John P. Mello Jr.

Contributor

John Mello writes on technology and cyber security for a number of online publications and is former managing editor of the Boston Business Journal and Boston Phoenix. Disclosure: He also writes for Hewlett-Packad's marketing website TechBeacon.

Articles by John P. Mello Jr.

Filter by

The US Department of Defense has finalized cyber rules for its suppliers

Stringent requirements on DoD contractors to comply with existing protections are expected to take effect by the end of the year

By John P. Mello Jr.

08 Nov 2024 5 mins

Aerospace and Defense Industry Government Regulation

How AI is becoming a powerful tool for offensive cybersecurity practitioners

By John P. Mello Jr.

17 Oct 2024 8 mins

Penetration Testing Security Practices Threat and Vulnerability Management

US DoD finalizes CMMC cyber rules for suppliers

By John P. Mello Jr.

15 Oct 2024 5 mins

Compliance Government IT Regulation

Backlogs at National Vulnerability Database prompt action from NIST and CISA

A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases.

By John P. Mello Jr.

15 May 2024 10 mins

Security Practices Threat and Vulnerability Management Vulnerabilities

ISC2 study pegs average US cybersecurity salary at $147K, up from $119K in 2021

Gender and ethnicity gaps persist, but female executives and middle managers earned more on average than male counterparts, according to the survey.

By John P. Mello Jr.

12 Apr 2024 4 mins

CSO and CISO Human Resources Salaries

Identity hacking saw sharp rise 2023

Increased attack speed and cloud compromise were also high on adversaries' agenda.

By John P. Mello Jr.

22 Feb 2024 4 mins

Cloud Security Identity Theft Incident Response

Surge in “hunter-killer” malware poses significant challenge to security teams

Adversaries step up attacks that disable enterprise defenses.

By John P. Mello Jr.

14 Feb 2024 4 mins

Cyberattacks Malware

Google offers free access to fuzzing framework

The AI-powered OSS-Fuzz tool can help find vulnerabilities and be combined with an auto-patching pipeline.

By John P. Mello Jr.

02 Feb 2024 5 mins

App Testing DevSecOps Vulnerabilities

Zero-day, supply-chain attacks drove data breach high for 2023

Zero-day exploits, supply chain attacks fuel 72% increase over previous record for incidents of compromise. Another increase is expected for 2024.

By John P. Mello Jr.

26 Jan 2024 4 mins

Cyberattacks Cybercrime Zero-Day Vulnerabilities

Three of four CISOs ready for job change

A new IANS/Artico report shows that the percentage of CISOs satisfied with their jobs dropped 10 points in last 12 months.

By John P. Mello Jr.

18 Jan 2024 5 mins

CSO and CISO Careers

Show me more

Linux, macOS users infected with malware posing as legitimate Go packages

By Shweta Sharma

07 Mar 20253 mins

MalwareSecurity

8 obstacles women still face when seeking a leadership role in IT

By Christina Wood

07 Mar 20258 mins

CareersIT Leadership

What is risk management? Quantifying and mitigating uncertainty

By Josh Fruhlinger

07 Mar 202510 mins

IT Governance FrameworksIT LeadershipRisk Management

CSO Executive Sessions: How cybersecurity impacts company ratings - A fey factor for investors and consumers

12 Feb 202527 mins

CSO Executive Sessions: Guardians of the Games - How to keep the Olympics and other major events cyber safe

07 Aug 202417 mins

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

17 Jul 202417 mins

CSO Executive Sessions: How cybersecurity impacts company ratings - A fey factor for investors and consumers

12 Feb 202527 mins

CSO Executive Sessions: How should software solution providers keep themselves and their enterprise clients safe?

26 Jan 202518 mins

CSO Executive Sessions: Open Source Institute’s Eric Nguyen on supply chain risks to critical infrastructure (Part 2)

14 Nov 202415 mins

Critical InfrastructureIT GovernanceSupply Chain