News

CSO Online2d
Critical infrastructure under attack: Flaws becoming weapon of choice
While phishing and stolen credentials remain frequent points of entry, overexposure and poor patch management of critical ...
CSO Online1d
Over 91% of companies sacrifice hybrid cloud security in the AI adoption rush
New data shows that a surge in AI and hybrid cloud architectures is creating dangerous gaps, and security teams can’t keep up ...
CSO Online2d
Top 12 US cities for cybersecurity job and salary growth
These dozen cities stand out as the most promising destinations for cybersecurity professionals due to their strong job ...
CSO Online1d
Beijing may have breached US government systems before Cityworks plugged a critical flaw
Talos' research revealed that Chinese hackers are actively exploiting the flaw to execute code and attempt persistence on ...
CSO Online3d
BadSuccessor: Unpatched Microsoft Active Directory attack enables domain takeover
Unprivileged users with permission to create objects inside an Active Directory organizational unit can abuse the new ...
CSO Online2d
Samlify bug lets attackers bypass single sign-on
Samlify is a library designed to simplify the implementation of SAML 2.0 for Single Sign-On ( SSO) and Single Log-Out (SLO) ...
CSO Online2d
Feds and Microsoft crush Lumma Stealer that stole millions of passwords
Lumma Stealer operation hit 400,000 computers worldwide before coordinated takedown shut down Russian cybercrime kingpin.
CSO Online2d
Russian APT28 compromised Western logistics and IT firms to track aid to Ukraine
The Russian GRU-linked cyberespionage group APT28 has been targeting government agencies and companies from Western countries ...
CSO Online4d
CSO30 Australia Awards 2025: Nominations now open
Nominations are officially open for the 2025 CSO30 Australia Awards, celebrating the country’s most effective and inspiring ...
CSO Online4d
Threat intelligence platform buyer’s guide: Top vendors, selection advice
Threat intelligence platforms have evolved and became essential security defensive tools. Here is what you need to know ...
CSO Online4d
Ethical hackers exploited zero-day vulnerabilities against popular OS, browsers, VMs and AI frameworks
During Pwn2Own hacking contest, participants were asked to compromise Microsoft Windows 11, Mozilla Firefox, VMware ...
CSO Online4d
4 ways to safeguard CISO communications from legal liabilities
The SEC’s lawsuit against SolarWinds’ CISO highlights the legal liabilities CISOs can face when communicating. Here are four ...