cybersecurity

CISOs recommend influential books for cybersecurity leadership, focusing on risk management, decision-making, and human behavior. Key titles include “How to Measure Anything in Cybersecurity Risk,” “Thinking, Fast and Slow,” and “Dare to Lead.” The books aim to enhance leadership skills and address the complexities of human factors in security. They encourage reflection and balance in both professional and personal life.

https://www.csoonline.com/article/4027000/the-books-shaping-todays-cybersecurity-leaders.html

CEOs and CISOs disagree on cyberattack recovery times, with 80% of businesses expecting recovery in five days, while 23% aim for 24 hours. CISOs perceive the complexity of IT environments, affecting recovery strategies. A study showed recovery time improved to 28 days in Australasia, but dwell time before attacks averaged 199 days. Despite many organizations having incident plans, only 30% rigorously tested them, impacting recovery efficiency. Well-prepared organizations, fostering CISO-management communication and utilizing AI, perform better in cyber resilience, prioritizing continuous business recovery.

https://www.cdotrends.com/story/4639/24-hour-vs-5-day-divide-why-ceos-and-cisos-cant-agree-recovery-times

Cybercriminals are increasingly moving operations from the dark web to mainstream platforms like Telegram, Discord, and social media due to law enforcement pressure and the practicality of these accessible channels. This shift enables easier communication, recruitment, and data leakage, complicating threat detection for defenders. Consequently, threat intelligence strategies must adapt to monitor diverse platforms effectively, necessitating enhanced operational security, language skills, and automation tools for efficient surveillance. The evolution of cybercriminal behavior highlights that the dark web is no longer the primary hub of illegal activities.

https://sosintel.co.uk/beyond-the-dark-web-where-threat-actors-operate/