Top CISO Stories from Around the Web: May
In May, cybersecurity stories made global headlines. Learn more about the recent Coinbase cyber attack and Scattered Spider ransomware attacks, and get a glimpse into how CISOs are leaning into AI tools to reduce cost pressures.
1. Coinbase cyberattack: What users need to know about stolen customer data, password security, and more in $400 million incident.
Source: Fast Company
Coinbase recently disclosed in a Securities and Exchange Commission (SEC) filing that on May 11, it received an email from an entity claiming to have acquired information about customer accounts and internal documentation, including details on customer-service and account-management systems. The company refused to pay the ransom and is collaborating with law enforcement to investigate the breach. To aid in the investigation, Coinbase is offering a $20 million reward for information leading to the arrest and conviction of those responsible for the attack.
2. The CISO’s bookshelf: 10 must-reads for security leaders
Source: Help Net Security
This curated list of 10 essential reads for CISOs offers a comprehensive guide to modern cybersecurity leadership, blending strategic insight with practical frameworks. From Barak Engel’s candid take on CISO failures to Bryan Kissinger’s business-aligned program strategies and George Finney’s engaging narrative on Zero Trust, each book tackles core challenges like board communication, cyber resilience, AI threats, and risk quantification. Whether you're an aspiring leader or a seasoned executive, these books provide actionable guidance on navigating evolving threats, aligning security with business goals, and thriving in high-pressure roles—making them indispensable additions to any CISO’s bookshelf.
3. How CIOs and CISOs can improve their collaboration
Source: CIO Dive
CIOs and CISOs can improve collaboration by defining roles, understanding each other's perspectives, and respecting their objectives, which helps balance innovation and security. Mutual respect and clear communication are crucial for aligning incentives and ensuring effective teamwork. This collaborative approach enables better decision-making and supports the organization's overall goals.
4. CISOs bet big on AI tools to reduce mounting cost pressures
Source: ITPro
CISOs are increasingly relying on AI to alleviate rising cost pressures and combat sophisticated cyber threats, making AI automation a top investment priority. However, effective implementation faces hurdles such as data quality, privacy concerns, and a lack of in-house expertise. To further optimize costs, CISOs are also focusing on rationalizing tools, optimizing processes, and simplifying their operating models.
5. How CISOs can defend against Scattered Spider ransomware attacks
Source: CSO
Earlier this month, Google warned that the hacking group Scattered Spider would expand its high-profile retail attacks to the US. However, experts counter that the group is already targeting top US organizations, emphasizing that CISOs should immediately prepare their defenses. Given Scattered Spider's success with social engineering in the UK, experts advise CISOs to prioritize protecting their most vulnerable targets, such as help desk staff and other employees susceptible to manipulation.
