CSO Online

CISOs reshape their roles as business risk strategists

The AI era has accelerated the need for CISOs to function as key risk management players across the business. Here’s how to ...
CSO Online

White House moves to give federal agencies access to Anthropic’s Claude Mythos

The move would allow civilian agencies to access a modified version of Anthropic’s powerful vulnerability‑hunting AI, under ...
CSO Online

Microsoft’s Windows Recall still allows silent data extraction

A cybersecurity researcher says Recall’s redesigned security model does not stop same-user malware from accessing plaintext ...
CSO Online

Another Microsoft Defender privilege escalation bug emerges days after patch

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling ...
CSO Online

Cisco Webex SSO flaw needs manual certificate update to fix

The cloud-based Webex service has already been patched, but admins must replace an identity provider certificate in Webex ...
CSO Online

NIST cuts down CVE analysis amid vulnerability overload

The agency will only add enrichment details to CVEs in limited cases going forward, prioritizing known exploited flaws and ...
CSO Online

Behind the Mythos hype, Glasswing has just one confirmed CVE

As hype builds around Anthropic’s offensive AI model, VulnCheck’s analysis finds just one confirmed CVE tied directly to ...
CSO Online

The deepfake dilemma: From financial fraud to reputational crisis

The "familiar voice" test is dead. Now that AI can mimic a CEO in seconds, businesses need to treat every unauthenticated ...
CSO OnlineOpinion

The endless CISO reporting line debate — and what it says about cybersecurity leadership

It’s 2026 and we’re still arguing about who the CISO reports to. The truth? The chart matters less than whether the CISO has ...
CSO Online

Anthropic’s Mythos signals a structural cybersecurity shift

Claude Mythos Preview won’t break cybersecurity, but two new analyses shed light on how it is compressing exploit windows and ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...
CSO Online

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

Built by a veteran security team and led by a former Google and Mandiant executive, Mallory delivers intelligence that drives ...