Survey shows CISOs increasingly handle C-suite role responsibilities, but lack same regard; 75% seek job change. Role expectations evolve due to regulatory scrutiny, accountability demands for breaches. Regulators hold CISOs accountable for transparency, fraud; expect CISOs to serve business risk-management function, yet rarely viewed as C-Level or part of senior leadership. 63% CISOs have VP/director-level positions, 20% at C-suite, less for billion-dollar revenue firms; 90% distanced two/more organizational levels from CEO. CISOs desire clear risk guidance from boards, only 36% get it. CISO role concerns escalate amid unchanged ability to meet increased expectations, high-profile legal cases.

CISOs Struggle for C-Suite Status Even as Expectations Skyrocket DarkReading

CISO roles evolving with increased accountability due to SEC charges against SolarWinds CISO. More involvement, proactive stance needed for CISOs despite fear of liability. Clorox's CISO exit after major cyberattack exemplifies changing landscape. Rules for accountability could expand to CEOs, COOs drawing them into cyber security issues.

The CISO Role Undergoes a Major Evolution DarkReading

Google struggles with cybercriminals exploiting its search platform with ads distributing malware-laced software applications. Despite a dedicated team and reductions in these threats, bad ads linked to malware persist. Search results often feature malicious ads, tricking users into downloading harmful software versions. The cybercriminals constantly evolve methods to evade Google's anti-abuse radar. Some malicious domains imitate popular software titles to deceive users. The malicious download sites regularly alternate between serving benign and harmful software. Google has removed violating ads and will continue to enforce its protections. Site-blocking by Google's Safebrowsing technology exists but has not been fully applied. Google removed 5.2 billion ads and suspended over 6.7 million accounts in 2022.

Using Google Search to Find Software Can Be Risky Krebs on Security

North Korea hackers employ AI for sophisticated cyberattacks; US-led sanctions fail to impede AI development. Cybercriminals use generative AI for phishing, vishing, disrupt infrastructure, disseminate disinformation, and sway elections. North Korea's increasing AI capabilities pose severe, targeted attack threat in 2024. Despite sanctions, North Korea collaborates with China for military AI development, raising sanction regime breach risks.

North Korean Hackers Using AI in Advanced Cyberattacks BankInfoSecurity