News

CSO Online1h
OpenAI slammed for putting speed over safety
OpenAI’s approach to safety testing for its GPT models has varied over time. For GPT-4, the company dedicated over six months ...
CSO Online14h
Oracle admits breach of ‘obsolete servers,’ denies main cloud platform affected
The fact that a breach of some kind had occurred was first made public in March, when a hacker using the moniker ‘rose87168’ ...
CSO Online22h
Trump revokes security clearances for Chris Krebs, SentinelOne in problematic precedent for security vendors
US President Donald Trump issued an executive order revoking the security clearance of Krebs and cybersecurity giant ...
CSO Online16h
Russian Shuckworm APT is back with updated GammaSteel malware
The attack targeted the military mission of a Western country in Ukraine, with the goal of deploying a PowerShell-based ...
CSO Online22h
Hackers target SSRF flaws to steal AWS credentials
Buggy websites hosted on EC2 instances can allow attackers to send unauthorized access requests for exposed EC2 instance ...
CSO Online22h
Google launches unified enterprise security platform, announces AI security agents
Based on Gemini AI, the agents aim to automate various security functions, including alert triage, to free up resources for ...
CSO Online7h
You’re always a target, so it pays to review your cybersecurity insurance
Not only does an annual insurance review ensure compliance with policy requirements, it can kick off a more thorough review ...
CSO Online1d
Top 16 OffSec, pen-testing, and ethical hacking certifications
These certs offer hands-on training and up-to-date curricula, equipping offensive security professionals with their choice of ...
CSO Online1d
Why Codefinger represents a new stage in the evolution of ransomware
Forget typical ransomware! Codefinger hijacked cloud keys directly, exposing backup flaws and shared responsibility risks.
CSO Online1d
Targeted phishing gets a new hook with real-time email validation
Crooks behind some credential-stealing phishing campaigns are trying to increase their success rate by sophisticated ...
CSO Online2d
Is HR running your employee security training? Here’s why that’s not always the best idea
Training employees to resist the lure of phishing, scams, and deepfakes is central to a good cybersecurity posture, but to be ...
CSO Online1d
Lessons learned about cyber resilience from a visit to Ukraine
When systems fail, it’s important to have a plan to replace lost resources however and from wherever you can source them, as ...