News

CSO Online22h
Hackers target Apple users in an ‘extremely sophisticated attack’
The bugs, found in Apple’s CoreAudio and RPAC components, enabled code execution and memory corruption attacks.
CSO Online1d
CISOs no closer to containing shadow AI’s skyrocketing data risks
A 30-fold increase in company data being exposed to shadow AI shows that offering users official AI tools doesn’t reduce the ...
CSO Online1d
CVE program averts swift end after CISA executes 11-month contract extension
After DHS did not renew its funding contract for reasons unspecified, MITRE’s 25-year-old Common Vulnerabilities and ...
CSO Online1d
MITRE funding still in up in the air, say experts
The US is “not a reliable partner” in supporting the CVE database, says one analyst; CVE board members establish the CVE ...
CSO Online1d
Whistleblower alleges Russian IP address attempted access to US agency’s systems via DOGE-created accounts
This and other DOGE actions inside National Labor Relations Board systems constituted a “significant cybersecurity breach”, ...
CSO Online1d
Russia-linked APT29 targets European diplomats with new malware
Cyberespionage group known as APT29 and linked to Russia’s foreign intelligence service (SVR), has added a new malware loader ...
CSO Online1d
Update these two servers from Gladinet immediately, CISOs told
Hard-coded key vulnerability has been exploited since March, says report; analyst says programmers aren’t trained to prevent ...
CSO Online1d
Agentic AI is both boon and bane for security pros
AI agents are predicted to reduce time to exploit by half in two years, here is what you need to know to figure out if your ...
CSO Online1d
The most dangerous time for enterprise security? One month after an acquisition
The awkward period after an acquisition closes and before the acquired firm is fully integrated into the acquiring enterprise ...
CSO Online3d
What boards want and don’t want to hear from cybersecurity leaders
To get through to board members, cybersecurity leaders need to not only learn the language of business but how to translate ...
CSO Online1d
CISOs rethink hiring to emphasize skills over degrees and experience
Cybersecurity leaders are increasingly dropping degree and experience requirements in favor of a skills-first approach to ...
CSO Online2d
New ResolverRAT malware targets healthcare and pharma orgs worldwide
Distributed via phishing emails, the DLL side-loaded malware’s payload is executed only in memory and uses sophisticated ...