CSO Online18h
How CISOs can balance business continuity with other responsibilities
With business continuity, CISOs must navigate a complex mix of security, business priorities and operational resilience — ...
CSO Online5d
Critical RCE flaws put Kubernetes clusters at risk of takeover
The vulnerabilities dubbed IngressNightmare can allow unauthenticated users to inject malicious NGINX configurations and ...
CSO Online4d
Malicious npm packages found to create a backdoor in legitimate code
Researchers found malicious packages on the npm registry that, when installed, inject malicious code into legitimate npm ...
CSO Online3d
Salt Typhoon may have upgraded backdoors for efficiency and evasion
The group, tracked by ESET as FamousSparrow, was seen deploying two undocumented variants of the known SparrowDoor backdoor ...
CSO Online6d
11 ways cybercriminals are making phishing more potent than ever
Cybercriminals are switching up tactics for their social engineering trickery to increase authenticity, better bypass filters ...
CSO Online5d
VMware plugs a high-risk vulnerability affecting its Windows-based virtualization
Improper access control issues in VMware Tools for Windows could allow privilege escalation on affected virtual machines.
CSO Online5d
Even anti-scammers get scammed: security expert Troy Hunt pwned by phishing email
Illustrating that there is no such thing as immunity from phishing, the founder of the Have I Been Pwned? website admits to ...
CSO Online6d
New VanHelsing ransomware claims three victims within a month
The new Russian ransomware program — accessible to affiliates at $5,000 — offers variants targeting Windows, Linux, BSD, ARM, ...
CSO Online5d
Rising attack exposure, threat sophistication spur interest in detection engineering
What was once in the margins of cybersecurity, detection engineering has been gaining space and interest, here is what you ...
CSO Online7d
Trump shifts cyberattack readiness to state and local governments in wake of info-sharing cuts
Shifting the burden of managing cyber emergencies to state and local governments while scaling back federal ...
CSO Online5d
FBI warns: beware of free online document converter tools
David Shipley, head of Canadian security awareness training provider Beauceron Security, was responding to a warning released ...
CSO Online5d
Legal impact on cybersecurity in 2025: new developments and challenges in the EU
European Union's digital resilience. Compliance with these regulations is not only a legal imperative, but also a factor that ...