News

CSO Online1h
You’ve already been targeted: Why patch management is mission-critical
Every day you delay a patch is a day attackers gain the upper hand. Proactive defense starts with closing the doors they ...
CSO Online2h
Skitnet malware: The new ransomware favorite
The modular malware is tailor-made for ransomware as it features dedicated plugins for theft, encryption, and persistence.
CSO Online6h
4 ways to safeguard CISO communications from legal liabilities
The SEC’s lawsuit against SolarWinds’ CISO highlights the legal liabilities CISOs can face when communicating. Here are four ...
CSO Online13h
Ethical hackers exploited zero-day vulnerabilities against popular OS, browsers, VMs and AI frameworks
During Pwn2Own hacking contest, participants were asked to compromise Microsoft Windows 11, Mozilla Firefox, VMware ...
CSO Online1d
A spoof antivirus makes Windows Defender disable security scans
In a proof-of-concept, a security researcher demonstrated how the Windows Security Center API can be used to block the scans ...
CSO Online1d
8 security risks overlooked in the rush to implement AI
Nearly two-thirds of companies fail to vet the security implications of AI tools before deploying them. Stressing security ...
CSO Online4d
Google patches Chrome vulnerability used for account takeover and MFA bypass
In some environments, this could even give attackers the ability to bypass multi-factor authentication (MFA). The ...
CSO Online4d
The most effective phishing QR code is a new drug and alcohol policy supposedly from HR
Phishing emails that appear to be internal and come from the IT or HR department are the emails that trick the most users, ...
CSO Online4d
Data on sale: Trump administration withdraws data broker oversight proposal
While the US Consumer Financial Protection Bureau cites policy shifts and legal concerns, critics argue the move undermines ...
CSO Online7d
Deepfake attacks are inevitable. CISOs can’t prepare soon enough.
Security leaders must develop a multi-layered strategy to defend against deepfake voice and video attacks, which experts ...
CSO Online5d
Ivanti patches two EPMM flaws exploited in the wild
The vulnerabilities located in third-party open-source libraries impact Ivanti’s mobile device management appliance and can ...
CSO Online4d
Researchers bypass Intel’s Spectre fixes — six years of CPUs at risk
The new attack method can leak privileged kernel memory on CPUs released in the past six years that have hardware mitigations ...