News

CSO Online5h
Public exploits already available for a severity 10 Erlang SSH vulnerability; patch now
Impacted devices are pervasive in IoT and telecom, and attackers exploiting the vulnerability can easily gain full access, ...
CSO Online18h
ASUS patches critical router flaw that allows remote attacks
Users who cannot apply patches immediately must strengthen router and WiFi authentication to protect against attackers ...
CSO Online12h
Microsoft SFI update: Five of 28 security objectives nearly complete
Executive “supersatisified” with work so far on project to overhaul company security culture and application design.
CSO Online14h
Addressing the gaps in modern cloud protection: Using CNAPP to unify cloud security
The core elements of cloud-native application protection platforms work together to provide a holistic approach to securing ...
CSO Online19h
AI in incident response: from smoke alarms to predictive intelligence
AI is transforming incident response from a reactive scramble to a proactive force, sniffing out threats, decoding chaos, and ...
CSO Online1d
Two ways AI hype is worsening the cybersecurity skills crisis
Expected to ease security teams’ workloads, AI is adding pressure, forcing them to govern and adopt it while managing ...
CSO Online5d
Whistleblower alleges Russian IP address attempted access to US agency’s systems via DOGE-created accounts
This and other DOGE actions inside National Labor Relations Board systems constituted a “significant cybersecurity breach”, ...
CSO Online5d
Agentic AI is both boon and bane for security pros
AI agents are predicted to reduce time to exploit by half in two years, here is what you need to know to figure out if your ...
CSO Online4d
CISOs no closer to containing shadow AI’s skyrocketing data risks
A 30-fold increase in company data being exposed to shadow AI shows that offering users official AI tools doesn’t reduce the ...
CSO Online5d
The most dangerous time for enterprise security? One month after an acquisition
The awkward period after an acquisition closes and before the acquired firm is fully integrated into the acquiring enterprise ...
CSO Online7d
AI hallucinations lead to a new cyber threat: Slopsquatting
Attackers can weaponize and distribute a large number of packages recommended by AI models that don’t really exist.
CSO Online5d
MITRE funding still in up in the air, say experts
The US is “not a reliable partner” in supporting the CVE database, says one analyst; CVE board members establish the CVE ...