CSOonline22h
CISA inks 68 tech vendors to secure-by-design pledge — but will it matter?
CISA’s pledge drew some big names, but the impact on software security could be limited. Meanwhile the org has extended its ...
CSOonline23h
Google Chrome gets a patch for actively exploited zero-day vulnerability
Details of the use-after-free memory vulnerability were not publicly released, but Google says it’s aware an exploit for the ...
CSOonline1d
Some strategies for CISOs freaked out by the specter of federal indictments
Experts at this year's RSA Conference offered strategies to help CISOs cope with the prospect of facing federal indictments ...
CSOonline1d
Dell data breach exposes data of 49 million customers
The company says the breach compromised non-critical customer data and involved no sensitive personal or financial ...
CSOonline2d
Palo Alto launches AI-powered solutions to fight AI-generated cyberthreats
The suite is powered by Palo Alto’s proprietary solution, Precision AI, which integrates machine learning, deep learning, and ...
CSOonline2d
F5 patches BIG-IP Next Central Manager flaws that could lead to device takeover
Two high-risk vulnerabilities could allow attackers to gain full administrative control on devices via leaked password hashes ...
CSOonline2d
Zscaler shuts down exposed system after rumors of a cyberattack
In response to the rumors of a threat actor hacking and selling access to its systems, Zscaler said it has taken a “test ...
CSOonline5d
AI governance and cybersecurity certifications: Are they worth it?
Organizations have started to launch AI certifications in governance and cybersecurity but given how immature the space is ...
CSOonline2d
Suspected Chinese hack of Britain’s Ministry of Defence linked to contractor, minister confirms
The UK’s defence minister would not confirm that the attack was conducted by an element of the Chinese state, rather blaming ...
CSOonline3d
Massive security hole in VPNs shows their shortcomings as a defensive measure
Researchers found a deep, unpatchable flaw in virtual private networks dubbed Tunnelvision can allow attackers to siphon off ...
CSOonline5d
Search + RAG: The 1-2 punch transforming the modern SOC with AI-driven security analytics
Deploying search and RAG-powered threat detection is a major step to address that gap, ensuring enterprises are protected and ...
CSOonline11d
Chinese threat actor engaged in multi-year DNS resolver probing effort
The unusual and persistent probing activity over the span of multiple years should be a reminder to organizations to identify ...