News

CSO Online19h
The CISO’s challenge: Getting colleagues to understand what you do
CISOs often operate with significant responsibility but limited formal authority, making it critical to articulate their role ...
CSO Online14h
Chinese ‘Fire Ant’ spies start to bite unpatched VMware instances
The campaign exploited long-patched VMware vulnerabilities to hijack ESXi hosts, bypass defenses, and persist inside targets.
CSO Online3d
The books shaping today’s cybersecurity leaders
Cybersecurity leaders reveal the books that have influenced how they lead, think, and manage security in the enterprise — and ...
CSO Online6d
The CISO code of conduct: Ditch the ego, lead for real
The time for excusing bad behavior because someone has ‘CISO’ in their title is over. We need to stop worshiping influence ...
CSO Online3d
AI-forged panda images hide persistent cryptomining malware ‘Koske’
The Linux malware campaign leverages AI-generated code and weaponized panda JPEGs to deploy stealthy and persistent ...
CSO Online6d
Prettier-ESLint npm packages hijacked in a sophisticated supply chain attack
DLL-based malware targets Windows users after a phishing campaign tricked the maintainer into leaking a token.
CSO Online5d
Top 10 MCP vulnerabilities: The hidden risks of AI integrations
Model Context Protocol (MCP) use is increasing in popularity for connecting AI agents to data sources, and other services.
CSO Online5d
White House AI plan heavy on cyber, light on implementation
Well-received for its cybersecurity provisions, Trump’s AI action plan could face hurdles in practice due to a lack of ...
CSO Online5d
Clorox sues Cognizant for $380M over alleged helpdesk failures in cyberattack
Filed in a California court, the complaint accuses Cognizant of gross negligence, citing transcripts where helpdesk agents ...
CSO Online5d
Supply chain attack compromises npm packages to spread backdoor malware
In a newly discovered supply chain attack, attackers last week targeted a range of npm-hosted JavaScript type testing ...
CSO Online5d
Interlock ransomware threat expands across the US and Europe, hits healthcare and smart cities
A new joint advisory by the FBI, HHS, and CISA reveals how Interlock’s psychological manipulation and rare entry vectors like ...
CSO Online4d
Singapore’s cybersecurity paradox: Top firms rated A, yet all breached
SecurityScorecard’s 2025 review found 100% of the top 100 firms having at least one compromised third-party provider in their ...