CSO Online

European Commission data stolen in a cyberattack on the infrastructure hosting its web sites

The Commission says its internal IT systems weren’t affected, but it is still working to determine the attack’s impact.
CSO Online

The insider threat rises again

Insiders have always posed a risk, but modern technologies, tactics, and motivations have increased the threat, likelihood, ...
CSO Online

Attackers exploit critical Langflow RCE within hours as CISA sounds alarm

Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...
CSO Online

8 steps CISOs can take to empower their teams

By empowering cyber pros with authority and accountability, CISOs can greatly extend what they can accomplish. But it takes a ...
CSO Online

Google: The quantum apocalypse is coming sooner than we thought

The company has advanced its timeline for viable quantum computing, and thus the necessity of migrating to quantum-safe ...
CSO Online

6 key trends reshaping the IAM market

The challenge of managing machine identities, AI agents, and secrets is shaking up the growing identity and access management ...
CSO Online

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...
CSO Online

Lloyds Bank reveals how IT bug exposed transaction data

The bank is still investigating full details of a glitch that showed users of its mobile app transaction data belonging to ...
CSO Online

Autonomous AI adoption is on the rise, but it’s risky

Autonomous agentic AI can bring new efficiencies, but concerns about security and consistent outputs aren’t yet resolved.
CSO Online

HP launches TPM Guard to help defeat physical TPM attacks

Current TPMs can be compromised with $20 of hardware, allowing attackers to bypass BitLocker and access encrypted content.
CSO OnlineOpinion

Why US companies must be ready for quantum by 2030: A practical roadmap

Hackers are stealing encrypted data now to crack it later, so starting a "hybrid" security plan today makes the 2030 quantum ...
CSO Online

Your MFA isn’t broken — it’s being bypassed, and your employees can’t tell the difference

Hackers aren't "breaking" your MFA anymore — they’re just riding shotgun during your login to steal the session token right ...