News

CSO Online2d
The books shaping today’s cybersecurity leaders
Cybersecurity leaders reveal the books that have influenced how they lead, think, and manage security in the enterprise — and ...
CSO Online4d
Supply chain attack compromises npm packages to spread backdoor malware
In a newly discovered supply chain attack, attackers last week targeted a range of npm-hosted JavaScript type testing ...
CSO Online4d
Top 10 MCP vulnerabilities: The hidden risks of AI integrations
Model Context Protocol (MCP) use is increasing in popularity for connecting AI agents to data sources, and other services.
CSO Online6d
UK proposal would forbid ransom payments by gov’t agencies, but will it meaningfully decrease ransomware attacks?
Concerns are raised that agencies would find ways around the rule, that attackers would be vindictive and attack more ...
CSO Online2d
AI-forged panda images hide persistent cryptomining malware ‘Koske’
The Linux malware campaign leverages AI-generated code and weaponized panda JPEGs to deploy stealthy and persistent ...
CSO Online3d
Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers
A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...
CSO Online4d
Clorox sues Cognizant for $380M over alleged helpdesk failures in cyberattack
Filed in a California court, the complaint accuses Cognizant of gross negligence, citing transcripts where helpdesk agents ...
CSO Online4d
White House AI plan heavy on cyber, light on implementation
Well-received for its cybersecurity provisions, Trump’s AI action plan could face hurdles in practice due to a lack of ...
CSO Online4d
Interlock ransomware threat expands across the US and Europe, hits healthcare and smart cities
A new joint advisory by the FBI, HHS, and CISA reveals how Interlock’s psychological manipulation and rare entry vectors like ...
CSO Online6d
Is AI here to take or redefine your cybersecurity role?
With job postings for some cybersecurity positions already in decline, industry observers debate the extent to which AI is ...
CSO Online3d
Singapore’s cybersecurity paradox: Top firms rated A, yet all breached
SecurityScorecard’s 2025 review found 100% of the top 100 firms having at least one compromised third-party provider in their ...
CSO Online5d
Prettier-ESLint npm packages hijacked in a sophisticated supply chain attack
DLL-based malware targets Windows users after a phishing campaign tricked the maintainer into leaking a token.