News

CSO Online3h
Second espionage-linked cyberattack hits ICC, exposing persistent threats to global justice systems
The breach, discovered during a high-profile NATO summit, highlights the ICC’s growing exposure to nation-state cyber ...
CSO Online4h
Critical RCE flaw in Anthropic’s MCP inspector exposes developer machines to remote attacks
A misconfigured default in the MCP inspector tool allows attackers to execute arbitrary commands via CSRF and legacy browser ...
CSO Online5h
Scattered Spider shifts focus to airlines as strikes hit Hawaiian, WestJet — and now Qantas
Cybersecurity giants and the FBI warn that the notorious hacking group is now targeting the aviation sector with advanced ...
CSO Online7h
Why every company needs a travel security program
Business travel in an age of geopolitical conflict and control introduces new and greater risks for organizations of any size ...
CSO Online9h
How cybersecurity leaders can defend against the spur of AI-driven NHI
Non-human identities were already a challenge for security teams before AI agents came into the picture. Now, companies that ...
CSO Online1d
US DOJ makes progress combatting North Korean remote IT worker schemes
Two indictments, one arrest, and other actions across 16 states puts a dent in the illicit remote work schemes targeting US ...
CSO Online1d
LLMs are guessing login URLs, and it’s a cybersecurity time bomb
Netcraft’s research shows AI-generated brand URLs are often wrong, with some pointing to phishing sites. Experts call for ...
CSO Online2d
Microsoft hints at revoking access to the Windows kernel — eventually
A new Microsoft announcement suggests it has found a way to deliver kernel-level visibility and capabilities to apps running ...
CSO Online2d
Beyond CVE: The hunt for other sources of vulnerability intel
Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with ...
CSO Online2d
Cybercriminals take malicious AI to the next level
Fraudsters are optimizing illicit models with underground datasets, while criminal vendors roll out increasingly ...
CSO Online5d
Don’t trust that email: It could be from a hacker using your printer to scam you
New research reveals a simple way threat actors are using Microsoft 365 Direct Send to phish employees, without even having ...
CSO Online2d
Some Brother printers have a remote code execution vulnerability, and they can’t fix it
An authentication bypass vulnerability in the printers, hardcoded at the factory, can be chained with another flaw for remote ...