News

CSO Online2h
Hackers target Apple users in an ‘extremely sophisticated attack’
The bugs, found in Apple’s CoreAudio and RPAC components, enabled code execution and memory corruption attacks.
CSO Online6h
CISOs no closer to containing shadow AI’s skyrocketing data risks
A 30-fold increase in company data being exposed to shadow AI shows that offering users official AI tools doesn’t reduce the ...
CSO Online11h
Update these two servers from Gladinet immediately, CISOs told
Hard-coded key vulnerability has been exploited since March, says report; analyst says programmers aren’t trained to prevent ...
CSO Online14h
Whistleblower alleges Russian IP address attempted access to US agency’s systems via DOGE-created accounts
This and other DOGE actions inside National Labor Relations Board systems constituted a “significant cybersecurity breach”, ...
CSO Online13h
MITRE funding still in up in the air, say experts
The US is “not a reliable partner” in supporting the CVE database, says one analyst; CVE board members establish the CVE ...
CSO Online13h
Russia-linked APT29 targets European diplomats with new malware
Cyberespionage group known as APT29 and linked to Russia’s foreign intelligence service (SVR), has added a new malware loader ...
CSO Online19h
The most dangerous time for enterprise security? One month after an acquisition
The awkward period after an acquisition closes and before the acquired firm is fully integrated into the acquiring enterprise ...
CSO Online22h
The risks of entry-level developers over relying on AI
As AI-generated code becomes more common, some CISOs argue that overreliance could erode developers’ critical skills which ...
CSO Online1d
CVE program faces swift end after DHS fails to renew contract, leaving security flaw tracking in limbo
MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program will end April 16 after DHS did not renew its funding ...
CSO Online1d
CISOs rethink hiring to emphasize skills over degrees and experience
Cybersecurity leaders are increasingly dropping degree and experience requirements in favor of a skills-first approach to ...
CSO Online2d
Agentic AI is both boon and bane for security pros
AI agents are predicted to reduce time to exploit by half in two years, here is what you need to know to figure out if your ...
CSO Online1d
New ResolverRAT malware targets healthcare and pharma orgs worldwide
Distributed via phishing emails, the DLL side-loaded malware’s payload is executed only in memory and uses sophisticated ...