Securing your call centers: Best practices for cybersecurity protection

All call centers face cybersecurity threats because they handle information like credit card numbers, health records, and personal purchase history. However, call centers that support federal agencies have the added risk of handling highly sensitive information, making them prime targets for cybercriminals.

By Jerry Dotson, Vice President of Public Sector, Avaya • June 3, 2024

NIST has a plan to clear the vulnerability analysis backlog

The Cybersecurity and Infrastructure Security Agency and government contractor Analygence will help clear the National Vulnerability Database backlog.

By Matt Kapko • May 31, 2024

Explore the Trendline➔

Risk Management

Now, public companies have to detail their cybersecurity risk management in annual filings, raising awareness on what many cyber experts already knew — security issues are business issues. 

By Cybersecurity Dive staff

CISOs under pressure from boards to downplay cyber risk: study

Research from Trend Micro shows tension between CISOs and senior enterprise leadership. Many security leaders say they're perceived as nags.

By David Jones • May 30, 2024

Okta rides out cyberattack fallout with ‘minimal impact’

CEO and Co-Founder Todd McKinnon said it’s going to take some time before Okta can put the cyberattack behind it.

By Matt Kapko • May 30, 2024

White House seeks critical cyber assistance for water utilities, healthcare

The DOJ will also work to deter teens from joining criminal hackers like Lapsus$.

By David Jones • May 23, 2024

Cyberattacks are good for security vendors, and business is booming

More secure technology could stem the tide of cyberattacks, but digital threats are ever present.

By Matt Kapko • May 23, 2024

Microsoft president set to testify before Congress on ‘security shortcomings’

After the tech giant asked for more time, Brad Smith will now testify before the House Committee on Homeland Security on June 13.

By Matt Kapko • May 22, 2024

Palo Alto Networks sees strong customer response to platform consolidation strategy

Concerns remain from investors about the long-term impact on pricing, revenue.

By David Jones • May 21, 2024

Google leverages Microsoft’s cyber gaps to woo Workspace customers

“The repeated security challenges with Microsoft call for a better alternative for enterprises and public-sector organizations alike,” Google said Monday.

By Matt Ashare • May 21, 2024

EPA to ramp up enforcement as most water utilities lack cyber safeguards

The agency may consider taking civil and criminal penalties against utilities following months of attacks against drinking and wastewater treatment facilities.

By David Jones • May 21, 2024

Open source threat intel platform launched weeks after malicious backdoor targeted XZ Utils

OSSF developed warning system to protect open source maintainers, developers from social engineering, active exploits.

By David Jones • May 20, 2024

Enterprises are embracing AI. But can they secure it?

Taking a confident approach to AI security and navigating the path to adoption.

By Anand Oswal, Senior Vice President and General Manager of Network Security, Palo Alto Networks • May 20, 2024

AI raises CIO cyber anxieties

Using third-party generative AI products without the proper controls exposes existing security gaps, McKinsey and Co. Partner Jan Shelly Brown said Tuesday at the MIT Sloan CIO Symposium.

By Matt Ashare • May 17, 2024

Palo Alto Networks signs broad enterprise cybersecurity partnership with IBM

The enterprise security giant will capitalize on a platform consolidation strategy as IBM concedes on transition to cloud security.

By David Jones • May 16, 2024

Cybersecurity leaders expect their SOC budgets to grow, KPMG finds

Average annual SOC budgets stand at $14.6 million, but most security leaders expect their budgets and headcount to grow by up to 20% over the next two years, the survey found.

By Maura Webber Sadovi • May 15, 2024

Unsafe software development practices persist, despite CISA’s push

The industry isn’t making sufficient progress in cleaning up code despite recurring efforts from the agency to eliminate entire classes of vulnerabilities.

By Matt Kapko • May 15, 2024

Cyber insurance costs are stabilizing as global market grows

Increased capacity is helping to meet rising demand for cyber coverage and more insurers are using tools to assess potential risk, a report from S&P Global Ratings shows.

By David Jones • May 14, 2024

Cyber pros weigh an intel-sharing quandary: What to share when attacks hit close to home

The detail and speed with which companies share information after an attack can prevent future pain. But businesses aren’t always keen on transparency.

By Matt Kapko • May 14, 2024

Only one-third of firms deploy safeguards against generative AI threats, report finds

Generative AI gives attackers an edge over cyber defenders, according to a Splunk survey of security experts.

By Jim Tyson • May 13, 2024

Don’t be afraid of GenAI code, but do be wary

Don’t fall for scare headlines about GenAI code—it offers multiple benefits—but also be aware of its limits and risks.

May 13, 2024

White House wants to hold the software sector accountable for security

Federal officials are taking steps toward a long-stated goal of shifting the security burden from technology users to the companies that build it.

By David Jones • May 10, 2024

Officials see a real change in Microsoft’s security plans: financial accountability

CISA Director Jen Easterly pointed to Microsoft’s decision to link security to executive compensation as a meaningful signal of its priorities.

By Matt Kapko • May 10, 2024

68 tech, security vendors commit to secure-by-design practices

CISA said companies ranging from Microsoft to Palo Alto Networks signed the voluntary pledge in an effort to boost resiliency and increase transparency around CVEs and cyberattacks.

By David Jones • May 9, 2024

CISA explains why it doesn’t call out tech vendors by name

Federal officials rarely criticize tech companies when their mistakes result in attacks. The stinging conclusions CSRB levied at Microsoft are an exception, not the norm.

By Matt Kapko • May 9, 2024

The US really wants to improve critical infrastructure cyber resilience

A report from the Office of the National Cyber Director highlights persistent threats targeting healthcare and water, echoing warnings from cyber officials earlier this year. 

By David Jones • May 8, 2024