News

CSO Online20h
6 hard truths security pros must learn to live with
Increasingly sophisticated attacks, breach blame and inevitability, a relentless workload — working in cybersecurity requires ...
CSO Online17h
FBI cracks down on crypting crew in a global counter-antivirus service disruption
A seizure under Operation Endgame dismantled four crypting and CAV sites, along with their supporting infrastructure, ...
CSO Online5d
Will AI agent-fueled attacks force CISOs to fast-track passwordless projects?
AI agents are looming as another security headache for CISOs that could force their hand on shifting to passwordless ...
CSO Online4d
6 rising malware trends every security pro should know
From infostealers commoditizing initial access to a more targeted approach to ransomware attacks, cybercriminals’ malware ...
CSO Online4d
Securing Windows 11 and Server 2025: What CISOs should know about the latest updates
Microsoft’s latest rollouts to Windows 11 24H2 and Windows Server 2025 include the arrival of Recall and hotpatching. Here ...
CSO Online6d
How CISOs can defend against Scattered Spider ransomware attacks
CISOs should fortify help desk and employee defenses, enhance intrusion detection and tracking capabilities, and recognize ...
CSO Online4d
Warning: Threat actors now abusing Google Apps Script in phishing attacks
According to new research from Cofense, a new attack has been discovered where, if an employee clicks on a link in a phishing ...
CSO Online5d
If you use OneDrive to upload files to ChatGPT or Zoom, don’t
Users could potentially allow access to the entire drive because of the way Microsoft implements OAuth in OneDrive File ...
CSO Online6d
New Russian APT group Void Blizzard targets NATO-based orgs after infiltrating Dutch police
The cyberespionage group uses compromised credentials to steal emails and data from public and private sector organizations ...
CSO Online3d
Novel PumaBot slips into IoT surveillance with stealthy SSH break-ins
The botnet brute-forces SSH credentials against a list of harvested IP addresses, instead of conducting internet-wide scans.
CSO Online4d
Microsoft Entra’s billing roles pose privilege escalation risks in Azure
Guest users with certain billing roles can create and own subscriptions, potentially gaining persistence and privilege ...
CSO Online5d
Separating hype from reality: How cybercriminals are actually using AI
Countering more advanced AI-driven threats requires that we collectively evolve our defenses, and the good news is that many ...