Stories by Grant Gross

Data breaches nail more US Internet users, regulation support rises

By Grant Gross | 15 April, 2014 04:54

More U.S. Internet users report they have been victims of data breach, while 80 percent want additional restrictions against sharing of online data, according to two surveys released Monday.

NSA denies knowing about Heartbleed flaw for years

By Grant Gross | 12 April, 2014 07:20

The U.S. National Security Agency, which has a cybersecurity mission in addition to surveillance, has disputed a report that it knew about the Heartbleed security vulnerability for at least two years before other researchers disclosed the flaw this month.

US charges nine with distributing Zeus malware

By Grant Gross | 12 April, 2014 01:09

The U.S. Department of Justice has brought charges against nine alleged members of a criminal organization that distributed the Zeus Trojan used to steal millions of dollars from bank accounts nationwide.

US agencies: Sharing cyberthreat info isn't an antitrust violation

By Grant Gross | 11 April, 2014 05:36

U.S. businesses can share most cyberthreat information with competitors without facing antitrust enforcement action, two U.S. enforcement agencies said Thursday.

Lawmakers push US attorney general for NSA surveillance changes

By Grant Gross | 09 April, 2014 04:15

Several U.S. lawmakers on Tuesday urged the nation's attorney general to curtail the National Security Agency's collection of overseas electronic communications, saying President Barack Obama's promise to revamp a surveillance program focused on U.S. telephone records didn't go far enough.

US Supreme Court declines to hear NSA surveillance case

By Grant Gross | 08 April, 2014 02:54

The U.S. Supreme Court has declined to hear a lawsuit challenging the U.S. National Security Agency's collection of U.S. phone records filed by a conservative activist, despite a lower court's ruling that the program may be illegal.

FTC Commissioner Wright's calendar heavy on lobbyists, light on consumer groups

By Grant Gross | 05 April, 2014 06:42

The official calendar for Joshua Wright, a commissioner with the U.S. Federal Trade Commission, shows he has had many meetings with technology company lobbyists, but none with consumer advocates, even though consumer protection is a major part of the agency's mission.

State AGs investigating Experian subsidiary's data breach

By Grant Gross | 04 April, 2014 08:17

A group of state attorneys general in the U.S. is launching an investigation into a recently disclosed data breach of 200 million personal records at a subsidiary of credit monitoring firm Experian.

Petitions call on US government to leave Snowden alone

By Grant Gross | 25 March, 2014 19:56

U.S. President Barack Obama's administration should reverse its decision to suspend the passport of U.S. National Security Agency leaker Edward Snowden and end its efforts to prosecute him as policymakers push to change the programs he exposed, a group of activists said.

LabMD challenges FTC data security action in new lawsuit

By Grant Gross | 21 March, 2014 16:19

Atlanta cancer-screening laboratory LabMD has stepped up its challenge of the U.S. Federal Trade Commission's authority to enforce data security standards by filing a lawsuit against the agency.

US officials: NSA overseas surveillance is targeted, not bulk collection

By Grant Gross | 19 March, 2014 18:54

A U.S. National Security Agency surveillance program focused on overseas telephone and email communications is targeted and narrow, and not the bulk collection portrayed in numerous news reports from recent months, U.S. officials told a privacy watchdog board Wednesday.

Lawmakers fail to ask NSA chief about agency's malware plans

By Grant Gross | 12 March, 2014 22:09

U.S. lawmakers had a chance to pose questions to the director of the National Security Agency on Wednesday but declined to ask him about reports that the agency plans to install malware on millions of computers.

Groups ask US FTC to investigate Facebook's purchase of WhatsApp

By Grant Gross | 06 March, 2014 20:09

The U.S. Federal Trade Commission should investigate Facebook's proposed US$19 billion acquisition of mobile messaging app WhatsApp -- and possibly block it -- because of the potential impact on users' privacy, two privacy groups said in a complaint filed Thursday.

US lawmakers call for data protection standards to avoid breaches

By Grant Gross | 05 March, 2014 20:26

The U.S. Congress should mandate that banks, retailers and payment card processors adopt new security standards to protect against widespread data breaches, some lawmakers said Wednesday.

CIO resigns following US Target breach

By Grant Gross | 05 March, 2014 16:27

Target CIO Beth Jacob has resigned following a data breach at the retailer that may have affected as many as 110 million U.S. residents.

CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

IT Compliance Solutions

Enforce compliance consistently and cost-effectively across your organization.

Latest Jobs
Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.