News

CSO Online2h
Top US cyber officials face divergent paths after Senate confirmation
Following their Senate confirmations, Sean Cairncross and Sean Plankey — Trump’s nominees for national cyber director and ...
CSO Online7h
Supply chain attack hits RubyGems to steal Telegram API data
Threat actor exploits Fastlane plugin trust to redirect Telegram traffic via C2 server after Vietnam’s ban, targeting mobile ...
CSO Online6h
Microsoft launches European Security Program to counter nation-state threats
The European Security Program, unveiled in Berlin by Microsoft Vice Chair Brad Smith, will offer threat intelligence, ...
CSO Online6h
CISOs beware: genAI use is outpacing security controls
Employees in every organization use an average of 6.6 high-risk generative AI applications – including some unknown to CISOs ...
CSO Online12h
Get out of the audit committee: Why CISOs need dedicated board time
CISOs increasingly need dedicated time with the board, but lack of board knowledge of cybersecurity and inability to ...
CSO Online1d
6 ways CISOs can leverage data and AI to better secure the enterprise
Supercharging your data analysis strategy with machine learning, data science, and custom-trained LLMs can unlock a higher ...
CSO Online1d
Cybersecurity’s ‘rare earth’ skills: Scarce, high-value, and critical for future defense
All cyber skills are vital, but a few ‘critical elements’ require highly specialized knowledge that takes significant time ...
CSO Online1d
Hackers use Vishing to breach Salesforce customers and swipe data
In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise ...
CSO Online1d
Vendor email compromise: The silent $300M threat CISOs can’t ignore
AI-crafted VEC scams are bypassing MFA, legacy filters, and employee awareness, demanding a fundamental shift in enterprise ...
CSO Online2d
AI gives superpowers to BEC attackers
Attackers use business email compromise to pretend to be company executives, vendors, or other trusted parties and trick ...
CSO Online1d
Google patches third zero-day flaw in Chrome this year
The vulnerability in the Chrome V8 JavaScript engine is rated as high severity and was discovered by Google’s Threat Analysis ...
CSO Online2d
One hacker, many names: Industry collaboration aims to fix cyber threat label chaos
Microsoft and CrowdStrike have announced that they are working together to solve one of cybersecurity’s most persistent ...