News

CSO Online53m
June Patch Tuesday advice for CSOs: Defense-in-depth needed to stop RCEs
CVE-2025-47172 , a remote code execution vulnerability in Microsoft SharePoint Server. With a CVSS score of 8.8, he said this ...
CSO Online4h
The critical role that partnerships play in shrinking the cyber skills gap
Much like the threat landscape that defenders must navigate daily, developing a sustainable cybersecurity talent pipeline ...
CSO Online7h
China-linked hackers target cybersecurity firms, governments in global espionage campaign
PurpleHaze and ShadowPad campaigns targeted over 70 organizations globally, including government and critical infrastructure ...
CSO Online6h
Forgotten patches: The silent killer
Blame often falls on individuals when systems go unpatched. But more often, it reflects a process failure. A silent patch ...
CSO Online12h
8 things CISOs have learned from cyber incidents
CISOs who have been through cyber attacks share some of the enduring lessons that have changed their approach to ...
CSO Online17h
Is attacker laziness enabled by genAI shortcuts making them easier to catch?
An OpenAI report details a variety of techniques that the model maker is deploying against various attack methods, especially ...
CSO Online21h
Mirai botnet weaponizes PoC to exploit Wazuh open-source XDR flaw
Popular for monitoring Docker containers, Wazuh is being exploited by two Mirai botnet variants — one of which aligns closely ...
CSO Online1d
New npm threats can erase production systems with a single request
The packages carry backdoors that first collect environment information and then delete entire application directories.
CSO Online1d
Multicloud security automation is essential — but no silver bullet
Security experts say that automation can work, but works only if it’s implemented deliberately, monitored, and guided by ...
CSO Online2d
Cloud assets have 115 vulnerabilities on average — some several years old
The state of cloud security has reached a critical tipping point, as attackers increasingly turn attention to cloud ...
CSO Online1d
Seraphic Security Unveils BrowserTotal™ – Free AI-Powered Browser Security Assessment for Enterprises
Available to the public and debuting at the Gartner Security & Risk Management Summit, Browser Total is a first of its kind ...
CSO Online1d
Russia-linked PathWiper malware hits Ukrainian infrastructure
A destructive new malware, dubbed PathWiper, has struck Ukraine’s critical infrastructure, erasing data and disabling ...