CSO Online1h
PoisonSeed targets Mailchimp, Mailgun, and Zoho to phish high-value accounts
Researchers identified PoisonSeed as the same threat actors behind Troy Hunt’s Mailchimp and Akamai’s SendGrid phishing.
CSO Online3h
How Trump’s tariffs are shaking up the cybersecurity sector
President Trump’s tariffs announcement sent US cybersecurity stocks into a precipitous spiral, fostering fears of cyber ...
CSO Online7h
The risks of entry-level developers over relying on AI
As AI-generated code becomes more common, some CISOs argue that overreliance could erode developers’ critical skills which ...
CSO Online2d
Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE
Successful exploitation could allow attackers to steal data, install malware, or take full control over affected big data ...
CSO Online4d
AI disinformation didn’t upend 2024 elections, but the threat is very real
The next phase of AI disinformation won’t just target voters but target organizations, supply chains, and critical ...
CSO Online4d
Veterans are an obvious fit for cybersecurity, but tailored support ensures they succeed
Paying attention to the specific needs of military members transitioning to civilian security positions can help ...
CSO Online2d
AI programming copilots are worsening code security and leaking more secrets
Copilot-enabled repos are 40% more likely to contain API keys, passwords, or tokens — just one of several issues security ...
CSO Online2d
Royal Mail investigates data leak
Several gigabytes of sensitive customer data have surfaced on the darknet, allegedly from the British postal service Royal ...
CSO Online2d
Trump fires NSA and Cybercom chief, jeopardizing cyber intel
Lawmakers fear the firing of Gen. Timothy Haugh will lead to a loss of critical intelligence at a time when cyber threats ...
CSO Online3d
Oracle quietly admits data breach, days after lawsuit accused it of cover-up
A lawsuit filed Monday accused Oracle of failing to acknowledge a recent data breach — but the company has reportedly since ...
CSO Online2d
Ivanti warns customers of new critical flaw exploited in the wild
Chinese APT group UNC5221 appears to have studied a recent Ivanti Connect Secure patch to develop a remote code execution ...
CSO Online4d
Threat-informed defense for operational technology: Moving from information to action
More than ever, cybercriminal networks are now operating like legitimate businesses. In response, organizations must adopt a ...