News

CSO Online4h
Public exploits already available for a severity 10 Erlang SSH vulnerability; patch now
Impacted devices are pervasive in IoT and telecom, and attackers exploiting the vulnerability can easily gain full access, ...
CSO Online18h
ASUS patches critical router flaw that allows remote attacks
Users who cannot apply patches immediately must strengthen router and WiFi authentication to protect against attackers ...
CSO Online11h
Microsoft SFI update: Five of 28 security objectives nearly complete
Executive “supersatisified” with work so far on project to overhaul company security culture and application design.
CSO Online13h
Addressing the gaps in modern cloud protection: Using CNAPP to unify cloud security
The core elements of cloud-native application protection platforms work together to provide a holistic approach to securing ...
CSO Online23h
Two ways AI hype is worsening the cybersecurity skills crisis
Expected to ease security teams’ workloads, AI is adding pressure, forcing them to govern and adopt it while managing ...
CSO Online19h
AI in incident response: from smoke alarms to predictive intelligence
AI is transforming incident response from a reactive scramble to a proactive force, sniffing out threats, decoding chaos, and ...
CSO Online5d
Agentic AI is both boon and bane for security pros
AI agents are predicted to reduce time to exploit by half in two years, here is what you need to know to figure out if your ...
CSO Online4d
CISOs no closer to containing shadow AI’s skyrocketing data risks
A 30-fold increase in company data being exposed to shadow AI shows that offering users official AI tools doesn’t reduce the ...
CSO Online5d
The most dangerous time for enterprise security? One month after an acquisition
The awkward period after an acquisition closes and before the acquired firm is fully integrated into the acquiring enterprise ...
CSO Online7d
AI hallucinations lead to a new cyber threat: Slopsquatting
Attackers can weaponize and distribute a large number of packages recommended by AI models that don’t really exist.
CSO Online5d
MITRE funding still in up in the air, say experts
The US is “not a reliable partner” in supporting the CVE database, says one analyst; CVE board members establish the CVE ...
CSO Online4d
Hackers target Apple users in an ‘extremely sophisticated attack’
The bugs, found in Apple’s CoreAudio and RPAC components, enabled code execution and memory corruption attacks.