Home

Which attack vectors and/or techniques should CISOs be aware of, but are often overlooked?

I'd say BEC scams, 3rd party vendor access amongst others....

40 views
6 comments
5 upvotes
Related Tags
Anonymous Author
I'd say BEC scams, 3rd party vendor access amongst others....
2 upvotes
Anonymous Author
Often CISO’s often forgets that in order to protect the data, they should first understand what data they are trying to protect meaning confidential, sensitive PII, SOX, etc etc. If they can isolate where that data is an put additional guardrails around it, I believe it will help them tremendously.
1 upvotes
Anonymous Author
Denial of service and cross script
0 upvotes
Anonymous Author
I would also add phishing emails, are a very big problem. Security awareness and internal phishing email exercises are helpful in containing the exposure. 
0 upvotes
Anonymous Author
3rd, 4th vendors access
0 upvotes
Anonymous Author
Vendor Management and Risk Assessments of new software and tools brought into the environment
0 upvotes