, these criminals demand payment in cryptocurrencies like Bitcoin.

Image

Empowering Cyber Defense: The Role of ChatGPT in Modern Cybersecurity

Cybersecurity is a critical concern for individuals, businesses, and governments alike, as the number of online threats continues to grow and evolve. With the rise of artificial intelligence, one tool that has the potential to have a significant impact on cybersecurity is ChatGPT.

Image

ManageEngine ADAudit Plus Vulnerability

While exploring the security aspects of ManageEngine ADAudit Plus, I discovered a security vulnerability (CVE-2023-32783) that may have far-reaching implications for other product users. These findings indicate that ADAudit Plus contains a vulnerability allowing Windows user accounts to remain completely undetected by ADAudit Plus.

Image

"Do You Have a Safe Word Yet?" A Call to Arms Against Deep Fake Voice Attacks

In the digital age, we've seen a steady evolution of threats, but none perhaps as chilling as the rise of deep fake voices and videos. The ability to mimic someone's voice and use it for malicious intent—from convincing others to take potentially dangerous actions, to fraudulent payments, or even opening security gaps—is a threat too severe to overlook. So, how do we safeguard ourselves in a landscape where our ears can't always be trusted? Enter the challenge response phrase or word.

Image

Insider Threats and AI: A Panel Recap from Austin's Startup Week

Today, I joined a panel at Austin Startup Week to discuss "How Unsupervised Neural Networking Roots Out Insider Threats." The conversation, took place at the Capital Factory here in Austin, Texas—an ideal setting for a forward-thinking cybersecurity discussion.

Image

TEST--TR

TEST--TR

Image

The rising threats of IoT devices to election, healthcare, and energy infrastructure

Internet of Things (IoT) devices such as fitness trackers and home security cameras are growing in popularity, but many people don’t realize that these devices can also be used to attack critical infrastructure. In 2017, a group of hackers used IoT devices to launch a massive attack on the internet infrastructure provider Dyn, and they were only able to do this because they were able to exploit devices that were using default passwords.

Image

Defense-in-Depth: A Multi-Layered Cybersecurity Approach

As the world becomes increasingly digitized, the risk of cyberattacks against businesses, governments, and individuals alike has increased dramatically. Hackers can gain access to sensitive data, steal identities or financial information, or damage computer networks and critical infrastructure.