News

CSO Online3h
New Report Reveals Just 10% of Employees Drive 73% of Cyber Risk
Human risk is concentrated, not widespread: Just 10% of employees are responsible for nearly three-quarters (73%) of all ...
CSO Online3h
Microsoft ‘digital escorts’ reveal crucial US counterintelligence blind spot
Microsoft’s support model — in which China-based engineers relay commands to US-based personnel with national security ...
CSO Online22h
Microsoft SharePoint zero-day breach hits on-prem servers
CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration ...
CSO Online13h
UK blames Russia’s infamous ‘Fancy Bear’ group for Microsoft cloud hacks
Recent cyberattacks deploying the potent Authentic Antics malware tool to target Microsoft cloud accounts were the handiwork ...
CSO Online22h
PoisonSeed outsmarts FIDO keys without touching them
The novel technique exploits the cross-device sign-in option on FIDO to create an authenticated session controlled by ...
CSO Online1d
Is AI here to take or redefine your cybersecurity role?
With job postings for some cybersecurity positions already in decline, industry observers debate the extent to which AI is ...
CSO Online1d
From hardcoded credentials to auth gone wrong: Old bugs continue to break modern systems
In an era obsessed with AI threats and zero-day exploits, it is the age-old security slip-ups, forgotten scaffolding, brittle ...
CSO Online6d
7 obsolete security practices that should be terminated immediately
Bad habits can be hard to break. Yet when it comes to security, an outdated practice is not only useless, but potentially ...
CSO Online3d
Novel malware from Russia’s APT28 prompts LLMs to create malicious Windows commands
Recent attacks by the state-run cyberespionage group against Ukrainian government targets included malware capable of ...
CSO Online4d
Clément Domingo: “We are not using AI correctly to defend ourselves”
Cybercrime is evolving into a sophisticated, business-like ecosystem, with criminal groups operating like legitimate ...
CSO Online6d
How defenders use the dark web
Gathering threat intelligence, finding the perpetrators of cyber attacks and bringing down whole ransomware gangs are some of ...
CSO Online3d
Cisco warns of another critical RCE flaw in ISE, urges immediate patching
The newly disclosed flaw affects a specific API that suffers from insufficient input validation to allow unauthenticated RCE ...