CISOs have a clear view of the skills shortage and its impact on their organizations. They need to educate executives, adjust their programs, and champion proactive change. Each year, Enterprise Strategy Group (ESG) and the Information Systems Security Association (ISSA) collaborate on a research project resulting in a report titled, The Life and Times of […]

In the most-damning set of accusations against a major technology company this analyst has seen in 40 years, a federal cybersecurity watchdog group has reported that Microsoft’s cloud cybersecurity has massive and wide-ranging shortcomings ranging from failed technology to a “security culture” that is “inadequate and requires an overhaul.” The report and the widespread publicity […]

March 19 (Reuters) – U.S. Bank NA and Oppenheimer & Co have agreed to pay fines to settle charges from the U.S. Commodity Futures Trading Commision over use of unapproved communications channels, the regulator said on Tuesday. U.S. Bank will pay $6 million to settle the charges that it violated CFTC record keeping requirements for […]

A ransomware group is threatening to publish a huge cache of stolen data following a cyber attack on a Scottish health board. NHS Dumfries and Galloway warned earlier this month that hackers could have acquired “a significant quantity” of patient and staff information. A group calling itself INC Ransom has now said it will make […]

New Zealand has accused Chinese state-sponsored hackers of infiltrating parliament, joining the United States and United Kingdom in accusing Beijing of malicious cyberactivity. New Zealand Foreign Minister Winston Peters said on Tuesday that the cyberattack was “unacceptable” and his country’s concerns had been conveyed directly to Beijing. “Foreign interference of this nature is unacceptable, and […]

Cyber-attacks linked to Chinese intelligence agencies are increasing in capability and frequency as they seek to test foreign government responses, analysts have warned in the wake of revelations about a mass hacking of UK data. On Tuesday, the UK and US governments accused hacking group Advanced Persistent Threat 31 (APT 31), backed by China’s government […]

Google and Mozilla on Tuesday announced web browser security updates that address dozens of vulnerabilities, including one critical-severity and multiple high-severity flaws. Chrome 123 was released in the stable channel with patches for 12 bugs, seven of which were reported by external researchers. The most severe of these is CVE-2024-2625, a high-severity object lifecycle issue […]

The International Monetary Fund (IMF) recently detected a cybersecurity incident that involved nearly a dozen email accounts getting hacked. In a statement issued last week, the United Nations financial institution said it detected the security breach on February 16, 2024. An investigation conducted with external cybersecurity experts revealed that 11 IMF email accounts had been […]

Microsoft is launching its Copilot for Security next month, bringing its generative AI chatbot to the cybersecurity space. Copilot for Security is designed for cybersecurity professionals to help them protect against threats, but it won’t be a one-off monthly charge like Copilot for Microsoft 365. Instead, Microsoft will charge businesses $4 per hour of usage […]

The latest cyberattack to hit France follows a warning from Attal’s defence adviser just last week that the Olympics games in July and European Parliament elections in June could be “significant targets”. Prime Minister Gabriel Attal‘s office said several state bodies were targeted but did not provide details. “Many ministerial services were targeted” from Sunday “using familiar technical means but […]