News

CSO Online9h
NightEagle hackers exploit Microsoft Exchange flaw to spy on China’s strategic sectors
Cybersecurity firm QiAnXin links a North America-based APT group to long-term espionage targeting China’s AI, semiconductor, ...
CSO Online14h
Has CISO become the least desirable role in business?
Problematic reporting structures, outsized responsibility for enterprise risk, and personal accountability without authority ...
CSO Online9h
Ingram Micro confirms ransomware attack after days of downtime
The multi-day outage has disrupted order processing, delayed shipments, and highlighted weak links across the global tech ...
CSO Online14h
Skills gaps send CISOs in search of managed security providers
Use of MSSPs is on the rise as CISOs contend with increased workloads, rising threats, and budget constraints, in addition to ...
CSO Online4d
Hardcoded root credentials in Cisco Unified CM trigger max-severity alert
Static root credentials left in limited Unified Communications Manager builds could let attackers gain full control over ...
CSO Online4d
How cybersecurity leaders can defend against the spur of AI-driven NHI
Non-human identities were already a challenge for security teams before AI agents came into the picture. Now, companies that ...
CSO Online4d
Hunters International shuts ransomware operations, reportedly becomes an extortion-only gang
The report says that, unlike Hunters International, which combined data encryption with extortion, World Leaks operates as an ...
CSO Online4d
Second espionage-linked cyberattack hits ICC, exposing persistent threats to global justice systems
The breach, discovered during a high-profile NATO summit, highlights the ICC’s growing exposure to nation-state cyber ...
CSO Online4d
CISOs must rethink defense playbooks as cybercriminals move faster, smarter
Facing faster, stealthier intruders, CISOs are under pressure to modernize their cybersecurity strategies, toolsets, and ...
CSO Online4d
Critical RCE flaw in Anthropic’s MCP inspector exposes developer machines to remote attacks
A misconfigured default in the MCP inspector tool allows attackers to execute arbitrary commands via CSRF and legacy browser ...
CSO Online6d
US DOJ makes progress combatting North Korean remote IT worker schemes
Two indictments, one arrest, and other actions across 16 states puts a dent in the illicit remote work schemes targeting US ...
CSO Online4d
North Korean crypto thieves deploy custom Mac backdoor
Researchers warn that recent attack campaigns against Web3 and crypto startups by a North Korean APT group have leveraged a ...