News

CSO Online22h
10 tough cybersecurity questions every CISO must answer
From anticipating new threats to balancing risk management and business enablement, CISOs face a range of complex challenges ...
CSO Online16h
Turning evasion into detection: Varonis Jitter-Trap redefines beacon defense
In a landscape of AI-proof malware and modular C2 kits, Jitter-Trap brings statistical rigor to catching post-compromise ...
CSO Online5d
GitHub Actions attack renders even security-aware orgs vulnerable
Many open-source repositories contain privileged GitHub Actions workflows that execute untrusted code and can be triggered by ...
CSO Online5d
The highest-paying jobs in cybersecurity today
According to a recent survey by IANS and Artico Search, risk/GRC specialists, along with security architects, analysts, and ...
CSO Online3d
IBM combines governance and security tools to solve the AI agent oversight crisis
With AI agents multiplying across enterprises, IBM’s watsonx–Guardium integration aims to provide unified AgentOps visibility ...
CSO Online3d
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...
CSO Online6d
Operation 999: Ransomware tabletop tests cyber execs’ response
CSO took part as a media advisor in a tabletop exercise that put CISOs and senior security leaders against one another in a ...
CSO Online6d
Malicious PyPI package targets Chimera users to steal AWS tokens, CI/CD secrets
Chimera-sandbox-extensions” exploit highlights rising risks of open-source package abuse, prompting calls for stricter ...
CSO Online5d
WormGPT returns: New malicious AI variants built on Grok and Mixtral uncovered
Cybercriminals are hijacking mainstream LLM APIs like Grok and Mixtral with jailbreak prompts to relaunch WormGPT as potent ...
CSO Online4d
Phishing campaign abuses Cloudflare Tunnels to sneak malware past firewalls
The last option is to get Cloudflare itself to block the abuse. That might be successful as long as the company conducts ...
CSO Online4d
Third-party risk management is broken — but not beyond repair
TPRM today prioritizes fear of penalty over pursuit of real security. By investing in a comprehensive, targeted approach, ...
CSO Online7d
What CISOs are doing to lock in cyber talent before they bolt
As perks and pay only go so far, CISOs are turning to upskilling and career pathways to benefit both cyber professionals and ...