CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
CSO Online

North Korean threat actors turn blockchains into malware delivery servers

EtherHiding’: Nation-state and cybercriminal groups are leveraging smart contracts as command-and-control servers for ...
CSO Online

CISOs face quantum leap in prioritizing quantum resilience

Industry progress toward post-quantum cryptography (PQC) remains slow due to uneven prioritization and budget constraints in ...
CSO Online

Critical ASP.NET core vulnerability earns Microsoft’s highest-ever severity score

The Kestrel web server flaw allows request smuggling attacks, but the actual risk depends on the application code and ...
CSO Online

Source code and vulnerability info stolen from F5 Networks

IT and security leaders should install latest patches from the application delivery and security vendor after suspected ...
CSO Online

The expanding CISO role: From security operator to enterprise risk strategist

Security leaders are taking on bigger roles, adding new responsibilities, and gaining influence across the business, new ...
CSO Online

Introducing MAESTRO: A framework for securing generative and agentic AI

MAESTRO provides a structured, layered, outcome-driven framework tailored to these realities. By applying it across data, ...
CSO Online

CISOs brace for an “AI vs. AI” fight

AI-enabled attacks are among the top concerns for security leaders. In response they are arming their teams with AI-enabled ...
CSO Online

58% of CISOs are boosting AI security budgets

New research finds that AI-enabled cybersecurity is CISOs' top investment priority for the next 12 months, and it's easy to ...
CSO Online

MCPTotal Launches to Power Secure Enterprise MCP Workflows

MCPTotal provides enterprise-grade MCP infrastructure with built-in security, governance and compliance controls. Founded by ...
CSO Online

CISOs must rethink the tabletop, as 57% of incidents have never been rehearsed

Security experts believe many cyber tabletops try to be too specific, while others argue they should focus on smaller, more ...
CSO Online

Flax Typhoon exploited ArcGIS to gain long-term access

An advanced persistent threat (APT) group, Flax Typhoon, was able to gain persistent access to the mapping tool ArcGIS for ...