CSOonline12h
CIOs and CISOs grapple with DORA: Key challenges, compliance complexities
Now in force, DORA has proved challenging for many IT leaders to achieve compliance, particularly around third-party ...
CSOonline7h
Cisco’s ISE bugs could allow root-level command execution
The insecure deserialization and authorization bypass flaws could enable attackers to escalate privileges and run arbitrary commands.
CSOonline1d
The cloud is not your only option: on-prem security still alive and well in Windows Server 2025
Reports of the demise of Windows Active Directory are greatly exaggerated – here’s how Microsoft is supporting AD in its ...
CSOonline1d
Police arrest teenager suspected of hacking NATO and numerous Spanish institutions
The 18-year-old cybercriminal faces prosecution for multiple offenses, including discovery and disclosure of secrets, illegal ...
CSOonline2d
Musk’s DOGE effort could spread malware, expose US systems to threat actors
Given free rein by President Trump to plumb the depths of US government networks and databases, Elon Musk’s DOGE is putting ...
CSOonline2d
Use payment tech and still not ready for PCI DSS 4.0? You could face stiff penalties
The Payment Card Industry Data Security Standard’s 4.0 requirements are designed to protect card information from theft or ...
CSOonline2d
Why honeypots deserve a spot in your cybersecurity arsenal
Honeypots are another tool in the toolbox for proactive cybersecurity leaders looking to get insight into what the bad guys ...
CSOonline2d
Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises
Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for ...
CSOonline2d
MacOS Ferret operators add a deceptive bite to their malware family
Flexible-Ferret is an evasive variant being used in the “Contagious Interview” campaign that even upgraded Apple protections ...
CSOonline1d
Lazarus Group tricks job seekers on LinkedIn with crypto-stealer
Attackers send out fake job offers and trick individuals into running a cross-platform JavaScript stealer for crypto theft ...
CSOonline3d
The CISO’s role in advancing innovation in cybersecurity
Collaborating with startups, acting as advisors and supporting innovators are some of the ways security leaders can play ...
CSOonline6d
Backdoor in Chinese-made healthcare monitoring device leaks patient data
Functionality in the device firmware sends patient data to a hardcoded IP address that also downloads and executes binary ...