The week in security: Marriott mega-breach a reminder about ever-present threat

Credit: ID 120599274 © Gunay Aliyevs |

Lines of succession vary from company to company, but new research showed a spread of opinions about who is best qualified to become the next CEO (hint: CIOs are pretty ambitious). But do CISOs have what it takes?

The UK’s GCHQ shared information about how it decides whether to report a security bug or keep it secret.

One security expert was advising that there isn’t much difference between internal and external threats – and that we should stop trying to defend against them as though they are completely separate things.

Semantics like that matter little once the company is hacked, as global hotel giant Marriott has discovered after confidential data on 500m guests was stolen in the latest mega-breach.

The cybersecurity threat climate may not be getting any better, but a growing body of regulation and compliance standards promises to clarify best practices for businesses next year.