News

CSO Online23h
FBI warns that end of life devices are being actively targeted by threat actors
Cybercriminals install malware on compromised devices, set up a botnet, and sell proxy services or launch coordinated attacks ...
CSO Online1d
Microsoft OneDrive move may facilitate accidental sensitive file exfiltration
The company plans to offer users with personal Microsoft accounts on business devices the option to sync their personal ...
CSO Online1d
Cisco patches max-severity flaw allowing arbitrary command execution
The bug can allow unauthorized, remote attackers to upload arbitrary files on devices running buggy IOS XE Software instances ...
CSO Online1d
Firewalls may soon need an upgrade as legacy tools fail at AI security
Analysts suggest that we need to shift from traditional WAFs and API gateways to dedicated security controls for LLM and ...
CSO Online1d
CVE funding crisis offers chance for vulnerability remediation rethink
Rising tide of vulnerabilities requires fresh approaches to risk mitigation. A sound security foundation, broad asset ...
CSO Online2d
CrowdStrike cuts 500 jobs in AI pivot, but flags risks
Cybersecurity giant axes 5% of staff, doubling down on AI for efficiency and a bold $10B goal, despite its filings flagging ...
CSO Online1d
What is CTEM? Continuous visibility for identifying real-time threats
Continuous threat exposure management (CTEM) is a proactive, event-driven approach to assessing, prioritizing, and ...
CSO Online2d
CISA warns of cyberattacks targeting the US oil and gas infrastructure
Elementary tactics, legacy systems, and poor cyber hygiene put critical energy operations at risk, say federal agencies.
CSO Online2d
India-Pakistan conflict underscores your C-suite’s need to prepare for war
Despite escalating geopolitical conflicts, most companies have not formalized up-to-date plans on how to navigate complex ...
CSO Online3d
Quantum supremacy: Cybersecurity’s ultimate arms race has China way in front
China’s latest advances and investments suggest that CISOs just getting started on the estimated seven-year ...
CSO Online3d
Hackers booby trap NPM with cross-language imposter packages
Developers adept at multiple coding languages are tricked into installing a familiar-sounding package from within the Node ...
CSO Online2d
Windows flaw exploited as zero-day by more groups than previously thought
Researchers found evidence that the CVE-2025-29824 privilege escalation flaw patched by Microsoft in April was known and used ...