CSO Online

Scattered Spider co-conspirator pleads guilty

Another member of the notorious Scattered Spider gang of cyber criminals has pleaded guilty in a US court, and will be ...
CSO Online

The curious case of Sean Plankey’s derailed CISA nomination

Sean Plankey backed out of his CISA director nomination, but why he faced resistance is not a straightforward story.
CSO Online

Bitwarden CLI password manager trojanized in supply chain attack

Attackers published a malicious command-line version of the popular open-source password manager to the npm registry and may ...
CSO Online

Google drafts AI agents secure systems against AI hackers

At Cloud Next ‘26, Google introduced AI-driven security agents, Wiz-powered multicloud protection, and new controls to secure ...
CSO Online

3 practical ways AI threat detection improves enterprise cyber resilience

AI‑driven detection at enterprise scale depends on cross‑telemetry correlation, pulling signals together from endpoints, ...
CSO Online

Microsoft taps Anthropic’s Mythos to strengthen secure software development

Microsoft plans to integrate Anthropic’s Mythos AI model into its Security Development Lifecycle, a move that suggests ...
CSO Online

UK’s NCSC calls passkeys the default, says passwords are no longer fit for the purpose

Citing resistance to phishing and credential reuse, the agency recommends passkeys wherever supported and warns that ...
CSO Online

Microsoft issues out-of-band patch for critical security flaw in update to ASP.NET Core

Patching is not enough: applications embedding the insecure library will need to be rebuilt, and affected tokens and cookies ...
CSO Online

Offer customers passkeys by default, UK’s NCSC tells enterprises

Developers of enterprise apps and websites will need to get to grips with passkeys: The UK's National Cyber Security Center ...
CSO Online

Claude Mythos signals a new era in AI-driven security, finding 271 flaws in Firefox

The AI exposed hundreds of bugs in Mozilla’s web browser, raising hopes around defensive advantage, alongside fears of ...
CSO Online

Google gets agent-ready for the Mythos age

At Cloud Next ‘26, Google introduced AI-driven security agents, Wiz-powered multicloud protection, and new controls to secure ...
CSO Online

Azure SRE Agent flaw lets outsiders silently eavesdrop on enterprise cloud operations

A multi-tenant authentication gap in Microsoft’s AI operations agent exposed live command streams, internal reasoning, and ...