News

CSO Online16h
AI hallucinations lead to a new cyber threat: Slopsquatting
Attackers can weaponize and distribute a large number of packages recommended by AI models that don’t really exist.
CSO Online22h
What boards want and don’t want to hear from cybersecurity leaders
To get through board members, cybersecurity leaders need to not only learn the language of business but how to translate ...
CSO Online4d
Oracle admits breach of ‘obsolete servers,’ denies main cloud platform affected
The fact that a breach of some kind had occurred was first made public in March, when a hacker using the moniker ‘rose87168’ ...
CSO Online3d
Russian Shuckworm APT is back with updated GammaSteel malware
The attack targeted the military mission of a Western country in Ukraine, with the goal of deploying a PowerShell-based ...
CSO Online4d
Trump revokes security clearances for Chris Krebs, SentinelOne in problematic precedent for security vendors
US President Donald Trump issued an executive order revoking the security clearance of Krebs and cybersecurity giant ...
CSO Online3d
OpenAI slammed for putting speed over safety
OpenAI’s approach to safety testing for its GPT models has varied over time. For GPT-4, the company dedicated over six months ...
CSO Online3d
You’re always a target, so it pays to review your cybersecurity insurance
Not only does an annual insurance review ensure compliance with policy requirements, it can kick off a more thorough review ...
CSO Online4d
Top 16 OffSec, pen-testing, and ethical hacking certifications
These certs offer hands-on training and up-to-date curricula, equipping offensive security professionals with their choice of ...
CSO Online6d
10 things you should include in your AI policy
From understanding what AI means in the context of the organization to being compliant and not forgetting the role third ...
CSO Online3d
Why Codefinger represents a new stage in the evolution of ransomware
Forget typical ransomware! Codefinger hijacked cloud keys directly, exposing backup flaws and shared responsibility risks.
CSO Online4d
Targeted phishing gets a new hook with real-time email validation
Crooks behind some credential-stealing phishing campaigns are trying to increase their success rate by sophisticated ...
CSO Online4d
Hackers target SSRF flaws to steal AWS credentials
Buggy websites hosted on EC2 instances can allow attackers to send unauthorized access requests for exposed EC2 instance ...