CSOonline2h
Microsoft’s mea culpa moment: how it should face up to the CSRB’s critical report
What should happen in the wake of the CSRB’s Microsoft report? This former security industry analyst has some suggestions.
CSOonline1d
More attacks target recently patched critical flaw in Palo Alto Networks firewalls
The vulnerability found in GlobalProtect could be exploited to gain access to corporate networks and has seen a rise in ...
CSOonline19h
DevSecOps: Still a challenge but more achievable than ever
It is vitally important to get DevSecOps right. Security cannot be an afterthought in a world where a lack of it can allow a ...
CSOonline1d
How application security can create velocity at enterprise scale
Modern software has completely transformed the way organizations operate and compete in the market. With the increasing ...
CSOonline1d
Mitre Corporation targeted by nation-state threat actors
According to the non-profit, the breach occurred in January 2024 when the nation-state threat actor conducted a ...
CSOonline4d
Ransomware feared in Octapharma Plasma’s US-wide shutdown
US-based human plasma collector, tester, and supplier Octapharma Plasma may have been experiencing a ransomware attack ...
CSOonline6d
Where in the world is your AI? Identify and secure AI across a hybrid environment
As AI becomes integral to systems brought into the enterprise ecosystem it is increasingly critical for security teams to ...
CSOonline5d
AWS and Google Cloud command-line tools can expose secrets in CI/CD logs
Security researchers warn that certain commands executed in the AWS and Google Cloud command-line interfaces (CLIs) will ...
CSOonline3d
Improved incident response planning is a business necessity
Today’s dynamic threat landscape and complex digital environments necessitate a modern, proactive approach to incident ...
CSOonline4d
Cisco fixes vulnerabilities in Integrated Management Controller
The Cisco IMC is a baseband management controller (BMC), a dedicated processor that’s usually included in servers and runs ...
CSOonline6d
More open-source project takeover attempts found after XZ Utils attack
Discovered after OpenJS Foundation Cross Project Council received a request for administrative access for a ‘quick fix’.
CSOonline5d
Cisco announces AI-powered Hypershield for autonomous exploit patching in the cloud
Cisco has announced Hypershield, an AI-based capability of the company’s Security Cloud platform for hyperscalers.