CSO Online4h
Oracle warns customers of health data breach amid public denial
While Oracle has so far declined to publicly acknowledge the data breach and a separate one that came to light last week, ...
CSO Online7h
LLMs are now available in snack size but digest with care
Distilled models can improve the contextuality and accessibility of LLMs, but can also amplify existing AI risks, including ...
CSO Online10h
Infostealer malware poses potent threat despite recent takedowns
Law enforcement action has failed to dent the impact of infostealer malware, a potent and growing threat to enterprise ...
CSO Online16h
Volume of attacks on network devices shows need to replace end of life devices quickly
Cisco report reveals two of the three top vulnerabilities attackers went after in 2024 were in old network devices.
CSO Online1d
How CISOs can balance business continuity with other responsibilities
With business continuity, CISOs must navigate a complex mix of security, business priorities and operational resilience — ...
CSO Online4dOpinion
The Trump administration made an unprecedented security mistake – you can avoid doing the same
The high-ranking official who included someone without clearance in a classified discussion may not immediately face ...
CSO Online6d
Critical RCE flaws put Kubernetes clusters at risk of takeover
The vulnerabilities dubbed IngressNightmare can allow unauthenticated users to inject malicious NGINX configurations and ...
CSO Online4d
Microsoft launches AI agents to automate cybersecurity amid rising threats
Microsoft has introduced a new set of AI agents for its Security Copilot platform, designed to automate key cybersecurity ...
CSO Online4d
Salt Typhoon may have upgraded backdoors for efficiency and evasion
The group, tracked by ESET as FamousSparrow, was seen deploying two undocumented variants of the known SparrowDoor backdoor ...
CSO Online4d
Malicious npm packages found to create a backdoor in legitimate code
Researchers found malicious packages on the npm registry that, when installed, inject malicious code into legitimate npm ...
CSO Online6d
VMware plugs a high-risk vulnerability affecting its Windows-based virtualization
Improper access control issues in VMware Tools for Windows could allow privilege escalation on affected virtual machines.
CSO Online5d
Even anti-scammers get scammed: security expert Troy Hunt pwned by phishing email
Illustrating that there is no such thing as immunity from phishing, the founder of the Have I Been Pwned? website admits to ...