If properly cultivated through effective education programs, employees can shed the moniker of "weakest link" and become an organization's greatest security asset.
Awareness training is finally becoming more about security and less about compliance, as SANS instructor Lance Spitzner discusses in this SC Magazine Podcast episode.
Organizations must accept that they have been compromised by attackers and apply some personal craft to limit the damage, two security experts said during a panel Wednesday at SC Congress New York.
Andrew Lee, CEO of ESET North America, sits down with SC Magazine Executive Editor Dan Kaplan to discuss why security education needs to make its way into school curricula. This will allow students to become better protectors of their personal critical infrastructure -- their homes -- and prepare them to be security conscious employees once they enter the working world.
Mobile devices, while unique, pose security challenges not unlike traditional PCs, and organizations can apply some basic tips to stay ahead of the threats.
Most PC owners are thinking about security protection from a pre-botnet perspective.
Department of Homeland Security (DHS) Secretary Janet Napolitano this week campaigned before federal lawmakers in support of her agency's portion of President Obama's $3.7-trillion proposed budget.
This year, thanks to a renewed focus on the insider threat, the longings of the security professional may come to fruition.
Five steps any size business can employ today to crush phishing risks.
Far from being Doctor Evil's Facebook page, social networks for criminals cover multiple facets of global crime. Should countering cybercrime be a goal of corporate business or is it merely a job for law enforcement?
Security awareness training programs should be an essential part of information security endeavors, a security professional said Thursday at SC World Congress in New York.
SC Magazine reporter Angela Moscaritolo asks JR Smith, CEO of anti-virus firm AVG, for his thoughts on National Cyber Security Awareness Month, which kicked off this week. Smith also offers his suggestions on how organizations can best implement a culture of education around security best practices.
The annual National Cybersecurity Awareness Month festivities kick off Monday, and a new public awareness campaign highlights this year's event.
SC Magazine Managing Editor Greg Masters sits down with Patricia Titus, the former CISO at the Transportation Security Administration and current CISO at IT firm Unisys, to discuss how organizations should handle the threat posed by employees who seek to connect remotely and use mobile devices for work-related functions.
I recently chatted with Randi Levin, CTO of the city of Los Angeles, for a cover story I'm writing about cloud computing and the security ramifications of the technology.
What are the top solutions CIOs and IT managers need to know to educate the highly educated and defend against cybercrimes such as phishing? In our conclusion we find that the key may be in raising situational awareness through education.
A survey gauging public awareness over the need for internet safety and security confirms the need for a new national messaging campaign, according to two nonprofits.
What are highly intelligent, highly educated people doing that makes them nine times more vulnerable than a high school dropout to cybercrime?
What happens when it comes to recognizing computer crimes and scams which cost much more than pocket change?
The U.S. Department of Homeland Security has recognized seven proposals designed to educate and empower internet users to better protect themselves against cyberthreats. The winning proposals will help guide the DHS' National Cybersecurity Awareness Campaign, set to kick off in October. Among the winners was anti-virus firm ESET, co-honored in the "Best Local/Commmunity Plan" category for its "Securing our eCity" initiative, which leverages public and private partnerships to educate the San Diego community on online safety. Another winning vendor was Cisco, recognized for its "Cybersecurity is Everyone's Responsibility" in the "Best Publicity and Marketing" category. — DK
Social engineering is just a phone call away.
Getting all the dirt on someone used to be easy for any savvy investigator.
PCI DSS is a global information security standard consisting of 12 different requirements - assembled and released by the Payment Card Industry Security Standards Council (PCI SSC).
Rogue anti-malware, also known as rogue AV, has become the delivery vehicle of choice for the cybercriminals seeking to infect endpoints with their payloads.
Technology is necessary to stave off hacker attempts because humans cannot always be perfect.
For the first time, the U.S. House of Representatives will require its staff and members to take part in an annual IT security training program -- one of the mandates under new policy set to take effect next year.
SC Magazine Articles
- Was Spotify breached? Account info shows up on Pastebin
- Report: Ransomware feeds off poor endpoint security
- Researcher finds backdoor that accessed Facebook employee passwords
- Over 7M Minecraft mobile credentials exposed after Lifeboat data breach
- DōTERRA breach exposes customer info; including SS, DOB, and addresses
- Federal court bucks trend, rules general liability insurance covers data breach
- The anatomy of a spearphishing scam, or how to steal $100M with a fake email
- FBI investigating attack against computer networks at U.S. law firms
- Pros examine Mossack Fonseca breach: WordPress plugin, Drupal likely suspects
- First Choice Credit Union files class-action suit against Wendy's over breach
- Top NFL prospect Tunsil free falls in draft after apparent hacker posts damaging video, texts
- Researchers spot Android Infostealer disguised as Chrome update
- Researchers spot mobile malware competition on the black market
- Judge ruled go ahead for claims of phone hacking against UK tabloid