News

CSO Online3h
Secure by Design is likely dead at CISA. Will the private sector make good on its pledge?
CISA’s high-profile proselytizing of its Secure by Design program will likely end, but some experts think the idea still has ...
CSO Online1h
AI looms large on the RSA Conference agenda
Expect artificial intelligence to be the topic of the week at the RSA Conference, with a slew of product announcements, panel ...
CSO Online5h
Huntress expands ITDR capabilities to combat credential theft and BEC
The identity-based improvements target rogue applications, credential theft, and BEC attacks while fully managed SIEM adds to ...
CSO Online14h
Reporting lines: Could separating from IT help CISOs?
CISOs who report to the CFO find that the shift away from IT can improve their ability to translate risk into business terms, ...
CSO Online2d
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability
The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant ...
CSO Online5d
Chinese APT Billbug deploys new malware toolset in attack on multiple sectors
Latest campaign from the group also known as Lotus Blossom and Lotus Panda targeted Southeast Asian organizations with a new ...
CSO Online4d
Group of CISOs calls on OECD, G7 for stronger alignment of security regs
The coalition notes that despite a recent proliferation of cybersecurity laws and regulations globally, international ...
CSO Online5d
Attackers abused a bug within SSL.com to authorize fake certificates
SSL.com was mis-issuing SSL certificates by wrongly interpreting email addresses submitted for verification, allowing ...
CSO Online4d
10 key questions security leaders must ask at RSA 2025
Agentic AI, platform hype, identity management, and economic uncertainty will dominate the RSA agenda. But discussions with ...
CSO Online3d
6 types of risk every organization must manage — and 4 strategies for doing it
From cyberthreats to financial volatility, security leaders must grasp the nuances of risk management to build resilient and ...
CSO Online3d
Lesson from huge Blue Shield California data breach: Read the manual
Data on 4.7 million members was captured over almost four years from a misconfiguration that sent Google Analytics data to ...
CSO Online4d
Ransomware the most pervasive threat to US critical infrastructure in 2024, says FBI
Despite successful operations against ransomware gangs in 2024, ransomware was still the most pervasive threat to critical ...