News

In this conversation, Matthew Webster and Kayne McGladrey delve into the complexities of cybersecurity governance, focusing on the role of CISOs in al...

We know there are problems in our security systems, but we can't and shouldn't fix everything. What do we fix? Who decides? How do we explain what's reasonable to people who do decide? Kayne McGladrey, CISO in Residence at Hyperproof, joins us to explore risk, communication, and a surprising role for insurance.

“The technology is too immature to actually use its scale successfully and securely right now,” tech expert says.

Cloudflare was behind the latest in a series of outages this year. The big question now is: Why does this keep happening and how do we stop it?

Summary: Recent research from the IEEE Computer Society notes that phishing training doesn’t work. The rise of generative AI is making it harder for Research finds that phishing training doesn’t work. What does?

Today's cybersecurity landscape has reached a critical inflection point. Cyber Risk programs that focus on isolated technical flaws do not adequately protect businesses against today’s complex threats. Treating cyber threats as business risks—measured by impact on revenue, regulatory exposure, and operational continuity—creates a decision framework that executives can act on. This shift moves security from a compliance checkbox to a strategic lever that influences budget allocation and risk appetite. Technical flaws such as an unpatched server or missing multi‑factor authentication are temporary conditions, not risks. They become risks only when they can cause measurable business harm, like delayed payments, fines, or brand damage.

Zero trust is often marketed as a product, but effective implementation means rethinking your security approach from the ground up.

Digital twins can lead to intellectual property theft and other business risks, according to one CISO.

The digital transformation of utilities is necessary and inevitable but also innately vulnerable to bad actors. Its time to discuss prioritizing cybersecurity.

Qantas. Hawaiian. WestJet. Air France-KLM. Aeroflot. Each of these airlines has fallen victim to cyberattacks this summer.

We’ve grown used to our apps asking for permission: to access your location, to view your contacts or to use your microphone. Agentic artificial intelligence flips the script. These systems don’t just ask, they act, blurring the line between assistant and autonomous operator.

In this episode of the Top Innovator Series, we sit down with Kayne McGladrey, CISO-in-Residence at Hyperproof and globally recognized cybersecurity thought ...

My conversations with other security leaders at Black Hat 2025 revealed a troubling reality: organizations face dangerous blind spots where AI vulnerability disclosure gaps meet immature risk management frameworks. CISOs privately described how third-party AI adoption creates systemic risks across financial services and critical infrastructure that existing security approaches cannot address.

Interview with Dark Reading's News Desk at Black Hat 2025

Dark Reading's 2025 News Desk marks a decade of Black Hat USA memories. We're making our return with a slate of interviews that help you stay up on the latest research from Black Hat — no trip to Las Vegas required.

AI integration is one of the most significant breakthroughs changing cybersecurity in 2025. What are some of the advantages and challenges? Find out from Imp...

AI agents represent a fundamental shift from today's permission-based apps to autonomous systems that act independently. Unlike current voice assistants AI agents act autonomously, creating unprecedented privacy and security risks for users.

Local governments simplify secure remote access with SASE, cutting hardware needs, boosting performance and supporting hybrid work with zero-trust security.

Schools, hospitals and government agencies are "sitting ducks."

This week’s special guest Kayne McGladrey, CISO-in-Residence at Hyperproof, outlines the business challenges that CISO's face, as we discuss new types of risk in daily threat management.