Economic volatility to exacerbate cyber risk in 2023

A potential recession could lead to delayed innovation and inadequate budgets for long-term investments, the Bipartisan Policy Center said in a report.

By Matt Kapko • Feb. 14, 2023

Zero trust is moving from hype to reality

Organizations must plan ahead and invest in people and resources to succeed with zero trust, writes Gartner analyst John Watts. 

By John Watts • Feb. 10, 2023

Explore the Trendline➔

Risk Management

Now, public companies have to detail their cybersecurity risk management in annual filings, raising awareness on what many cyber experts already knew — security issues are business issues. 

By Cybersecurity Dive staff

On deck for the business of cybersecurity: Fire sales and due diligence

Enterprise cybersecurity is navigating market turmoil and vendor consolidation. Here’s what experts expect to happen to the industry in 2023.

By Naomi Eide , Matt Kapko , David Jones • Jan. 31, 2023

Box CEO on the ‘perfect storm’ of challenges in cybersecurity

“These are very, very complicated, dynamic, chaotic times on the security front,” Aaron Levie said.

By Matt Kapko • Jan. 31, 2023

Microsoft surpasses $20B in security revenue as enterprise customers consolidate

The company’s cybersecurity business is growing, but CEO Satya Nadella warned that customers, in an uncertain economy, are exercising caution.

By David Jones • Jan. 30, 2023

A first-hand look inside Walmart’s robust security operations

The retail behemoth invited a handful of journalists to its tech offices in Bentonville, Arkansas. The scope of Walmart’s operations speaks to the lengths enterprises must go to remain secure. 

By Naomi Eide • Jan. 30, 2023

Battle of the breach: Prioritizing proactive ransomware defense

Industry will soon face a reality where organizations are attacked every two seconds by threat actors that continue to evolve. So now what?

By Sebastian Goodwin • Jan. 25, 2023

Only half of companies have the budgets necessary to mitigate cybersecurity risks: study

A report from Neustar shows macroeconomic pressures are leading to a squeeze on IT security spending.

By David Jones • Jan. 24, 2023

Cyber, business interruption remain top global corporate risks

Risk management leaders remain highly concerned about the threat of malicious attacks and data breaches, according to Allianz Global.

By David Jones • Jan. 18, 2023

A ransomware negotiator shares 3 tips for victim organizations

This is no time for knee-jerk reactions. “Take a deep breath and slow things down,” said Drew Schmitt, principal threat intelligence analyst at GuidePoint Security.

By Matt Kapko • Jan. 18, 2023

Surging cyberthreats, data concerns remain top dispute risks for organizations

A survey from Baker McKenzie shows a heightened risk of legal challenges amid a rise in sophisticated cyberattacks, along with concerns about the regulatory response. 

By David Jones • Jan. 12, 2023

T-Mobile CSO: One wrong decision can wreak havoc

Adversaries attacked a T-Mobile honeypot 65 million times a day, Timothy Youngblood recalls.

By Matt Kapko • Jan. 11, 2023

Beazley launches historic $45M cyber catastrophe bond

The announcement marks the first time an insurance-linked securities instrument has been created to cover catastrophic cyber risk. 

By David Jones • Jan. 10, 2023

Tech priorities out of sync with security needs, CISA director says

As long as priorities and incentives are misaligned, security and safety needs will remain unmet. “We can’t just let technology off the hook,” Jen Easterly said.

By Matt Kapko • Jan. 9, 2023

6 security experts on what cyberthreats they expect in 2023

Organizations will keep a close eye on geopolitical tension and supply chain attacks. But at the core, the biggest threats are built on mistakes.

By Naomi Eide , Matt Kapko , David Jones • Jan. 6, 2023

Cybersecurity trends in 2023 that will directly impact everyday life

The scale of cyberthreats are growing, spilling into the mainstream. In 2023, expect the spotlight to add pressure to businesses that have underinvested in security. 

By Sue Poremba • Jan. 3, 2023

Remote, third-party workers raise security risks for enterprises: report

A study on behalf of Talon shows third-party contractors are often engaged in risky behavior, using unmanaged devices or high-risk desktop technologies. 

By David Jones • Dec. 21, 2022

Apple CIO steps down from Rackspace board citing new job duties

Rackspace announced additional management changes while it recovers from a ransomware attack on its Hosted Exchange business. 

By David Jones • Dec. 19, 2022

How to upgrade cybersecurity awareness training

Phishing attacks are not always as obvious as a direct message from someone pretending to be Elon Musk asking you to buy cryptocurrency. To better equip employees, cyber training needs an upgrade. 

By James Karimi • Dec. 12, 2022

Google stresses unmet need for software supply chain security

The open source software ecosystem remains vulnerable, and fragmented efforts could stifle progress, according to Google.

By Matt Kapko • Dec. 8, 2022

Apple expands iCloud encryption, boosts MFA with security keys

Additional security features could prevent phishing scams and lower exposure for companies that let workers use personal devices for work.

By Matt Kapko • Dec. 8, 2022

Microsoft taps security demand to drive M365 amid fragmented market

A top company executive said a key driver is to bundle its cybersecurity capabilities with office productivity applications, as customers look to consolidate vendors.

By David Jones • Dec. 7, 2022

What does it take to be good at cybersecurity?

Few large enterprises meet Deloitte’s standards for high cyber maturity. The 21% that do recognize benefits not typically associated with security.

By Matt Kapko • Dec. 7, 2022

7 of this year’s biggest cybersecurity stories

From vendor evolution to the long-term effects of high-profile attacks, the cybersecurity industry is rapidly evolving. Take a look at our top stories to understand just how much has changed.

By Naomi Eide • Dec. 5, 2022

AWS builds a lake for multivendor security data sharing

Security data is scattered and often stored in fragments from multiple sources. AWS wants to centralize that in a single data lake.

By Matt Kapko • Dec. 2, 2022