FEATURES EDITION | Does Your Company Need a Virtual CISO?

With cybersecurity talent hard to come by and companies increasingly looking for guidance and best practices, virtual and fractional chief information security officers can make a lot of sense.

Follow Dark Reading:

December 07, 2024

LATEST SECURITY FEATURES & COMMENTARY Does Your Company Need a Virtual CISO? With cybersecurity talent hard to come by and companies increasingly looking for guidance and best practices, virtual and fractional chief information security officers can make a lot of sense. Name That Edge Toon: Shackled! Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card. Microsoft Boosts Device Security With Windows Resiliency Initiative Microsoft is readying a new release of Windows in 2025 that will have significant security controls, such as more resilient drivers and a "self-defending" operating system kernel. LLMs Raise Efficiency, Productivity of Cybersecurity Teams AI-powered tools are making cybersecurity tasks easier to solve, as well as easier for the team to handle. CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat Individuals concerned about the privacy of their communications should consider using encrypted messaging apps and encrypted voice communications, CISA and FBI officials say. Digital Certificates With Shorter Lifespans Reduce Security Vulnerabilities Proposals from Google and Apple drastically reduce the life cycle of certificates, which should mean more oversight — and hopefully better control. Open Source Security Priorities Get a Reshuffle The "Census of Free and Open Source Software" report, which identifies the most critical software projects, sees more cloud infrastructure and Python software designated as critical software components. AWS Launches New Incident Response Service AWS Security Incident Response will help security teams defend their organizations from account takeovers, breaches, ransomware attacks, and other types of security threats. MORE FROM THE EDGE / MORE FROM DR TECHNOLOGY HOT TOPICS Russian FSB Hackers Breach Pakistani APT Storm-0156 Parasitic advanced persistent threat (APT) Secret Blizzard accessed another APT's infrastructure, and stole the same kinds of info it targets in South Asian government and military victims. Venom Spider Spins Web of New Malware for MaaS Platform A novel backdoor malware and a loader that customizes payload names for each victim have been added to the threat group's cybercriminal tool set. Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges At least 17 affiliate groups have used the "DroidBot" Android banking Trojan against 77 financial services companies across Europe, with more to come, researchers warn. MORE PRODUCTS & RELEASES Onapsis Expands Code Security Capabilities to Accelerate and De-Risk SAP BTP Development Projects Wyden and Schmitt Call for Investigation of Pentagon's Phone Systems BigID Releases Data Activity Monitoring to Extend DDR, Detect Malicious Actors, and Strengthen Data Security Posture MORE PRODUCTS & RELEASES EDITORS' CHOICE 8 Tips for Hiring and Training Neurodivergent Talent Neurodivergent talent can add so much to a cybersecurity team. How can companies ensure they have the right hiring and onboarding practices in place to help these employees succeed? Phishing Prevention Framework Reduces Incidents by Half The anti-fraud plan calls for companies to create a pipeline for compiling attack information, along with formal processes to disseminate that intelligence across business groups. Why SOC Roles Need to Evolve to Attract a New Generation The cybersecurity industry faces a growing crisis in attracting and retaining SOC analysts. WEBINARS A Cyber Pros' Guide to Navigating Emerging Privacy Regulation 10 Emerging Vulnerabilities Every Enterprise Should Know View More Dark Reading Webinars >> WHITE PAPERS Enhancing Cybersecurity: The Critical Role Of Software Security Training The State of Asset Security: Uncovering Alarming Gaps & Unexpected Exposures Full Content Inspection: The New Standard in Network Security and Why It's Necessary Frost Radar: Cloud Security Posture Management, 2024 The State of Cloud Native Security Report 2024 Purple AI Datasheet How to Use Threat Intelligence to Mitigate Third-Party Risk View More White Papers >> FEATURED REPORTS IDC Analyst Brief: Enhancing Incident Response with Automated Investigation Workflows Managing Third-Party Risk Through Situational Awareness 2024 InformationWeek US IT Salary Report View More Dark Reading Reports >>

Dark Reading Daily -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. Thoughts about this newsletter? Give us feedback. Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our Privacy Statement.

© 2024 | Informa Tech | Privacy Statement | Terms & Conditions | Contact Us