News

CSO Online10h
BadSuccessor: Unpatched Microsoft Active Directory attack enables domain takeover
Unprivileged users with permission to create objects inside an Active Directory organizational unit can abuse the new ...
CSO Online14h
Critical flaw in OpenPGP.js raises alarms for encrypted email services
The flaw, identified as CVE-2025-47934 and assigned a critical severity rating, was discovered by Edoardo Geraci and Thomas ...
CSO Online17h
GitHub package limit put law firm in security bind
A cautionary tale of how a developer tool limit case could derail cybersecurity protections if not for quick thinking, public ...
CSO Online21h
Threat intelligence platform buyer’s guide: Top vendors, selection advice
Threat intelligence platforms have evolved and became essential security defensive tools. Here is what you need to know ...
CSO Online15h
Trust becomes an attack vector in the new campaign using trojanized KeePass
The attack’s success hinged on exploiting the assumed safety of open-source tools and the ease of impersonating legitimate ...
CSO Online15h
You’ve already been targeted: Why patch management is mission-critical
Every day you delay a patch is a day attackers gain the upper hand. Proactive defense starts with closing the doors they ...
CSO Online21h
Poor DNS hygiene is leading to domain hijacking
Threat actors continue to find ways of hijacking domains thanks to poor DNS record-keeping and misconfigurations by ...
CSO Online14h
Ransomware-Bande BlackBasta hat neuen Malware-Favoriten
Die modulare Malware Skitnet ist maßgeschneidert für Cybercrime, da sie über spezielle Plugins für Diebstahl, Verschlüsselung ...
CSO Online14h
Cyberangriff auf Arla Deutschland
Der Molkereikonzern Arla wurde Ziel einer Cyberattacke. Dadurch war die Produktion an einem Standort in Deutschland ...