News

CSO Online10h
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...
CSO Online11h
IBM combines governance and security tools to solve the AI agent oversight crisis
With AI agents multiplying across enterprises, IBM’s watsonx–Guardium integration aims to provide unified AgentOps visibility ...
CSO Online23h
Chain IQ data theft highlights need to oversee third party suppliers
Firm says hack on 19 companies came from ‘tools and techniques that had never before been seen on a global scale.’ ...
CSO Online1d
North Korea’s BlueNoroff uses AI deepfakes to push Mac malware in fake Zoom calls
In a sophisticated new campaign, executives are being tricked into installing malware via AI-generated video calls with ...
CSO Online1d
Asana’s MCP AI connector could have exposed corporate data, CSOs warned
As AI platforms like Claude, ChatGPT, Microsoft Copilot, and others multiply, developers are eager for ways, such as MCP, to ...
CSO Online1d
Phishing campaign abuses Cloudflare Tunnels to sneak malware past firewalls
The last option is to get Cloudflare itself to block the abuse. That might be successful as long as the company conducts ...
CSO Online1d
Third-party risk management is broken — but not beyond repair
TPRM today prioritizes fear of penalty over pursuit of real security. By investing in a comprehensive, targeted approach, ...
CSO Online2d
WormGPT returns: New malicious AI variants built on Grok and Mixtral uncovered
Cybercriminals are hijacking mainstream LLM APIs like Grok and Mixtral with jailbreak prompts to relaunch WormGPT as potent ...
CSO Online2d
GitHub Actions attack renders even security-aware orgs vulnerable
Many open-source repositories contain privileged GitHub Actions workflows that execute untrusted code and can be triggered by ...
CSO Online4d
New quantum system offers publicly verifiable randomness for secure communications
Quantum breakthrough delivers verifiable randomness as researchers develop globally scalable ‘uncheatable’ system rooted in ...
CSO Online1d
Overwhelmed by security alerts? XDR service providers offer a powerful solution
Cybersecurity professionals are under siege. In 2024, relentless cyberattacks (1636 per week on average) and soaring data ...
CSO Online2d
The highest-paying jobs in cybersecurity today
According to a recent survey by IANS and Artico Search, risk/GRC specialists, along with security architects, analysts, and ...