Cyber disruptions remain top business risk concern in US, globally

Global disruption caused by CrowdStrike’s IT mishap added to longtime concerns about data breaches and ransomware, according to Allianz.

By David Jones • Jan. 21, 2025

What CIOs should know as DORA regulations kick in

The EU’s Digital Operational Resilience Act requires banks and insurance companies to restore critical IT systems within two hours, starting Friday.

By Matt Ashare • Jan. 15, 2025

Explore the Trendline➔

IT Security

Security strategies benefit from nimbleness as companies respond to high-profile vulnerabilities and support internal talent gaps.

By CIO Dive staff

CISA director reiterates call for stronger cyber risk ownership

Jen Easterly said boards need to consider cybersecurity threats as core risks and fully incorporate them into corporate business strategy.

By David Jones • Jan. 13, 2025

Cyberattacks, tech disruption ranked as top threats to business growth

Two in 5 executives view data breaches and leaks as the most financially burdensome man-made threats, a Chubb study found.

By Alexei Alexis • Jan. 10, 2025

SaaS sprawl weighs down developers

Maintaining and updating interconnected applications shrinks the bandwidth of IT teams, according to Onymos.

By Matt Ashare • Dec. 18, 2024

More than half of leaders haven’t trained in AI, survey shows

A lack of training could negatively affect security, privacy and corporate competitiveness, General Assembly says.

By Carolyn Crist • Dec. 13, 2024

Executives see another CrowdStrike-level IT outage on the horizon

IT and business leaders admit to prioritizing security at the expense of service disruption readiness, a PagerDuty report found.

By Matt Ashare • Dec. 12, 2024

Logging 2.0 – Why logging needs to be re-imagined in the age of AI

With Axiom’s centralized datastore, high-scale engineering organizations don’t have to compromise on what to keep, what to keep warm (always querable), or where to store data.

By Dominic Chapman, Head of Product at Axiom • Dec. 10, 2024

Securing identities in 2025 – The future of identity governance

2025 is near—are you ready for the evolving challenges of identity lifecycle management?

Dec. 9, 2024

For IT pros, the CrowdStrike crisis was a ‘call to arms’

The global outage triggered investments in people, processes and technologies to beef up enterprise resilience, Adaptavist research found.

By Matt Ashare • Dec. 5, 2024

CrowdStrike avoids customer exodus after triggering global IT outage

The cybersecurity vendor reported $33.9 million in expenses related to the July 19 incident, which caused the company to swing to a loss.

By Matt Kapko • Nov. 27, 2024

Black Friday 2024: Preparing your e-commerce platform for peak performance

Performance testing is crucial for eCommerce websites, especially as user expectations continue to rise.

By Aviv Zohari, Founding Engineer of Groundcover • Nov. 25, 2024

Microsoft unveils resiliency, security enhancements following July global IT outage

The updates are part of a larger effort at the company to overhaul its internal security culture.

By David Jones • Nov. 21, 2024

Easterly to step down from CISA director role on Inauguration Day

CISA confirmed that political appointees of the Biden administration will also depart the agency as the Trump administration takes over.

By David Jones • Nov. 18, 2024

Google Cloud to mandate MFA for all users in 2025

The policy change puts the three largest cloud providers — AWS, Microsoft Azure and Google Cloud — in position to have MFA mandates for some or all customers next year.

By Matt Kapko • Nov. 8, 2024

Tech executives reassess IT resilience in CrowdStrike outage aftermath

Nearly all organizations have known operational weaknesses that leave IT systems vulnerable to service interruptions, according to Cockroach Labs.

By Matt Ashare • Nov. 7, 2024

FTC cloud market inquiry remains unresolved as US presidential race enters final stretch

An ongoing investigation into hyperscaler competition initiated last year by the Federal Trade Commission has largely been overshadowed by AI regulation concerns.

By Matt Ashare • Nov. 4, 2024

5 highest-paying IT certifications in 2024

An AWS certification earned the top position as employers and employees seek out credentials that verify security, data and cloud skills.

By Lindsey Wilkinson • Oct. 29, 2024

Microsoft CEO asked board to cut pay in connection with security overhaul

Despite the request, Satya Nadella's total compensation in fiscal year 2024 far exceeded 2023 thanks to Microsoft's stock market performance.

By David Jones • Oct. 25, 2024

Even small IT failures can cost millions, tech leaders say

Businesses lose up to $1.9 million per hour from high-impact events like the CrowdStrike outage, according to a New Relic survey.

By Matt Ashare • Oct. 25, 2024

CISOs, C-suite remain at odds over corporate cyber resilience

More than a year after the SEC revamped cyber disclosure rules, security and IT executives still struggle to articulate enterprise risk strategies.

By David Jones • Oct. 8, 2024

5 cybersecurity best practices for small to midsize businesses

Discover the security vulnerabilities putting small to midsize businesses at risk.

Oct. 7, 2024

Banking tech alliance drafts enterprise AI adoption guidelines

The Fintech Open Source Foundation, which now includes Nvidia and Moody’s, outlined LLM risks and control measures to guide deployment in the industry.

By Matt Ashare • Oct. 4, 2024

Phishing remains cloud intrusion tactic of choice for threat groups

The attack mode accounted for one-third of the cloud-related incidents IBM X-Force responded to across a two-year period.

By Matt Kapko • Oct. 2, 2024

CrowdStrike CEO pushes ‘resilient by design’ framework, promising changes

The cybersecurity vendor is embracing a new business framework after a defective software update led to one of the largest IT outages in history.

By Matt Kapko • Sept. 26, 2024